VM vs LXC container

W

wbravin

Member
Sep 7, 2022
68
6
13
Hello all and to all may this new year bring health joy and peace to you all

I currently have proxmox 8 running on a dell 720 and on this machine I have the following VMs
Opnsense with a fixed IP address from the ISP
home assistant OS
truenas scale with a jellyfin jail running permanently (to manage and deliver my media)

All have been working very well for the last 5 months with no issues. All software is constantly updated when recommended

I have 2 new projects Thant i would like to implement over the next few months:

1) Remote connectivity: I would like to connect remotely to my jellyfin instance to play any media from my remote location.
Here I am considering tailscale as a solution. (i still need to fully understand and feel comfortable to implement what this entails) .

I could set tailscale ( as i understand it) in truenas in a new jail and according to lawrence system video then would give me give access to jellyfin (i think)

2) enhanced home security: Here i would like to add security, cameras, doorbell and keypads. These items would be integrated to Home Assistant .... Simple.

However i like to receive notifications (this is easy with HA) and control the environment when i'm away. I am using nabucasa to access HA for which i am paying a small fee

Here i would use frigate and save the images on the trunass dataset environment.

My confusion and where i need clarification.

I see many videos that suggest installing tailscale and frigate on proxmox. Some say as a vm some say inside an LXC container.

With these projects in mind I would need to develop vlans to segregate and improve access demarcation to my environment (here too do i create them in proxmox or opensense )

In you expert experience what is the difference between and installing them in VM or LXC containers and which is better (easier) for me to implement in my home environment

I thank you in advance for any help and recommendation provided
 
A VM got less dependencies and is safer because of the better isolation. But because of that a VM also can't make use of any physical hardware unless you exclusivly pass it through.
 
Dunuin said:
A VM got less dependencies and is safer because of the better isolation. But because of that a VM also can't make use of any physical hardware unless you exclusively pass it through.
Click to expand...
Thank you for the prompt reply.

Then this means that when i Install tailscale in a VM in proxmox, I could then access the proxmox server i can then access all my other VMs on thant server (subject to permissions) remotely...Correct?
 
Hello all

The more i read the less i understand

Having a server running proxmox 8
having on this server opnsense, home assistant and trunas as VMs and
having Jellyfin as a jail in truenas
Wanting to have remote access to home assistant (currently using Nabucasa) and to Jellyfin to remotely access my media mostly from my phone or my laptop)

I do not know where is the best place to install tailscale

Do I install it on:
Proxmox as a vm or lxc ?
OPNsense?
Home assistant as an addon ?
Truenas in a jail?
or
All 4 VMs?

I cannot seem to fine any reading or video helping in this decision

Thank you all in advance for any help?
 
Last edited:
Is there a special reason for using tailscale and not implementing Wireguard (for example) on your OPNSense? It’s easy to manage and you’re not dependent from a third party system.
 
cwt said:
Is there a special reason for using tailscale and not implementing Wireguard (for example) on your OPNSense? It’s easy to manage and you’re not dependent from a third party system.
Click to expand...
Thank you for responding

Festive season to all

I am illiterate in this matter. The only reason i mentioned Tailscale is that all that i saw so far Tailscale seemed more recommended and easier to install then wireguard.

I'm happy (almost) because tailscal is locally managed and head scale more so.

I'm looking at simplicity of installation secure communication locally managed and effective.

I have been reading up on tailscale and regardless if i need to install it on opensense, truenas or home assistant I think i feel comfortable to take on this challenge.

I just need to understand where to install it

In all the documentation (be it for tailscale, wireguard or headscale ) i do not see a clear explanation or guidance on where to best install it in my environment.

Thank you for your help and patience
 
cwt said:
Is there a special reason for using tailscale and not implementing Wireguard (for example) on your OPNSense? It’s easy to manage and you’re not dependent from a third party system.
Click to expand...
Depends on the OP's situation. More and more ISP's are going to CGNAT with really limits the ability to easily host a VPN into the home network. I hate it. Tailscale is probably the easiest way to do it safely. Otherwise, I would completely agree, wireguard or OpenVPN is the way to go.
 
Thank you for this teaching and clear opinion.

since then i installed wirequard in a lxc and it was ok.
i also installed it on my android phone ok . i paired it to my server however when i activate wireguard on my phone i can no longer access the web or wifi from the phone .

i feel that this will be a lengthy project to undertake

Once again thank you
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back