Proxmox Backup and the and the vzdump hook script
My setup I use the Proxmox Backup Server to create backups of my VMs. The Proxmox Backup Server runs as a VM on a different (TrueNAS) server. The server is connected to a PDU. Therefore the PDU Outlets must be switched on and off… Here is my (preliminary) vzdump hook script #!/bin/bash #set -x remote_user="<remote-user>" remote_host="<remote-host>" backup_host="<proxmox-backup-server>" remote_storage="vaultpbs" replication_process_name="zettarepl:" check_backup_task="ssh ${remote_user}@${backup_host} proxmox-backup-manager task list" check_replication_task="ssh ${remote_user}@${remote_host} pgrep -f ${replication_process_name}" shutdown_backup_host="ssh ${remote_user}@${backup_host} shutdown -P now" shutdown_remote_host="ssh ${remote_user}@${remote_host} shutdown -P now" if [ "$1" == "job-init" ]; then logger "Backup starts. Wake ${remote_host}" # PDU Power on server vault and switch snmpset -v2c -c private . i 1 snmpset -v2c -c private . i 1 echo "waiting..." sleep 600 echo "pinging..." ping $remote_host -c 10 /usr/sbin/pvesm set $remote_storage -disable false fi if [ "$1" == "job-end" ]; then logger "Backup finished" while true; do output_backup_task=$(eval ${check_backup_task}) output_replication_task=$(eval ${check_replication_task}) # Check if backup or replication is still running if [ -n "$output_backup_task" ] || [ -n "$output_replication_task" ]; then logger "Backup Jobs still running on ${remote_host}" else logger "Backup finished. Shutdown ${backup_host}" $shutdown_backup_host sleep 300 logger "Backup finished. Shutdown ${remote_host}" $shutdown_remote_host break # Exit the loop if the process is not running fi sleep 120 # Wait for 120 seconds before checking again done /usr/sbin/pvesm set $remote_storage -disable true sleep 600 # PDU Power off server vault and switch snmpset -v2c -c private . i 2 snmpset -v2c -c private . i 2 fi exit 0 The purpose of this script. Before backing up the VMs Switching on the server Wait until the server is running Activate the remote_storage - backup destination After the backup of the VMs Check whether other processes are running on the backup server other Proxmox backup processes or (TrueNAS) replication processes Shutdown of the PBS VM Shutdown of the server Deactivate the remote_storage - backup destination Switch off the PDU outlets Add the script to the backup job After creating the script, it needs to be activated so that it is used during a backup job. ...
Passthrough Physical Disk to a Proxmox Virtual Machine
For some VMs you want to have access to the physical harddrive or SSD. For example if you want to virtualise TrueNAS. There is a good article from Proxmox here One piece is missing and that is how you add the serial number of the HDD/SSD to that device. Here is an example with a TrueNAS VM Install the TrueNAS VM on a standard Proxmox Hard Disk (scsi0) Shutdown the VM after the installation On the proxmox console run lshw -class disk -class storage (you might need to install lshw) Look for the HDD you want to passthrough to the VM Find the serialnumber Get the path/device ls -l /dev/disk/by-id | grep <serialnumber> Add the device to the TrueNAS VM qm set <id-of-the-truenas-vm> -scsi1 /dev/disk/by-id/ata-TOSHIBA_MG09ACA18TE_X220A0X0FJDH Repeat 2-4 for more HDDs - keep in mind to increase the number for -scsi<number> Edit the config file of the VM and add the serials to the of the line of the HDDs devices ,serial=X220A0X0FJDH Example - see scsi1: and scsi2: ...
Converting image files with macOS command line tool sips
Simple Image Conversion from the Command Line sips -s format [image type] [file name] --out [output file] Example sips -s format png test.jpg --out test.png Batch Image Conversion with sips for i in *.jpeg; do sips -s format png $i --out Converted/$i.png;done Links Converting Image File Formats with the Command Line & sips
Obsidian Blogging Setup
How I’ve setup Obsidian for blogging I’ve stumbled across this during scrolling through different youtube videos. Networkchuck showed here how he is using Obsidian for blogging -> I started a blog… in 2024 Blogpost Setup of the Obsidian Vault Create a specific directory where all blogposts are located Images should be located in a specific directory (see below) Hugo Setup Create a new site hugo new site testblog27122024 git init Congratulations! Your new Hugo site was created in /Users/harry/Developer/testblog27122024. Just a few more steps... 1. Change the current directory to /Users/harry/Developer/testblog27122024. 2. Create or install a theme: - Create a new theme with the command "hugo new theme <THEMENAME>" - Or, install a theme from 3. Edit hugo.toml, setting the "theme" property to the theme name. 4. Create new content with the command "hugo new content <SECTIONNAME>/<FILENAME>.<FORMAT>". 5. Start the embedded web server with the command "hugo server --buildDrafts". See documentation at Initialized empty Git repository in /Users/harry/Developer/testblog27122024/.git/ Add a theme (PaperMod) git submodule add --depth=1 themes/PaperMod ...
Meine ersten Obsidian Tweaks
Änderungen in den Obsidian Settings damit die Attachments in einem Subfolder gespeichert werden So sieht die Struktur aus ohne Anpassung In den Einstellungen auf folgendes geändert Files and Links -> Default location for new attachments -> In subfolder under current folder So sieht das dann im Finder aus GIT Siehe Git Repo auf Github oder Gitlab anlegen git init in dem Verzeichnis des Vaults git remote add origin [URL] Commit your changes: git add . and git commit -m "Your message". Push the changes: git push origin main. Git Plugin Siehe ...
fail2ban I’m using fail2ban to block script kiddies. Here is one line what you will find in your auth.log May 11 05:32:14 srv01 sshd[79609]: Invalid user postgres from port 46504 This description can help you how to install and configure fail2ban I will update this post with new infos. Installation - Ubuntu / Debian sudo apt-get update sudo apt-get upgrade sudo apt-get install fail2ban Installation FreeBSD sudo pkg install py37-fail2ban Configuration Configuration Ubuntu / Devian cd /etc/fail2ban sudo vi jail.local This configuration is for the sshd daemon. If a user fails to connect three times (maxretry = 3) within 24 hours (findtime = 24h) to login via ssh, he will get banned indefinitely (bantime = -1). ...
macOS and the X Window System with XQuartz
macOS and the X Window System If you want to use the X Window System on macOS, you need XQuartz. Install XQuartz brew cask install xquartz After a Reboot you will get the $DISPLAY set correctly. Test with xeyes /opt/X11/bin/xeyes SSH X11Forwarding You can now use ssh -X or ssh -Y Uninstall brew cask uninstall xquartz Start XQuartz temprorary This is only necessary if you want to start XQuartz without a reboot. ...
Goodbye Ghost
Goodbye Ghost Its time to say goodbye to the software I’ve used for long time to blog here. Ghost was a perfect piece of software when I started (again). I’ve learned a lot during that time, e.g. Markdown, configuring NGINX to serve data from Ghost. And how to get nodejs running on my server (which is not that easy as it sounds. more later…) Why? The problems I’ve had: It relies on nodejs - especially at the beginning, there had been some restrictions with the versions. Therefore it was necessary to find a version that is supported with the OS I use and which works with Ghost. That made updates of FreeBSD not that easy, as nodejs need some more specific attention (e.g. add some changes to the node4 Makefile to be able to run sudo portmaster -m DISABLE_VULNERABILITIES=yes www/node4) I’ve created my own startup script for ghost. Meanwhile there are many and better versions available. Just search for ghost_start() and you will find plenty of them. I had massive problems to get Ghost updated to newer version. In more detail, I wasn’t able to export the blog settings and data. It was always a hassle to do that by hand. Therefore I was not able to update it regularly. All of that lead to a bad gut feeling (security) I still believe that Ghost is a wonderful platform for blogging. Especially the hosted version. ...
Using letsencrypt with macOS Server
Even with all the restrictions of today some people need to run macOS Server (mojave 5.7.1). With the availability of letsencrypt it is possible to use this server with a proper signed certificate instead of a self-signed certficate. I am using cloudflare-dns. With some changes you can use this also for other methods. This is a tutorial and scripts to install letsencrypt, get a certificate an renew it. Use it on your own risk! ...
Docker on macOS - Fatal Error
Fatal Error My Docker on macOS doesn’t start anymore. It shows the following At the very last line, you can see the following Error Message: no space left on device Disk full? Of course there is enough space on my local drive available, but the Docker disk image see FAQ is full. The disk image is located here ~/Library/Containers/com.docker.docker/Data/com.docker.driver.amd64-linux/Docker.qcow2 With the qcow-tool you can check it: $ /Applications/ info Docker.qcow2 ((version Three) (backing_file_offset 0) (backing_file_size 0) (cluster_bits 16) (size 68719476736) (crypt_method None) (l1_size 128) (l1_table_offset ((bytes 131072) (is_mutable false) (is_compressed false))) (refcount_table_offset ((bytes 65536) (is_mutable false) (is_compressed false))) (refcount_table_clusters 1) (nb_snapshots 0) (snapshots_offset 0) (additional (((dirty true) (corrupt false) (lazy_refcounts true) (autoclear_features 0) (refcount_order 4)))) (extensions ((Feature_name_table (((ty Incompatible) (bit 0) (feature Dirty)) ((ty Incompatible) (bit 1) (feature Corrupt)) ((ty Compatible) (bit 0) (feature Lazy_refcounts))))))) Okay, looks good so far! Now how can I resize it? I wasn’t able to get it done with qcow-tool resize. ...