Hetzner - DokuWiki

Proxmox VE/en

Inhaltsverzeichnis

Proxmox VE

Proxmox VE is a virtualization platform based on OpenVZ and KVM.

The installation is generally considered uncomplicated, since OpenVZ configures most things correctly.

Installation

1. Firstly, Debian Lenny must be installed as the Operating System.

  • Boot the server into the Rescue System
  • Start the installimage and choose "Debian Lenny 64bit minimal"
  • Configure the RAID level, partitioning and hostnames as required
  • Save the configuration and after completion of the installation do a restart

2. configure APT sources

nano /etc/apt/sources.list

Add the following line:

deb http://download.proxmox.com/debian lenny pve

Add the key:

wget -O- "http://download.proxmox.com/debian/key.asc" | apt-key add -
apt-get update

3. Install Proxmox

apt-get install proxmox-ve-2.6.32

This version supports OpenVZ. An overview can be found here: http://pve.proxmox.com/wiki/Proxmox_VE_Kernel

4. Finally, do a restart and check the kernel with "uname -r"

Network configuration

It's important that the vmbr0 is not connected with the physical interface. Only then can the "routed" setup be achieved.

IP forwarding has to be activated. This can be done automatically through /etc/sysctl.conf during a boot.

echo 1 > /proc/sys/net/ipv4/ip_forward
echo 'net.ipv4.ip_forward=1' >> /etc/sysctl.conf

For IPv6 "proxy_ndp" must be activated.

echo 1 > /proc/sys/net/ipv6/conf/all/proxy_ndp
echo 'net.ipv6.conf.all.proxy_ndp=1' >> /etc/sysctl.conf

Network configuration OpenVZ

None required. Just assign your additional IP addresses to a VM.

Administration

The virtual machines can only be administered under http://Server-IP. Templates can be found under wiki.openvz.org/Download/template/precreated.

For the virtual machines the virtual network "venet" is used and the additional IPs can be directly added.

To be able to access the virtual machines with IPv6 the IPv6 address of the VM must be added as a neighbour:

ip -6 neigh add proxy 2a01:4f8:100:92a1::42 dev venet0

Network configuration KVM

To be able to use KVM a bridge and a route to the virtual machines must be added manually. An example would be:

# /etc/network/interfaces
### Hetzner Online AG - installimage
# Loopback device:
auto lo
iface lo inet loopback
#
# device: eth0
auto  eth0
iface eth0 inet static
       address   192.168.1.10
       broadcast 192.168.1.63
       netmask   255.255.255.255
       pointopoint   192.168.1.1
       gateway   192.168.1.1
#
auto vmbr0
iface vmbr0 inet static
       address   192.168.1.10
       broadcast 192.168.1.63
       netmask   255.255.255.255
       bridge_ports none
       bridge_stp off
       bridge_fd 0
       up ip route add 192.168.1.50/32 dev vmbr0

Security

The webinterface is secured through a password. Even so, an additional .htaccess protection is recommended to hide the interface and to protect against the exploitation of any vulnerabilities.

To do so store the ".htaccess" and ".htpasswd" files in /usr/share/pve-manager (NOT in /usr/share/pve-manager/root, that leads to an error). A htaccess generator is found here: http://www.webmaster-toolkit.com/htaccess-generator.shtml

The only disadvantage is that the login must be done multiple times.



© 2019. Hetzner Online GmbH. Alle Rechte vorbehalten.