Speed Up Your Proxmox Deployment With This Simple Trick

Thank you! I'm not quite 100% still, but I'm getting better :)

Glad it was helpful! Thanks for watching and commenting!! :)

I’m happy to see that you’re eventually getting better numbers. It’s still nowhere near what you deserve but it’s heading in the right direction 👍

Thank you so much!! I'm trying to get back into things and creating as much content as I can while I can :)

Big thanks! Much appreciated :)

Thanks for watching and leaving a comment!! Much appreciated! :)

Very welcome!

Thank you and thanks so much for checking out the new video!

If you used the turnkey core version of the debian template that I show in this video, you can go to your.prox.ct.ip:12321 you'll be brought to a login page. Enter the username "root" and whatever password you set up for the CT. Down the left side of the page, you'll see "Networking". Click that and there you can configure fail2ban and a firewall for each individual container if you want.
While you're there, there are lots of other things you can do in the webmin panel, but I wanted to point out fail2ban and firewall since they were specifically mentioned in your question.

Thanks for the tip!

You might look here: dietpi.com/blog/?p=2642

I set up a new LXC for each service I'm running. In some cases that might include a Wordpress container, a MySQL container, a Redis container, etc. But each service gets its own LXC so that I can keep everything more separate and more easily recoverable if something goes wrong. I explain in more detail here: czcams.com/video/8E4B4b-7wAM/video.html

@@DBTechYT I was able to reply, I found the answer looking at your video LXCs vs VMs - What Was My Rationale? Thank you so much!!

@@DBTechYT How do you have the clones generate new ssh host key files? Also when I followed this and cloned my template, each clone i created had the same IP address even though all of the MAC addresses were different

honest oversight when I started working on the script. definitely need to fix that. thanks for pointing it out :)

Again, thank you for pointing this out. I've modified both of the scripts I showed in this video to also add the user to the docker group. Credited you in the update notes on Github! :)

Just after writing this comment CZcams suggested to me a video from you from a year ago talking about that 😅

This is just an example of how I deploy LXCs faster in my homelab. I have every service on my setup running in a separate LXC. Each one is deployed from the same template (an earlier version of the Portainer script I've got on Github). The nice thing about both Portainer and Dockge is that you can control multiple nodes from one Portainer or Dockge dashboard if you want. I even made a video about doing this with Dockge fairly recently.

@@DBTechYT Oh ok that makes sense. Ya I saw it. Great vid btw. Was up late playing around so was braindead at a point. LOL thanks for the reply!

Thanks for watching and commenting!! Much appreciated!! :)

That's why I don't use DHCP for my templates. Once it deploys, my router gives it an IP and then I assign the IP as static in my router.

@@DBTechYT What you mean your router gives it an IP?
That would be with DHCP if it did??

@@calummcallister137 Yeah. I set my LXCs to use DHCP. I show that in the video. Then, once I've got a container/device up and running the way I want. I log into my router and tell it to keep that IP assigned to that container/device. The container/device doesn't know the difference, but my router now has it set as a static IP in the router.

I think if you clone from a container it clones as is. If you clone from a template it changes the mac address of the network interface and then it will receive new ip.
I'm just starting with proxmox so this could be totally wrong 😅

I have a feeling Proxmox wants to manage the networking, that way you can change the IP or hostname of an LXC from the Proxmox GUI or CLI, change the LXC name or IP and the hostname changes to match, certainly on Ubuntu there are warning in the network config files saying Proxmox Managed. I am talking about the vanilla templates not the Turnkey ones though, they could be different

They're more lightweight than VMs because they're able to share resourced like the Proxmox Kernel, but there are some limitations and sometimes a VM is the better solution. But I like keeping things light and fast whenever I can, so I use LXCs for most things.
I explain a bit more in this video: czcams.com/video/8E4B4b-7wAM/video.html

That's awesome!!

Interested to see how the cloud-init script works as I have wondered about doing this myself then the customisation is the same between VM’s using the cloud images and LXC. At the moment I build Ansible into the template and initiate a pull on boot which bloats the container. Cloudi-init also would take care of the source LXC and all the clones having duplicate SSH host keys I think?

I've been running docker inside an LXC just like I show in this video for more than a year and everything has been running without issue the entire time :)

@@DBTechYTYes, it's funny. There are many different opinions.
Proxmox itself says: "NoteIf you want to run application containers, for example, Docker images, it is recommended that you run them inside a Proxmox QEMU VM. This will give you all the advantages of application containerization, while also providing the benefits that VMs offer, such as strong isolation from the host and the ability to live-migrate, which otherwise isn’t possible with containers. "
What is best practice here?

If Proxmox says that's best practice for their product, it very well may be what they said.

@@DBTechYT Yes, probably.
VMs are just a little more complicated to handle.
Let's see.

Wondering what the benefits are to using the Turnkey versions and then disabling the “bloatware” over using the standard Debian template from Proxmox? I have never really used the Turnkey versions.

@@richardbillington3185 very very slick and easy to install Debian Linux.