Difference between revisions of "Proxmox All-in-One Guru Notes"

From Da Nerd Mage Wiki
Jump to navigation Jump to search
(Created page with "2022/07/12")
 
Line 1: Line 1:
2022/07/12
TheGuruOfNothing — Today at 11:03
Ok, wiping the PfSense VM and building a new one (for simplicity)
[11:08]
Already hit the wall
[11:08]
:smiley:
[11:09]
Being as I have never used more than one port on any of my servers, I am not sure how to set up and utilize the other ports since it defaults to whatever it defaults to
 
Tinker — Today at 11:09
:smirk:
[11:09]
Step 1...
[11:09]
go to the Web UI of the server...
[11:10]
Select the server itself...
[11:10]
See System/Network in the second column?
[11:12]
:image - sample:
TheGuruOfNothing — Today at 11:14
yep
 
Tinker — Today at 11:15
See at least one each of "Network Device" & "Linux Bridge"?
 
TheGuruOfNothing — Today at 11:15
yep
 
Tinker — Today at 11:15
:thumbup:
[11:16]
The Network Device marked as Active is the one you're talking to it through...
[11:16]
Same for the active bridge.
[11:16]
See a second (or more...) "Network Device"?
 
TheGuruOfNothing — Today at 11:18
Sorry... phone call
[11:18]
Im back
 
Tinker — Today at 11:18
Phone calls happen...
[11:19]
So, see a second Network Device?
 
TheGuruOfNothing — Today at 11:19
:image - screencap:
Tinker — Today at 11:20
Thare ya go...
 
TheGuruOfNothing — Today at 11:20
vmbr0 is using eno1
 
Tinker — Today at 11:20
eno1 is the NIC you have connected ATM...
 
TheGuruOfNothing — Today at 11:20
I have cables connected to both actually
 
Tinker — Today at 11:20
& vmbr0 is the internal connection to it that all of the VMs see.
[11:21]
eno2 isn't actually doing anything tho.
 
TheGuruOfNothing — Today at 11:21
correct
 
Tinker — Today at 11:22
If it's working like I think it is... They are in the same order as the physical NIC are listed on the machine.
[11:22]
For the moment, I'd just unplug the cable from the second one.
[11:22]
Simplify life...
[11:22]
Yer gonna swap them later anyhow.
 
TheGuruOfNothing — Today at 11:23
lemme run down there
 
Tinker — Today at 11:23
Exercise time!
 
TheGuruOfNothing — Today at 11:30
I was mistaken
[11:30]
I have two cables going to each server ...
[11:31]
one to a NIC and one to iLO
[11:31]
So... we good
 
Tinker — Today at 11:31
All-Righty then...
[11:31]
Step 2...
[11:32]
See the "Create" button?
[11:32]
Click it.
 
TheGuruOfNothing — Today at 11:32
yep
[11:32]
yeop
 
Tinker — Today at 11:32
You wanna make a new "Linux Bridge"
[11:33]
Only thing you want to fill in is the Bridge ports box.
[11:33]
tell it "eno2"
[11:34]
Once you tell it to go ahead & create it, poke the "Apply Configuration" button.
 
TheGuruOfNothing — Today at 11:34
yep
 
Tinker — Today at 11:35
You now have 2 network ports available to your shiny new pfSense VM...
 
TheGuruOfNothing — Today at 11:35
SO...
[11:35]
I create the VM, tell it to put WAN on vmbr1 and LAN on vmbr0
 
Tinker — Today at 11:36
nope...
 
TheGuruOfNothing — Today at 11:36
lol
 
Tinker — Today at 11:36
WAN goes on vmbr0 during construction.
[11:36]
& LAN on vmbr1.
[11:37]
When you get to the fugly step...
[11:37]
https://wiki.nerdmage.ca/index.php/Proxmox_All-in-One#Taking_it_LIVE
Proxmox All-in-One
[11:37]
You'll be swapping the bridges.
 
TheGuruOfNothing — Today at 11:37
Fer giggles... why can't ya build it the other way around?
[11:38]
A way of inserting a PfSense box into an existing server
 
Tinker — Today at 11:38
Coz then you'll have a VERY hard time reaching the machine through the unconfigured pfSense VM...
 
TheGuruOfNothing — Today at 11:38
ah, ok
[11:39]
forgot that ya hafta have a console to config on
 
Tinker — Today at 11:39
The bridge swap puts the management port of the PVE box itself behind the pfSense server & kinda hides it from the real world.
[11:40]
Just had a thought...
[11:40]
Your local network... It contains the 192.168.1.xxx range?
 
TheGuruOfNothing — Today at 11:40
yes
[11:41]
.0.xxx -.3.xxx
[11:41]
/22
 
Tinker — Today at 11:41
If so... You may have to do an extra step while setting up pfSense.
[11:41]
Basically, you'll need to tell it to use a range that's not on your local LAN.
[11:42]
It might figure it out itself, but I'm not sure.
 
TheGuruOfNothing — Today at 11:42
Not thinking so
[11:42]
Ok, so I am not mucking this about...
[11:43]
I just had a thought...........
[11:43]
hold on
 
Tinker — Today at 11:45
Yer workin on a trick question... aren't you...
 
TheGuruOfNothing — Today at 11:45
Well, I was
[11:45]
then I found my own flaw
[11:46]
Ya can't access PfSense from the WAN side of the setup
 
Tinker — Today at 11:46
nope...
[11:47]
But telling your Management VM to use vmbr1 means you can go to its console & play...
[11:47]
Another reason you need PVE to stay accessible during the build.
 
TheGuruOfNothing — Today at 11:47
I can build the VM and tell it to use vmbr1 as it's WAN port and vmbr0 as the LAN and use the console to access it.... right up until I save the config then EVERYTHING on it will go dead stick because LAN will be dicked as long as it is connected to my network
[11:48]
I might be able to connect vmbr0 to a seperate switch and use a laptop to access it at that point however
[11:48]
it would then be a standalone server but I don't know if I can access PVE again though
 
Tinker — Today at 11:49
WAN has to stay on vmbr0 until pfSense is ready to take over.
 
TheGuruOfNothing — Today at 11:49
yeah... was spitballing
[11:49]
wrapping my head around all the option
 
Tinker — Today at 11:50
I spent many hours & much stress trying to avoid the whole "Swap everything" step...
[11:50]
Damn near gave up on it...
[11:50]
Then, suddenly, decided to abuse it a bit & it worked.
[11:51]
Now both the servers I've done this on look like they're hooked up backwards if you pay too much attention to the port numbers on the back. :{{!}}
[11:52]
But I have a label maker & I'm not afraid to use it.
[11:53]
Damn!
Bloody coffee cup has a big hole in the top...
BRB
 
TheGuruOfNothing — Today at 11:57
Ok, what the literal hell is fucking going on?
[11:57]
I have the PfSense ISO on Datastore1 and that is the ONLY place it is...
[11:57]
I selected it for use for the building of the new VM...
[11:58]
and it fucking boot loops saying that the media is not present
[11:58]
I used it to build a VM on this box already so I know it worked
[11:59]
I deleted that VM so there should be no conflict if there was such a thing (edited)
 
Tinker — Today at 11:59
Did you "Remove" the original VM & start from scratch? Or just try to tell it to buut from the image?
 
TheGuruOfNothing — Today at 11:59
I deleted the original VM
[11:59]
then started from scratch
[12:00]
buut? Canadian?
[12:00]
:P
Tinker — Today at 12:01
Canadian?
 
TheGuruOfNothing — Today at 12:01
yanno... like aBOOt
 
Tinker — Today at 12:01
:face_palm:
TheGuruOfNothing — Today at 12:01
hehe
[12:01]
ok... I am done
[12:01]
for now
[12:02]
I might pull that one back out in a week or two
[12:02]
(it did feel kinda good though)
 
Tinker — Today at 12:02
Need a :slap: emoticon
 
TheGuruOfNothing — Today at 12:02
indeed
 
Tinker — Today at 12:03
musta been some simple error setting up the vm...
 
TheGuruOfNothing — Today at 12:03
lemme keel it and do it again
 
Tinker — Today at 12:07
Did you remember to tell it OS Type = OTHER?
 
TheGuruOfNothing — Today at 12:11
no
[12:11]
was Linux 5x
 
Tinker — Today at 12:12
pfSense ain't Linux... Just sayin'
NEW
 
TheGuruOfNothing — Today at 12:12
it didn't even try to install, said media not present
[12:12]
I deleted the ISO and downloading new copy directly to server
[12:12]
will use OTHER

Revision as of 11:15, 12 July 2022

TheGuruOfNothing — Today at 11:03 Ok, wiping the PfSense VM and building a new one (for simplicity) [11:08] Already hit the wall [11:08]

smiley:

[11:09] Being as I have never used more than one port on any of my servers, I am not sure how to set up and utilize the other ports since it defaults to whatever it defaults to

Tinker — Today at 11:09

smirk:

[11:09] Step 1... [11:09] go to the Web UI of the server... [11:10] Select the server itself... [11:10] See System/Network in the second column? [11:12]

image - sample:

TheGuruOfNothing — Today at 11:14 yep

Tinker — Today at 11:15 See at least one each of "Network Device" & "Linux Bridge"?

TheGuruOfNothing — Today at 11:15 yep

Tinker — Today at 11:15

thumbup:

[11:16] The Network Device marked as Active is the one you're talking to it through... [11:16] Same for the active bridge. [11:16] See a second (or more...) "Network Device"?

TheGuruOfNothing — Today at 11:18 Sorry... phone call [11:18] Im back

Tinker — Today at 11:18 Phone calls happen... [11:19] So, see a second Network Device?

TheGuruOfNothing — Today at 11:19

image - screencap:

Tinker — Today at 11:20 Thare ya go...

TheGuruOfNothing — Today at 11:20 vmbr0 is using eno1

Tinker — Today at 11:20 eno1 is the NIC you have connected ATM...

TheGuruOfNothing — Today at 11:20 I have cables connected to both actually

Tinker — Today at 11:20 & vmbr0 is the internal connection to it that all of the VMs see. [11:21] eno2 isn't actually doing anything tho.

TheGuruOfNothing — Today at 11:21 correct

Tinker — Today at 11:22 If it's working like I think it is... They are in the same order as the physical NIC are listed on the machine. [11:22] For the moment, I'd just unplug the cable from the second one. [11:22] Simplify life... [11:22] Yer gonna swap them later anyhow.

TheGuruOfNothing — Today at 11:23 lemme run down there

Tinker — Today at 11:23 Exercise time!

TheGuruOfNothing — Today at 11:30 I was mistaken [11:30] I have two cables going to each server ... [11:31] one to a NIC and one to iLO [11:31] So... we good

Tinker — Today at 11:31 All-Righty then... [11:31] Step 2... [11:32] See the "Create" button? [11:32] Click it.

TheGuruOfNothing — Today at 11:32 yep [11:32] yeop

Tinker — Today at 11:32 You wanna make a new "Linux Bridge" [11:33] Only thing you want to fill in is the Bridge ports box. [11:33] tell it "eno2" [11:34] Once you tell it to go ahead & create it, poke the "Apply Configuration" button.

TheGuruOfNothing — Today at 11:34 yep

Tinker — Today at 11:35 You now have 2 network ports available to your shiny new pfSense VM...

TheGuruOfNothing — Today at 11:35 SO... [11:35] I create the VM, tell it to put WAN on vmbr1 and LAN on vmbr0

Tinker — Today at 11:36 nope...

TheGuruOfNothing — Today at 11:36 lol

Tinker — Today at 11:36 WAN goes on vmbr0 during construction. [11:36] & LAN on vmbr1. [11:37] When you get to the fugly step... [11:37] https://wiki.nerdmage.ca/index.php/Proxmox_All-in-One#Taking_it_LIVE Proxmox All-in-One [11:37] You'll be swapping the bridges.

TheGuruOfNothing — Today at 11:37 Fer giggles... why can't ya build it the other way around? [11:38] A way of inserting a PfSense box into an existing server

Tinker — Today at 11:38 Coz then you'll have a VERY hard time reaching the machine through the unconfigured pfSense VM...

TheGuruOfNothing — Today at 11:38 ah, ok [11:39] forgot that ya hafta have a console to config on

Tinker — Today at 11:39 The bridge swap puts the management port of the PVE box itself behind the pfSense server & kinda hides it from the real world. [11:40] Just had a thought... [11:40] Your local network... It contains the 192.168.1.xxx range?

TheGuruOfNothing — Today at 11:40 yes [11:41] .0.xxx -.3.xxx [11:41] /22

Tinker — Today at 11:41 If so... You may have to do an extra step while setting up pfSense. [11:41] Basically, you'll need to tell it to use a range that's not on your local LAN. [11:42] It might figure it out itself, but I'm not sure.

TheGuruOfNothing — Today at 11:42 Not thinking so [11:42] Ok, so I am not mucking this about... [11:43] I just had a thought........... [11:43] hold on

Tinker — Today at 11:45 Yer workin on a trick question... aren't you...

TheGuruOfNothing — Today at 11:45 Well, I was [11:45] then I found my own flaw [11:46] Ya can't access PfSense from the WAN side of the setup

Tinker — Today at 11:46 nope... [11:47] But telling your Management VM to use vmbr1 means you can go to its console & play... [11:47] Another reason you need PVE to stay accessible during the build.

TheGuruOfNothing — Today at 11:47 I can build the VM and tell it to use vmbr1 as it's WAN port and vmbr0 as the LAN and use the console to access it.... right up until I save the config then EVERYTHING on it will go dead stick because LAN will be dicked as long as it is connected to my network [11:48] I might be able to connect vmbr0 to a seperate switch and use a laptop to access it at that point however [11:48] it would then be a standalone server but I don't know if I can access PVE again though

Tinker — Today at 11:49 WAN has to stay on vmbr0 until pfSense is ready to take over.

TheGuruOfNothing — Today at 11:49 yeah... was spitballing [11:49] wrapping my head around all the option

Tinker — Today at 11:50 I spent many hours & much stress trying to avoid the whole "Swap everything" step... [11:50] Damn near gave up on it... [11:50] Then, suddenly, decided to abuse it a bit & it worked. [11:51] Now both the servers I've done this on look like they're hooked up backwards if you pay too much attention to the port numbers on the back. :| [11:52] But I have a label maker & I'm not afraid to use it. [11:53] Damn! Bloody coffee cup has a big hole in the top... BRB

TheGuruOfNothing — Today at 11:57 Ok, what the literal hell is fucking going on? [11:57] I have the PfSense ISO on Datastore1 and that is the ONLY place it is... [11:57] I selected it for use for the building of the new VM... [11:58] and it fucking boot loops saying that the media is not present [11:58] I used it to build a VM on this box already so I know it worked [11:59] I deleted that VM so there should be no conflict if there was such a thing (edited)

Tinker — Today at 11:59 Did you "Remove" the original VM & start from scratch? Or just try to tell it to buut from the image?

TheGuruOfNothing — Today at 11:59 I deleted the original VM [11:59] then started from scratch [12:00] buut? Canadian? [12:00]

P

Tinker — Today at 12:01 Canadian?

TheGuruOfNothing — Today at 12:01 yanno... like aBOOt

Tinker — Today at 12:01

face_palm:

TheGuruOfNothing — Today at 12:01 hehe [12:01] ok... I am done [12:01] for now [12:02] I might pull that one back out in a week or two [12:02] (it did feel kinda good though)

Tinker — Today at 12:02 Need a :slap: emoticon

TheGuruOfNothing — Today at 12:02 indeed

Tinker — Today at 12:03 musta been some simple error setting up the vm...

TheGuruOfNothing — Today at 12:03 lemme keel it and do it again

Tinker — Today at 12:07 Did you remember to tell it OS Type = OTHER?

TheGuruOfNothing — Today at 12:11 no [12:11] was Linux 5x

Tinker — Today at 12:12 pfSense ain't Linux... Just sayin' NEW

TheGuruOfNothing — Today at 12:12 it didn't even try to install, said media not present [12:12] I deleted the ISO and downloading new copy directly to server [12:12] will use OTHER