Book Image

Mastering Proxmox - Third Edition

By : Wasim Ahmed
4 (1)
Book Image

Mastering Proxmox - Third Edition

4 (1)
By: Wasim Ahmed

Overview of this book

Proxmox is an open source server virtualization solution that has enterprise-class features for managing virtual machines, for storage, and to virtualize both Linux and Windows application workloads. You'll begin with a refresher on the advanced installation features and the Proxmox GUI to familiarize yourself with the Proxmox VE hypervisor. Then, you'll move on to explore Proxmox under the hood, focusing on storage systems, such as Ceph, used with Proxmox. Moving on, you'll learn to manage KVM virtual machines, deploy Linux containers fast, and see how networking is handled in Proxmox. You'll also learn how to protect a cluster or a VM with a firewall and explore the new high availability features introduced in Proxmox VE 5.0. Next, you'll dive deeper into the backup/restore strategy and see how to properly update and upgrade a Proxmox node. Later, you'll learn how to monitor a Proxmox cluster and all of its components using Zabbix. Finally, you'll discover how to recover Promox from disaster strikes through some real-world examples. By the end of the book, you'll be an expert at making Proxmox work in production environments with minimal downtime.

Related Content you might be interested in

Current Title:

Small book image
Mastering Proxmox - Third Edition
Wasim Ahmed
Nov, 2017 | 494 pages
Small book image
Ceph Cookbook
Michael Hackett | Karan Singh | Vikhyat Umrao
Nov, 2017 | 466 pages
Small book image
Learning Ceph
Anthony DAtri | Vaibhav Bhembre | Karan Singh
Oct, 2017 | 340 pages
Small book image
Mastering KVM Virtualization
Prasad Mukhedkar | Anil Vettathu | Humble Devassy Chirammal | Vedran Dakic
Oct, 2020 | 686 pages
Table of Contents (23 chapters)
Title Page
Title Page
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Customer Feedback
Customer Feedback
Preface
Preface
Free Chapter
1
Understanding Proxmox VE and Advanced Installation
Understanding Proxmox VE and Advanced Installation
Understanding Proxmox features
The basic installation of Proxmox
The advanced installation option
Debugging the Proxmox installation
Proxmox subscription and repositories
Summary
2
Creating a Cluster and Exploring the Proxmox GUI
Creating a Cluster and Exploring the Proxmox GUI
Creating a Proxmox cluster
Exploring the Proxmox GUI
Summary
3
Proxmox under the Hood
Proxmox under the Hood
The Proxmox cluster file system
Proxmox directory structure
Dissecting the configuration files
Summary
4
Storage Systems
Storage Systems
Local storage versus shared storage
Local and shared storage comparison
A virtual disk image
Storage types in Proxmox
Noncommercial/commercial storage options
Summary
5
Installing and Configuring Ceph
Installing and Configuring Ceph
Ceph components
Virtual Ceph for training
Installing a Ceph cluster
Summary
6
KVM Virtual Machines
KVM Virtual Machines
Exploring KVM
Creating a KVM
Advanced configuration options for VMs
Migrating KVM virtual machines
Summary
7
LXC Virtual Machines
LXC Virtual Machines
Exploring LXC virtual machines
Understanding container templates
Creating an LXC container
Managing an LXC container
Migrating an LXC container
Accessing an LXC container
Converting OpenVZ to LXC
Summary
8
Network of Virtual Networks
Network of Virtual Networks
Exploring virtual networks
Physical networks versus virtual networks
Networking components in Proxmox
Open vSwitch
Sample virtual networks
A multi-tenant virtual environment
Summary
9
The Proxmox VE Firewall
The Proxmox VE Firewall
Exploring the Proxmox VE firewall
Configuring the data center-specific firewall
Configuring a host-specific firewall
Configuring a VM-specific firewall
Integrating a Suricata IDS/IPS
Summary
10
Proxmox High Availability
Proxmox High Availability
Understanding HA
Requirements for HA setup
Configuring Proxmox HA
Testing Proxmox HA configuration
The Proxmox HA simulator
Summary
11
Monitoring the Proxmox Cluster
Monitoring the Proxmox Cluster
An introduction to monitoring
Proxmox built-in monitoring
Zabbix as a monitoring solution
Installing Zabbix
Configuring Zabbix
Configuring SNMP in Proxmox
Adding an SNMP device in Zabbix
Monitoring the Ceph cluster with the Proxmox GUI
Monitoring a Ceph cluster with third-party options
Summary
12
Proxmox Production-Level Setup
Proxmox Production-Level Setup
Defining the production level
Sizing CPU and memory
Ceph cluster production
Liquid cooling
Real-world Proxmox scenarios
Summary
13
Back Up and Restore Virtual Machines
Back Up and Restore Virtual Machines
Proxmox backup options
Configuring backup storage
Configuring full backup
Creating snapshots
Restoring a virtual machine
Backup/restore through the CLI
Virtual machine replication
Backup configuration file
Summary
14
Updating/Upgrading Proxmox
Updating/Upgrading Proxmox
Introducing Proxmox updates
Updating Proxmox through the GUI
Updating Proxmox through the CLI
Recovering from the grub2 update issue
Updating after a subscription change
Rebooting dilemma after Proxmox updates
Summary
15
Proxmox Troubleshooting
Proxmox Troubleshooting
Proxmox node issues
The main cluster issues
Storage issues
Network connectivity issues
KVM virtual machine issues
LXC container issues
Backup/restore issues
VNC/SPICE console issues
Firewall issues
Summary
16
Rescuing Proxmox
Rescuing Proxmox
Recovering from OS drive failure
Recovering from a quorum failure
Recovering from a node failure
Recovering from a network failure
Recovering from Ceph failure
Summary

Configuring a VM-specific firewall

Rules created for a VM only apply to that particular virtual machine. Even when the virtual machine is moved to a different node, the firewall rule follows the VM throughout the cluster. There are no rules cascading from this zone. Under the VM firewall feature, we can create rules, aliases, and IPSets, but we cannot create a security group. The firewall management is the same for both the KVM virtual machines and LXC containers. We can go to the firewall feature of a VM by navigating to the VM | Firewall menu:

Creating VM firewall rules

Creating new rules for a VM is identical to the rule creation process that we have already seen in the Configuring the Datacenter firewall through the CLI section earlier in this chapter. Besides creating rules from scratch, we can also assign predefined rules in the form of a security group to a VM. The preceding screenshot shows that our example VM has three firewall rules to allow standard web server and HTTPS traffic...

Previous Section
End of Section 5
Next Section