Proxmox Notes

OS Images

See PVE documentation on storage [1].

Full ISOs for KVM

Any ISO will do.

By default, PVE will look in /var/lib/vz/iso . Include alternate locations by adding the “iso” tag to a storage device in /etc/pve/storage.cfg .

LXC Templates

Proxmox maintains a collection of available machine types [2].

Download them to /var/lib/vz/template by default or any storage that has the “vztmpl” tag in /etc/pve/storage.cfg .

Cluster Death

If the cluster dies, but you don’t want to change the way you do business…

cd /etc                  # to avoid being in /etc/pve
pkill -9 corosync        # in case your service scripts are a problem
umount /etc/pve -l       # remove the FUSE-shared config path
service pve-cluster stop # let the service get itself caught up
service corosync start
service pve-cluster start

All over the Internet, people complain about multicast failing after two minutes of run time. I have yet to read about a reason, but I did not spend a lot of time searching. The Proxmox docs [3] have an entry on the subject.

To get corosync to go entirely unicast, adjust the “totem{}” block as below. Ensure all your nodes are in the “nodelist{}” block.

totem {
    cluster_name: mycluster
    config_version: 4
    interface {
        linknumber: 0
    }
    ip_version: ipv4-6
    secauth: on
    version: 2
    transport: udpu
}

Then, bounce cluster services on all nodes…

service corosync stop
ps -ef | grep --color corosync # Make sure it is really dead
service corosync start
service pve-cluster restart

Fix a running container

The equivalent of docker exec -it… bash is pct enter followed by a machine number.

Integrate with LDAP

Assume realm my.domain.com with server ipa0.my.domain.com on FreeIPA…

pvesh create /access/domains \
    --realm my.domain.com \
    --type ldap \
    --base_dn dc=my,dc=domain,dc=com \
    --server1 ipa0.my.domain.com \
    --port 636 \
    --user_attr uid \
    --secure 1 \
    --verify 0

This creates a file /etc/pve/domains.cfg.

ldap: my.domain.com
        comment Freeipa on ipa0.my.domain.com
        base_dn dc=my,dc=domain,dc=com
        server1 ipa0.my.domain.com
        user_attr uid
        default 1
        port 636
        secure 1
        verify 0

pve: pve
        comment Proxmox VE authentication server

pam: pam
        comment Linux PAM standard authentication

Endnotes

[1]

https://pve.proxmox.com/wiki/Storage

[2]

http://download.proxmox.com/images/system/

[3]

https://pve.proxmox.com/wiki/Multicast_notes