Signed-off-by: Wachtl Enterprises LLC <tyrolyean@escpe.net>
This commit is contained in:
Wachtl Enterprises LLC
parent
f1c8636e88
commit
1a4b859969
1 changed files with 23 additions and 25 deletions
|
|
@ -10,13 +10,13 @@ Current Maintainers:
|
|||
|
||||
# Technical
|
||||
|
||||
The hypervisors web-interface may be reached at
|
||||
https://acraze.srv.it-syndikat.org:8006 . It takes ldap credentials.
|
||||
The hypervisors web-interface may be reached at
|
||||
<https://acraze.srv.it-syndikat.org:8006>. It takes ldap credentials.
|
||||
|
||||
## UNLOCK
|
||||
|
||||
In case the server was rebootet, has received a power cut, or for any other
|
||||
reason is waiting to be unlocked, you need to unlock it. For this you need the
|
||||
reason was rebooted, you need to unlock it. For this you need the
|
||||
unlock password. As per policy, at least 4 people need to have the unlock key
|
||||
inside their personal password managers. This currently includes @tyrolyean,
|
||||
@lambda, @deneb and @drkhsh. The server is reachable during unlock at
|
||||
|
|
@ -27,22 +27,21 @@ To unlock, run `zfsunlock`.
|
|||
|
||||
## Specifications
|
||||
|
||||
The following is an excert of the
|
||||
hardware specifications:
|
||||
The following is an excerpt of the hardware specifications:
|
||||
<pre>
|
||||
.://:` `://:. root@acraze
|
||||
`hMMMMMMd/ /dMMMMMMh` -----------
|
||||
`sMMMMMMMd: :mMMMMMMMs` OS: Proxmox VE 8.1.3 x86_64
|
||||
.://:` `://:. tyrolyean@acraze
|
||||
`hMMMMMMd/ /dMMMMMMh` ----------------
|
||||
`sMMMMMMMd: :mMMMMMMMs` OS: Proxmox VE 8.3.4 x86_64
|
||||
`-/+oo+/:`.yMMMMMMMh- -hMMMMMMMy.`:/+oo+/-` Host: Super Server 0123456789
|
||||
`:oooooooo/`-hMMMMMMMyyMMMMMMMh-`/oooooooo:` Kernel: 6.5.11-7-pve
|
||||
`/oooooooo:`:mMMMMMMMMMMMMm:`:oooooooo/` Uptime: 1 hour, 12 mins
|
||||
./ooooooo+- +NMMMMMMMMN+ -+ooooooo/. Packages: XXX (dpkg)
|
||||
.+ooooooo+-`oNMMMMNo`-+ooooooo+. Shell: ITS whatever shell
|
||||
-+ooooooo/.`sMMs`./ooooooo+- Resolution: What the IPMI tells us.
|
||||
:oooooooo/`..`/oooooooo: Terminal: /dev/pts/0
|
||||
`:oooooooo/`-hMMMMMMMyyMMMMMMMh-`/oooooooo:` Kernel: 6.8.12-8-pve
|
||||
`/oooooooo:`:mMMMMMMMMMMMMm:`:oooooooo/` Uptime: 14 days, 5 hours, 17 mins
|
||||
./ooooooo+- +NMMMMMMMMN+ -+ooooooo/. Packages: 1032 (dpkg)
|
||||
.+ooooooo+-`oNMMMMNo`-+ooooooo+. Shell: fish 3.6.0
|
||||
-+ooooooo/.`sMMs`./ooooooo+- Resolution: 1920x1080
|
||||
:oooooooo/`..`/oooooooo: Terminal: /dev/pts/1
|
||||
:oooooooo/`..`/oooooooo: CPU: Intel Xeon E5-2683 v4 (64) @ 3.000GHz
|
||||
-+ooooooo/.`sMMs`./ooooooo+- GPU: 06:00.0 ASPEED Technology, Inc. ASPEED Graphics Famil
|
||||
.+ooooooo+-`oNMMMMNo`-+ooooooo+. Memory: 60625MiB / 128773MiB
|
||||
-+ooooooo/.`sMMs`./ooooooo+- GPU: NVIDIA Tesla P40
|
||||
.+ooooooo+-`oNMMMMNo`-+ooooooo+. Memory: 258922MiB / 290059MiB
|
||||
./ooooooo+- +NMMMMMMMMN+ -+ooooooo/.
|
||||
`/oooooooo:`:mMMMMMMMMMMMMm:`:oooooooo/`
|
||||
`:oooooooo/`-hMMMMMMMyyMMMMMMMh-`/oooooooo:`
|
||||
|
|
@ -54,27 +53,27 @@ hardware specifications:
|
|||
|
||||
## File system
|
||||
|
||||
VMs are stored on a ZFS raid 1. It uses ZFS subvolumes to separate virtual
|
||||
VMs are stored on a ZFS raid 1. It uses ZFS subvolumes to separate virtual
|
||||
machines.
|
||||
|
||||
## Interfacing
|
||||
|
||||
To interface either access https://10.17.4.2:8006/ or ssh to the same
|
||||
IP-Address. If you want to you can also use the hostname
|
||||
To interface either access <https://10.17.4.2:8006/> or ssh to the same
|
||||
IP-Address. If you want to you can also use the hostname
|
||||
`acraze.srv.it-syndikat.org`. The root password is noted in the ITS-keepass file on
|
||||
https://git.it-syndikat.org/IT-Syndikat/its-keepass. If you need the password
|
||||
for it, ask any member.
|
||||
|
||||
## VM Network
|
||||
|
||||
VMs should use the pre-configured bridge interface, which will put them in the
|
||||
SRV subnet on the router (currently 10.17.4.0/24). You will also get your dns
|
||||
record set into the .srv.it-syndikat.org local dyn dns domain and get an
|
||||
VMs should use the pre-configured bridge interface `vmbr0`, which will put them
|
||||
in the SRV subnet on the router (currently 10.17.4.0/24). You will also get your
|
||||
dns record set into the `.srv.it-syndikat.org` local dyn dns domain and get an
|
||||
IPv6 address assigned, but **ONLY** via dhcpv6.
|
||||
|
||||
## Commands
|
||||
|
||||
If you don't want to use the graphical interface, you can use the several
|
||||
If you don't want to use the graphical interface, you can use the several
|
||||
command line programs.
|
||||
|
||||
### List virtual machines
|
||||
|
|
@ -100,7 +99,7 @@ Note: at the time of writing there is only one storage: `tank_id`
|
|||
`qm importdisk <VM-ID> <image path> <storage>`
|
||||
|
||||
Note: if an import fails or is aborted, there will probably be a leftover zfs
|
||||
subvolume with the size of the imported image. To remove it, see the command
|
||||
subvolume with the size of the imported image. To remove it, see the command
|
||||
above.
|
||||
|
||||
### Create local (PAM) user with PVE web access
|
||||
|
|
@ -113,4 +112,3 @@ PVEAdmin which should be root equivalent:
|
|||
...
|
||||
$ pveum user add my-user@pam
|
||||
$ pveum acl modify / --roles PVEAdmin --users my-user@pam
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue