Difference between revisions of "Educaship Proxmox"
(→Jitsi functionality) |
(→Openness to the world) |
||
| Line 20: | Line 20: | ||
===Openness to the world=== | ===Openness to the world=== | ||
| − | We are experiencing some issues obtaining SSL certificates for our sites running behind Pfsense. Due to the absence of the certificate, the service becomes completely unavailable. | + | : To utilize pfSense better, we consider clustering VMs at [[#Peripheral VE]] and placing [[HAProxy]] and similar proxies behind pfSense on the [[#Federated VE]]. |
| + | |||
| + | : We are experiencing some issues obtaining SSL certificates for our sites running behind Pfsense. Due to the absence of the certificate, the service becomes completely unavailable. | ||
===Storage for VMs=== | ===Storage for VMs=== | ||
Revision as of 14:38, 16 April 2024
Educaship Proxmox (hereinafter, #The VE) is the ProxmoxVE and Proxmox Backup Server instances that are used at CNM Farms.
Contents
Instances
Currently, #The VE consists of two instances, #Federated VE and #Peripheral VE. #We will consider #Adding More VEs when such a need emerges.
Federated VE
- The federated part of #The VE is called CNM Bureau Farm and is based on three metal servers of Bureau Infrastructure. It utilizes
ha-managerand Ceph storage.
Peripheral VE
- The peripheral part of #The VE is called CNM Lab Farm and is based on one metal server of Lab Infrastructure.
Adding More VEs
- When #We need more resources, #We plan to add more instances similar to #Peripheral VE to the #Federated VE.
Projects
Jitsi functionality
- Jitsi software is selected to be used for webconferencing. Currently, we use some instance outside of #The VE because of challenges as follows. We have multiple Jitsi installations, one of which is in Docker. In this installation, there is no sound at all. Also, when updating Docker, a conference is not created.
Openness to the world
- To utilize pfSense better, we consider clustering VMs at #Peripheral VE and placing HAProxy and similar proxies behind pfSense on the #Federated VE.
- We are experiencing some issues obtaining SSL certificates for our sites running behind Pfsense. Due to the absence of the certificate, the service becomes completely unavailable.
Storage for VMs
We are looking for solutions for distributed storage available to several VMs. We have several websites whose databases are combined in a Galera Cluster. We need a solution for these websites' files to have a shared storage. We tried GlusterFS, but it seemed too slow to us. We copied the files to this storage for almost a week, and as a result, the website did not work.
VM automation
We are looking for VM creation automation. In some cases, we have used Ansible. We are open to any solution.
Monitoring
Our current monitoring doesn't satisfy us. We use Grafana for Proxmox. We would like to add several servers that do not use Proxmox, configure communication channels, and expand monitoring according to our tasks.
Security
security outside of iptables
Backup and recovery
adding NAS, as well as advanced backup and recovery systems
