Book Image

Learning Proxmox VE

By : CHENG MAN, Rik Goldman, Ken Hess
Book Image

Learning Proxmox VE

By: CHENG MAN, Rik Goldman, Ken Hess

Overview of this book

Proxmox VE 4.1 provides an open source, enterprise virtualization platform on which to host virtual servers as either virtual machines or containers. This book will support your practice of the requisite skills to successfully create, tailor, and deploy virtual machines and containers with Proxmox VE 4.1. Following a survey of PVE's features and characteristics,this book will contrast containers with virtual machines and establish cases for both. It walks through the installation of Proxmox VE, explores the creation of containers and virtual machines, and suggests best practices for virtual disk creation, network configuration, and Proxmox VE host and guest security.Throughout the book, you will navigate the Proxmox VE 4.1 web interface and explore options for command-line management
Table of Contents (14 chapters)

Taking action

If you're not yet virtualizing infrastructure, or you're not otherwise in a position to develop a strategic security policy, there're tactics you can take in the meantime to mitigate some threats to your Proxmox virtual environment:

  • Secure the bootloader
  • If possible, lock down the BIOS/UEFI
  • Absolutely prohibit remote access to Proxmox VE's user interfaces
  • Disable root access via SSH; consider prohibiting sudo access as well
  • Use Fail2ban to prevent brute-force attacks
  • Rely on key-based SSH authentication
  • Maintain security patches for Proxmox VE and its guests
  • Consider an enterprise support subscription

The practical procedures that follow are a strong (and immediate) complement to the less concrete strategies articulated previously.

This concluding section thus walks through these immediate tactical mitigation objectives to provide immediate support as you come to terms with Proxmox VE.

Protecting the boot process

In this section, we work to assure that OS and application-level authentication...