Proxmox on DevOps OPfhttps://buck.zone/en/tags/proxmox/Recent content in Proxmox on DevOps OPfHugo -- gohugo.ioenDaniel 'Tealk' BuckSun, 10 May 2026 00:00:00 +0000Correctly Configuring VM Boot Order in Proxmox VEhttps://buck.zone/en/p/correctly-configuring-vm-boot-order-in-proxmox-ve/Sun, 10 May 2026 00:00:00 +0000https://buck.zone/en/p/correctly-configuring-vm-boot-order-in-proxmox-ve/<p>Anyone running multiple virtual machines on Proxmox VE will eventually face a simple question: In what order should the VMs boot up after a host restart? If the reverse proxy starts after the web services, they will be temporarily unreachable. If monitoring starts before the application services, the first checks will immediately trigger errors. With the right configuration, this can be avoided.</p> <h2 id="what-proxmox-can-do--and-what-it-cant">What Proxmox Can Do – and What It Can&rsquo;t </h2><p>Proxmox VE does <strong>not support true dependencies</strong> between VMs. There is no way to say: &ldquo;Start VM B only when VM A has fully booted and is reachable.&rdquo; What Proxmox offers instead is a <strong>simple start order with an optional delay value</strong>.</p> <p>The principle:</p> <ul> <li>VMs are started in <strong>ascending order</strong> of the <code>order</code> value.</li> <li>Between starts, Proxmox waits for the configured <code>up</code> delay in seconds.</li> <li>During shutdown, the order is <strong>reversed</strong>.</li> </ul> <p>This is sufficient for most scenarios—as long as the delay values are chosen generously enough.</p> <h2 id="configuration-parameters">Configuration Parameters </h2><p>Each VM has three relevant fields under <em>Options → Start/Shutdown Order</em>:</p> <table> <thead> <tr> <th>Parameter</th> <th>Meaning</th> </tr> </thead> <tbody> <tr> <td><code>order</code></td> <td>Start order – lower values start earlier</td> </tr> <tr> <td><code>up</code></td> <td>Wait time in seconds before the next VM is triggered</td> </tr> <tr> <td><code>down</code></td> <td>Timeout in seconds during shutdown</td> </tr> </tbody> </table> <p>Additionally, <strong>Start at boot</strong> (<code>onboot</code>) must be enabled for these settings to take effect when the host boots up.</p> <p>Via CLI, it looks like this:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">100</span> --onboot <span class="m">1</span> --startup <span class="nv">order</span><span class="o">=</span>1,up<span class="o">=</span><span class="m">60</span> </span></span></code></pre></td></tr></table> </div> </div><h2 id="organizing-infrastructure-into-tiers">Organizing Infrastructure into Tiers </h2><p>The most practical approach is to divide the VMs into logical <strong>start groups (tiers)</strong>. Services that depend on others are given a higher <code>order</code> value.</p> <h3 id="example-infrastructure">Example Infrastructure </h3><p>Assume the following VMs are running on the host:</p> <table> <thead> <tr> <th>VMID</th> <th>Name</th> <th>Role</th> </tr> </thead> <tbody> <tr> <td>100</td> <td>opnsense</td> <td>Firewall / Gateway</td> </tr> <tr> <td>110</td> <td>proxymanager</td> <td>Reverse Proxy (nginx Proxy Manager)</td> </tr> <tr> <td>111</td> <td>goauthentik</td> <td>SSO / Authentication</td> </tr> <tr> <td>112</td> <td>icinga</td> <td>Monitoring</td> </tr> <tr> <td>113</td> <td>synapse</td> <td>Matrix Homeserver</td> </tr> <tr> <td>114</td> <td>mastodon</td> <td>Fediverse / Social</td> </tr> </tbody> </table> <h3 id="the-start-order">The Start Order </h3><p><strong>Tier 1 – Network</strong></p> <p>Nothing works without a network. The firewall must come up first:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">100</span> --onboot <span class="m">1</span> --startup <span class="nv">order</span><span class="o">=</span>1,up<span class="o">=</span><span class="m">60</span> </span></span></code></pre></td></tr></table> </div> </div><p>A 60-second delay gives OPNsense enough time to initialize routing tables and firewall rules.</p> <p><strong>Tier 2 – Reverse Proxy</strong></p> <p>A common mistake: starting the reverse proxy after the auth service. However, without the proxy, not a single website is reachable via HTTPS—including Authentik&rsquo;s own login page. So, the proxy comes <strong>before</strong> everything else:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">110</span> --onboot <span class="m">1</span> --startup <span class="nv">order</span><span class="o">=</span>2,up<span class="o">=</span><span class="m">30</span> </span></span></code></pre></td></tr></table> </div> </div><p><strong>Tier 3 – Authentication / SSO</strong></p> <p>Only once the proxy is running can Authentik be reached via its domain. Many downstream services use Authentik as a login provider—therefore, it must be available early:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">111</span> --onboot <span class="m">1</span> --startup <span class="nv">order</span><span class="o">=</span>3,up<span class="o">=</span><span class="m">45</span> </span></span></code></pre></td></tr></table> </div> </div><p><strong>Tier 4 – Application Services</strong></p> <p>All other services can then follow in stages. Services without mutual dependencies get the same <code>order</code> value:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">113</span> --onboot <span class="m">1</span> --startup <span class="nv">order</span><span class="o">=</span>4,up<span class="o">=</span><span class="m">30</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">114</span> --onboot <span class="m">1</span> --startup <span class="nv">order</span><span class="o">=</span>4,up<span class="o">=</span><span class="m">20</span> </span></span></code></pre></td></tr></table> </div> </div><p><strong>Tier 5 – Monitoring</strong></p> <p>Monitoring services like Icinga are deliberately placed <strong>at the end of the start order</strong>. If they started too early, they would immediately produce errors and alerts for all services not yet running. When Icinga boots last, all other VMs are already reachable and the first checks run cleanly:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">112</span> --onboot <span class="m">1</span> --startup <span class="nv">order</span><span class="o">=</span>5,up<span class="o">=</span><span class="m">15</span> </span></span></code></pre></td></tr></table> </div> </div><h2 id="everything-at-once-with-a-bash-script">Everything at Once with a Bash Script </h2><p>Instead of configuring each VM individually, it can be done conveniently via a script. The script must be executed directly on the Proxmox host as <code>root</code>:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span><span class="lnt">15 </span><span class="lnt">16 </span><span class="lnt">17 </span><span class="lnt">18 </span><span class="lnt">19 </span><span class="lnt">20 </span><span class="lnt">21 </span><span class="lnt">22 </span><span class="lnt">23 </span><span class="lnt">24 </span><span class="lnt">25 </span><span class="lnt">26 </span><span class="lnt">27 </span><span class="lnt">28 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl"><span class="cp">#!/bin/bash </span></span></span><span class="line"><span class="cl"><span class="cp"></span> </span></span><span class="line"><span class="cl"><span class="c1"># Proxmox VM Autostart + Boot Order Setup</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="nb">declare</span> -A <span class="nv">startup</span><span class="o">=(</span> </span></span><span class="line"><span class="cl"> <span class="c1"># Tier 1 – Network</span> </span></span><span class="line"><span class="cl"> <span class="o">[</span>100<span class="o">]=</span><span class="s2">&#34;order=1,up=60&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="c1"># Tier 2 – Reverse Proxy</span> </span></span><span class="line"><span class="cl"> <span class="o">[</span>110<span class="o">]=</span><span class="s2">&#34;order=2,up=30&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="c1"># Tier 3 – Auth / SSO</span> </span></span><span class="line"><span class="cl"> <span class="o">[</span>111<span class="o">]=</span><span class="s2">&#34;order=3,up=45&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="c1"># Tier 4 – Application Services</span> </span></span><span class="line"><span class="cl"> <span class="o">[</span>113<span class="o">]=</span><span class="s2">&#34;order=4,up=30&#34;</span> <span class="c1"># synapse</span> </span></span><span class="line"><span class="cl"> <span class="o">[</span>114<span class="o">]=</span><span class="s2">&#34;order=4,up=20&#34;</span> <span class="c1"># mastodon</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="c1"># Tier 5 – Monitoring</span> </span></span><span class="line"><span class="cl"> <span class="o">[</span>112<span class="o">]=</span><span class="s2">&#34;order=5,up=15&#34;</span> <span class="c1"># icinga</span> </span></span><span class="line"><span class="cl"><span class="o">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">for</span> vmid in <span class="s2">&#34;</span><span class="si">${</span><span class="p">!startup[@]</span><span class="si">}</span><span class="s2">&#34;</span><span class="p">;</span> <span class="k">do</span> </span></span><span class="line"><span class="cl"> qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$vmid</span><span class="s2">&#34;</span> --onboot <span class="m">1</span> --startup <span class="s2">&#34;</span><span class="si">${</span><span class="nv">startup</span><span class="p">[</span><span class="nv">$vmid</span><span class="p">]</span><span class="si">}</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl"><span class="k">done</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="nb">echo</span> <span class="s2">&#34;&#34;</span> </span></span><span class="line"><span class="cl"><span class="nb">echo</span> <span class="s2">&#34;Done. </span><span class="si">${#</span><span class="nv">startup</span><span class="p">[@]</span><span class="si">}</span><span class="s2"> VMs configured.&#34;</span> </span></span></code></pre></td></tr></table> </div> </div><h2 id="verifying-the-configuration">Verifying the Configuration </h2><p>After execution, the configuration of individual VMs can be easily verified:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm config <span class="m">100</span> <span class="p">|</span> grep -E <span class="s2">&#34;onboot|startup&#34;</span> </span></span></code></pre></td></tr></table> </div> </div><p>Or for an overview of all VMs at once:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl"><span class="k">for</span> vmid in <span class="k">$(</span>qm list <span class="p">|</span> awk <span class="s1">&#39;NR&gt;1 {print $1}&#39;</span><span class="k">)</span><span class="p">;</span> <span class="k">do</span> </span></span><span class="line"><span class="cl"> <span class="nb">echo</span> -n <span class="s2">&#34;VMID </span><span class="nv">$vmid</span><span class="s2">: &#34;</span> </span></span><span class="line"><span class="cl"> qm config <span class="s2">&#34;</span><span class="nv">$vmid</span><span class="s2">&#34;</span> <span class="p">|</span> grep -E <span class="s2">&#34;onboot|startup&#34;</span> <span class="p">|</span> tr <span class="s1">&#39;\n&#39;</span> <span class="s1">&#39; &#39;</span> </span></span><span class="line"><span class="cl"> <span class="nb">echo</span> </span></span><span class="line"><span class="cl"><span class="k">done</span> </span></span></code></pre></td></tr></table> </div> </div><h2 id="important-notes">Important Notes </h2><ul> <li><strong>The <code>up</code> delay is not a guarantee.</strong> Proxmox waits the specified time before triggering the <em>next</em> VM—not until the current VM has fully booted. For slow services or storage-intensive VMs, choose generous values.</li> <li><strong>No true dependencies.</strong> If you really want to ensure that Service A is fully running before Service B starts, you need external solutions—such as systemd units on the VMs themselves or an Ansible playbook after boot.</li> <li><strong>Note the shutdown order.</strong> During shutdown, Proxmox automatically reverses the order. So the proxy shuts down last—which is usually what you want.</li> <li><strong>Identical <code>order</code> values are allowed.</strong> VMs with the same <code>order</code> value are triggered simultaneously. This is useful for independent services that can start in parallel.</li> </ul> <h2 id="conclusion">Conclusion </h2><p>The boot order in Proxmox is not a complex feature, but with the right tier organization, you can achieve a stable start sequence that avoids unnecessary errors when the host boots up. The most important rule: <strong>Network → Proxy → Auth → Applications → Monitoring.</strong> Maintaining this as a script keeps the configuration versionable and reproducible at any time.</p>Setting Up Proxmox Cloud-Inithttps://buck.zone/en/p/setting-up-proxmox-cloud-init/Wed, 22 Apr 2026 00:00:00 +0000https://buck.zone/en/p/setting-up-proxmox-cloud-init/<p>Cloud-Init is the de facto standard for automatically configuring virtual machines in cloud environments. In this article, I&rsquo;ll show you how to create a Cloud-Init template in Proxmox and automatically deploy VMs with it.</p> <h2 id="what-is-cloud-init">What is Cloud-Init? </h2><p>Cloud-Init is a tool that runs during the first boot of a virtual machine to automatically configure the system. This includes:</p> <ul> <li>Setting up user accounts and SSH keys</li> <li>Network configuration</li> <li>Package repository configuration</li> <li>System customizations</li> </ul> <h2 id="prerequisites">Prerequisites </h2><p>Before we begin, make sure the following packages are installed:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">apt install libguestfs-tools wget </span></span></code></pre></td></tr></table> </div> </div><h2 id="step-by-step-guide">Step-by-Step Guide </h2><h3 id="1-download-the-image">1. Download the Image </h3><p>First, download the cloud image:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">mkdir -p /opt/cloud_init </span></span><span class="line"><span class="cl"><span class="nb">cd</span> /opt/cloud_init </span></span><span class="line"><span class="cl">wget https://cloud.debian.org/images/cloud/trixie/latest/debian-13-generic-amd64.qcow2 </span></span></code></pre></td></tr></table> </div> </div><h3 id="2-install-qemu-guest-agent">2. Install qemu-guest-agent </h3><p>The qemu-guest-agent enables communication between Proxmox and the VM:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">virt-customize -a debian-13-generic-amd64.qcow2 --install qemu-guest-agent </span></span></code></pre></td></tr></table> </div> </div><h3 id="3-set-root-password">3. Set Root Password </h3><div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">virt-customize -a debian-13-generic-amd64.qcow2 --root-password password:your-password </span></span></code></pre></td></tr></table> </div> </div><h3 id="4-clear-etcmachine-id">4. Clear /etc/machine-id </h3><p>This is important for Cloud-Init:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">virt-customize -a debian-13-generic-amd64.qcow2 --run-command <span class="s2">&#34;echo -n &gt; /etc/machine-id&#34;</span> </span></span></code></pre></td></tr></table> </div> </div><h3 id="5-add-ssh-keys">5. Add SSH Keys </h3><div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span><span class="lnt">6 </span><span class="lnt">7 </span><span class="lnt">8 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">virt-customize -a debian-13-generic-amd64.qcow2 <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;mkdir -p /root/.ssh &amp;&amp; chmod 700 /root/.ssh&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;cat &gt;&gt; /root/.ssh/authorized_keys &lt;&lt; &#39;SSHEOF&#39; </span></span></span><span class="line"><span class="cl"><span class="s2">ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx user@host-1 </span></span></span><span class="line"><span class="cl"><span class="s2">ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy user@host-2 </span></span></span><span class="line"><span class="cl"><span class="s2">ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz user@host-3 </span></span></span><span class="line"><span class="cl"><span class="s2">SSHEOF&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;chmod 600 /root/.ssh/authorized_keys&#34;</span> </span></span></code></pre></td></tr></table> </div> </div><h3 id="6-enable-ssh-root-login-optional">6. Enable SSH Root Login (optional) </h3><div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">virt-customize -a debian-13-generic-amd64.qcow2 <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;sed -i &#39;s/#PermitRootLogin prohibit-password/PermitRootLogin yes/&#39; /etc/ssh/sshd_config&#34;</span> </span></span></code></pre></td></tr></table> </div> </div><h3 id="7-create-vm">7. Create VM </h3><p>Now create the VM in Proxmox:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm create <span class="m">9999</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --name debian-13 <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --memory <span class="m">2048</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --cores <span class="m">4</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --net0 virtio,bridge<span class="o">=</span>vmbr1 </span></span></code></pre></td></tr></table> </div> </div><h3 id="8-import-disk">8. Import Disk </h3><div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm importdisk <span class="m">9999</span> debian-13-generic-amd64.qcow2 local-zfs </span></span></code></pre></td></tr></table> </div> </div><h3 id="9-configure-vm">9. Configure VM </h3><div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --scsihw virtio-scsi-single --scsi0 <span class="s2">&#34;local-zfs:vm-9999-disk-0,cache=writeback,discard=on,ssd=1&#34;</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --boot c --bootdisk scsi0 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --scsi2 local-zfs:cloudinit </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --agent <span class="nv">enabled</span><span class="o">=</span><span class="m">1</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --serial0 socket </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --vga serial0 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --cpu <span class="nv">cputype</span><span class="o">=</span>host </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --ostype l26 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --balloon <span class="m">2048</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --ciupgrade <span class="m">1</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --ipconfig0 <span class="nv">ip</span><span class="o">=</span>dhcp </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --nameserver 192.168.1.1 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --searchdomain localdomain </span></span></code></pre></td></tr></table> </div> </div><h3 id="explanation-of-qm-set-commands">Explanation of qm set Commands </h3><table> <thead> <tr> <th>Command</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><code>--scsihw virtio-scsi-single</code></td> <td>Configure SCSI controller</td> </tr> <tr> <td><code>--boot c --bootdisk scsi0</code></td> <td>Set boot order</td> </tr> <tr> <td><code>--scsi2 ...:cloudinit</code></td> <td>Add Cloud-Init disk</td> </tr> <tr> <td><code>--agent enabled=1</code></td> <td>Enable qemu-guest-agent</td> </tr> <tr> <td><code>--serial0 socket</code></td> <td>Serial console</td> </tr> <tr> <td><code>--vga serial0</code></td> <td>VGA output to serial0</td> </tr> <tr> <td><code>--cpu cputype=host</code></td> <td>CPU type</td> </tr> <tr> <td><code>--ostype l26</code></td> <td>Linux 2.6+ kernel</td> </tr> <tr> <td><code>--balloon</code></td> <td>Memory ballooning</td> </tr> <tr> <td><code>--ciupgrade 1</code></td> <td>Cloud-Init upgrade</td> </tr> <tr> <td><code>--ipconfig0 ip=dhcp</code></td> <td>DHCP for network</td> </tr> <tr> <td><code>--nameserver</code></td> <td>DNS server</td> </tr> <tr> <td><code>--searchdomain</code></td> <td>Search domain</td> </tr> </tbody> </table> <h3 id="10-mark-as-template">10. Mark as Template </h3><p>Finally, mark the VM as a template:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm template <span class="m">9999</span> </span></span></code></pre></td></tr></table> </div> </div><h2 id="adjusting-cloud-init-configuration">Adjusting Cloud-Init Configuration </h2><p>To start a VM from the template, you can adjust the Cloud-Init configuration:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --ipconfig0 <span class="nv">ip</span><span class="o">=</span>192.168.1.100/24,gw<span class="o">=</span>192.168.1.1 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --nameserver 8.8.8.8 </span></span></code></pre></td></tr></table> </div> </div><h3 id="static-ip-address">Static IP Address </h3><p>You can also configure static IP addresses with Cloud-Init:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --ipconfig0 <span class="nv">ip</span><span class="o">=</span>192.168.1.100/24,gw<span class="o">=</span>192.168.1.1 </span></span></code></pre></td></tr></table> </div> </div><h2 id="cloud-init-configuration-files">Cloud-Init Configuration Files </h2><p>Cloud-Init uses two main configuration files stored on a separate drive (CIDATA):</p> <h3 id="user-data">user-data </h3><p>The <code>user-data</code> file contains the user configuration. Create an ISO file with both files:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span><span class="lnt">15 </span><span class="lnt">16 </span><span class="lnt">17 </span><span class="lnt">18 </span><span class="lnt">19 </span><span class="lnt">20 </span><span class="lnt">21 </span><span class="lnt">22 </span><span class="lnt">23 </span><span class="lnt">24 </span><span class="lnt">25 </span><span class="lnt">26 </span><span class="lnt">27 </span><span class="lnt">28 </span><span class="lnt">29 </span><span class="lnt">30 </span><span class="lnt">31 </span><span class="lnt">32 </span><span class="lnt">33 </span><span class="lnt">34 </span><span class="lnt">35 </span><span class="lnt">36 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">mkdir -p /tmp/cloud-init-iso </span></span><span class="line"><span class="cl"><span class="nb">cd</span> /tmp/cloud-init-iso </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="c1"># Create user-data</span> </span></span><span class="line"><span class="cl">cat &gt; user-data <span class="s">&lt;&lt; &#39;EOF&#39; </span></span></span><span class="line"><span class="cl"><span class="s">#cloud-config </span></span></span><span class="line"><span class="cl"><span class="s">users: </span></span></span><span class="line"><span class="cl"><span class="s"> - name: admin </span></span></span><span class="line"><span class="cl"><span class="s"> sudo: ALL=(ALL) NOPASSWD:ALL </span></span></span><span class="line"><span class="cl"><span class="s"> groups: sudo </span></span></span><span class="line"><span class="cl"><span class="s"> shell: /bin/bash </span></span></span><span class="line"><span class="cl"><span class="s"> ssh-authorized-keys: </span></span></span><span class="line"><span class="cl"><span class="s"> - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx user@host-1 </span></span></span><span class="line"><span class="cl"><span class="s"> - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy user@host-2 </span></span></span><span class="line"><span class="cl"><span class="s"> - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz user@host-3 </span></span></span><span class="line"><span class="cl"><span class="s"> </span></span></span><span class="line"><span class="cl"><span class="s">package_update: true </span></span></span><span class="line"><span class="cl"><span class="s">packages: </span></span></span><span class="line"><span class="cl"><span class="s"> - vim </span></span></span><span class="line"><span class="cl"><span class="s"> - curl </span></span></span><span class="line"><span class="cl"><span class="s"> - wget </span></span></span><span class="line"><span class="cl"><span class="s"> - git </span></span></span><span class="line"><span class="cl"><span class="s"> </span></span></span><span class="line"><span class="cl"><span class="s">runcmd: </span></span></span><span class="line"><span class="cl"><span class="s"> - systemctl enable sshd </span></span></span><span class="line"><span class="cl"><span class="s"> - timedatectl set-timezone Europe/Berlin </span></span></span><span class="line"><span class="cl"><span class="s">EOF</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="c1"># Create meta-data</span> </span></span><span class="line"><span class="cl">cat &gt; meta-data <span class="s">&lt;&lt; &#39;EOF&#39; </span></span></span><span class="line"><span class="cl"><span class="s">instance-id: debian-13-vm </span></span></span><span class="line"><span class="cl"><span class="s">local-hostname: debian-13-vm </span></span></span><span class="line"><span class="cl"><span class="s">EOF</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="c1"># Create ISO</span> </span></span><span class="line"><span class="cl">genisoimage -output cloud-init.iso -volid cidata -rock -joliet meta-data user-data </span></span></code></pre></td></tr></table> </div> </div><h3 id="cloud-init-modules-explained">Cloud-Init Modules Explained </h3><p>Cloud-Init supports many modules. The most important ones are:</p> <table> <thead> <tr> <th>Module</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><code>users</code></td> <td>Create user accounts</td> </tr> <tr> <td><code>packages</code></td> <td>Install packages</td> </tr> <tr> <td><code>package_update</code></td> <td>Update package list</td> </tr> <tr> <td><code>package_upgrade</code></td> <td>Upgrade packages</td> </tr> <tr> <td><code>runcmd</code></td> <td>Execute commands on first boot</td> </tr> <tr> <td><code>write_files</code></td> <td>Write files</td> </tr> <tr> <td><code>timezone</code></td> <td>Set timezone</td> </tr> <tr> <td><code>locale</code></td> <td>Set locale</td> </tr> <tr> <td><code>ssh_authorized_keys</code></td> <td>SSH keys for users</td> </tr> <tr> <td><code>ssh_pwauth</code></td> <td>SSH password authentication</td> </tr> </tbody> </table> <h3 id="creating-users-with-sudo-rights">Creating Users with sudo Rights </h3><p>By default, the default user (admin) can already use sudo. For additional users:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">users</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l">admin</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">sudo</span><span class="p">:</span><span class="w"> </span><span class="l">ALL=(ALL) NOPASSWD:ALL</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">groups</span><span class="p">:</span><span class="w"> </span><span class="l">sudo,adm</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">shell</span><span class="p">:</span><span class="w"> </span><span class="l">/bin/bash</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">ssh-authorized-keys</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">ssh-ed25519 AAAAC3N...</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l">monitoring</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">sudo</span><span class="p">:</span><span class="w"> </span><span class="l">ALL=(ALL) NOPASSWD:ALL</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">groups</span><span class="p">:</span><span class="w"> </span><span class="l">sudo</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">shell</span><span class="p">:</span><span class="w"> </span><span class="l">/bin/bash</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><h3 id="installing-packages">Installing Packages </h3><p>To install packages on first boot:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span><span class="lnt">6 </span><span class="lnt">7 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">packages</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">vim</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">curl</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">wget</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">git</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">htop</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">net-tools</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><h3 id="configuring-package-repositories">Configuring Package Repositories </h3><p>To add custom package repositories:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">write_files</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">path</span><span class="p">:</span><span class="w"> </span><span class="l">/etc/apt/sources.list.d/custom.list</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">content</span><span class="p">:</span><span class="w"> </span><span class="p">|</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> deb https://repo.example.com/debian stable main</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">permissions</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;0644&#34;</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p>Or for a local mirror:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span><span class="lnt">6 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">write_files</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">path</span><span class="p">:</span><span class="w"> </span><span class="l">/etc/apt/sources.list</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">content</span><span class="p">:</span><span class="w"> </span><span class="p">|</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> deb http://192.168.1.10/debian bookworm main contrib </span></span></span><span class="line"><span class="cl"><span class="sd"> deb http://192.168.1.10/debian bookworm-updates main contrib</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">permissions</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;0644&#34;</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><h3 id="mounting-cloud-init-iso-in-proxmox">Mounting Cloud-Init ISO in Proxmox </h3><p>After creating the ISO, you can use it as a Cloud-Init drive:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl"><span class="c1"># Copy ISO to Proxmox server</span> </span></span><span class="line"><span class="cl">scp cloud-init.iso root@proxmox:/tmp/ </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="c1"># Configure as Cloud-Init drive</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">9999</span> --ide2 local:iso/cloud-init.iso,media<span class="o">=</span>cdrom </span></span></code></pre></td></tr></table> </div> </div><h3 id="automatic-configuration-on-clone">Automatic Configuration on Clone </h3><p>When cloning a VM from a template, you can adjust the Cloud-Init configuration:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl"><span class="c1"># Clone VM</span> </span></span><span class="line"><span class="cl">qm clone <span class="m">9999</span> <span class="m">100</span> --name debian-13-new </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="c1"># Set Cloud-Init configuration</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">100</span> --ipconfig0 <span class="nv">ip</span><span class="o">=</span>192.168.1.200/24,gw<span class="o">=</span>192.168.1.1 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">100</span> --nameserver 192.168.1.1 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">100</span> --searchdomain localdomain </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="c1"># SSH keys for new user</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="m">100</span> --sshkeys <span class="s2">&#34;ssh-ed25519 AAAAC3N...&#34;</span> </span></span></code></pre></td></tr></table> </div> </div><h3 id="network-configuration">Network Configuration </h3><p>For more complex network configurations, you can use <code>network-config</code>:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">cat &gt; network-config <span class="s">&lt;&lt; &#39;EOF&#39; </span></span></span><span class="line"><span class="cl"><span class="s">version: 2 </span></span></span><span class="line"><span class="cl"><span class="s">ethernets: </span></span></span><span class="line"><span class="cl"><span class="s"> ens18: </span></span></span><span class="line"><span class="cl"><span class="s"> addresses: </span></span></span><span class="line"><span class="cl"><span class="s"> - 192.168.1.100/24 </span></span></span><span class="line"><span class="cl"><span class="s"> gateway4: 192.168.1.1 </span></span></span><span class="line"><span class="cl"><span class="s"> nameservers: </span></span></span><span class="line"><span class="cl"><span class="s"> addresses: </span></span></span><span class="line"><span class="cl"><span class="s"> - 192.168.1.1 </span></span></span><span class="line"><span class="cl"><span class="s"> - 8.8.8.8 </span></span></span><span class="line"><span class="cl"><span class="s"> search: </span></span></span><span class="line"><span class="cl"><span class="s"> - localdomain </span></span></span><span class="line"><span class="cl"><span class="s">EOF</span> </span></span></code></pre></td></tr></table> </div> </div><h2 id="conclusion">Conclusion </h2><p>With Cloud-Init, you can quickly and automatically deploy VMs in Proxmox. The template only needs to be created once, and then you can clone as many VMs as you want from it and start them with individual configuration.</p> <p>The main advantages are:</p> <ul> <li>Automated VM deployment</li> <li>Centralized configuration via Cloud-Init</li> <li>Reusable templates</li> <li>Flexible network configuration</li> </ul> <hr> <h2 id="complete-script">Complete Script </h2><p>Here is the complete script for automatically creating a Cloud-Init template:</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span><span class="lnt">15 </span><span class="lnt">16 </span><span class="lnt">17 </span><span class="lnt">18 </span><span class="lnt">19 </span><span class="lnt">20 </span><span class="lnt">21 </span><span class="lnt">22 </span><span class="lnt">23 </span><span class="lnt">24 </span><span class="lnt">25 </span><span class="lnt">26 </span><span class="lnt">27 </span><span class="lnt">28 </span><span class="lnt">29 </span><span class="lnt">30 </span><span class="lnt">31 </span><span class="lnt">32 </span><span class="lnt">33 </span><span class="lnt">34 </span><span class="lnt">35 </span><span class="lnt">36 </span><span class="lnt">37 </span><span class="lnt">38 </span><span class="lnt">39 </span><span class="lnt">40 </span><span class="lnt">41 </span><span class="lnt">42 </span><span class="lnt">43 </span><span class="lnt">44 </span><span class="lnt">45 </span><span class="lnt">46 </span><span class="lnt">47 </span><span class="lnt">48 </span><span class="lnt">49 </span><span class="lnt">50 </span><span class="lnt">51 </span><span class="lnt">52 </span><span class="lnt">53 </span><span class="lnt">54 </span><span class="lnt">55 </span><span class="lnt">56 </span><span class="lnt">57 </span><span class="lnt">58 </span><span class="lnt">59 </span><span class="lnt">60 </span><span class="lnt">61 </span><span class="lnt">62 </span><span class="lnt">63 </span><span class="lnt">64 </span><span class="lnt">65 </span><span class="lnt">66 </span><span class="lnt">67 </span><span class="lnt">68 </span><span class="lnt">69 </span><span class="lnt">70 </span><span class="lnt">71 </span><span class="lnt">72 </span><span class="lnt">73 </span><span class="lnt">74 </span><span class="lnt">75 </span><span class="lnt">76 </span><span class="lnt">77 </span><span class="lnt">78 </span><span class="lnt">79 </span><span class="lnt">80 </span><span class="lnt">81 </span><span class="lnt">82 </span><span class="lnt">83 </span><span class="lnt">84 </span><span class="lnt">85 </span><span class="lnt">86 </span><span class="lnt">87 </span><span class="lnt">88 </span><span class="lnt">89 </span><span class="lnt">90 </span><span class="lnt">91 </span><span class="lnt">92 </span><span class="lnt">93 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl"><span class="cp">#!/bin/bash </span></span></span><span class="line"><span class="cl"><span class="cp"></span> </span></span><span class="line"><span class="cl"><span class="nv">WORK_DIR</span><span class="o">=</span><span class="s2">&#34;/opt/cloud_init&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">IMAGE_URL</span><span class="o">=</span><span class="s2">&#34;https://cloud.debian.org/images/cloud/trixie/latest/debian-13-generic-amd64.qcow2&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">IMAGE_NAME</span><span class="o">=</span><span class="s2">&#34;debian-13-generic-amd64.qcow2&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">VM_ID</span><span class="o">=</span><span class="s2">&#34;9999&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">VM_NAME</span><span class="o">=</span><span class="s2">&#34;debian-13&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">VM_MEMORY</span><span class="o">=</span><span class="s2">&#34;2048&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">VM_CORES</span><span class="o">=</span><span class="s2">&#34;4&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">VM_BRIDGE</span><span class="o">=</span><span class="s2">&#34;vmbr1&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">STORAGE_LOCAL</span><span class="o">=</span><span class="s2">&#34;local-zfs&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">ROOT_PASSWORD</span><span class="o">=</span><span class="s2">&#34;xxx&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">NAMESERVER</span><span class="o">=</span><span class="s2">&#34;192.168.1.1&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">SEARCHDOMAIN</span><span class="o">=</span><span class="s2">&#34;localdomain&#34;</span> </span></span><span class="line"><span class="cl"><span class="nv">ENABLE_ROOT_SSH</span><span class="o">=</span><span class="s2">&#34;true&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log<span class="o">()</span> <span class="o">{</span> </span></span><span class="line"><span class="cl"> <span class="nb">echo</span> <span class="s2">&#34;[</span><span class="k">$(</span>date <span class="s1">&#39;+%Y-%m-%d %H:%M:%S&#39;</span><span class="k">)</span><span class="s2">] </span><span class="nv">$1</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl"><span class="o">}</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">error<span class="o">()</span> <span class="o">{</span> </span></span><span class="line"><span class="cl"> <span class="nb">echo</span> <span class="s2">&#34;[ERROR] </span><span class="nv">$1</span><span class="s2">&#34;</span> &gt;<span class="p">&amp;</span><span class="m">2</span> </span></span><span class="line"><span class="cl"> <span class="nb">exit</span> <span class="m">1</span> </span></span><span class="line"><span class="cl"><span class="o">}</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Starte Cloud-Init Template Erstellung...&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">mkdir -p <span class="s2">&#34;</span><span class="nv">$WORK_DIR</span><span class="s2">&#34;</span> <span class="o">||</span> error <span class="s2">&#34;Konnte Verzeichnis nicht erstellen&#34;</span> </span></span><span class="line"><span class="cl"><span class="nb">cd</span> <span class="s2">&#34;</span><span class="nv">$WORK_DIR</span><span class="s2">&#34;</span> <span class="o">||</span> error <span class="s2">&#34;Konnte Verzeichnis nicht wechseln&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">if</span> <span class="o">[</span> ! -f <span class="s2">&#34;</span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> <span class="o">]</span><span class="p">;</span> <span class="k">then</span> </span></span><span class="line"><span class="cl"> log <span class="s2">&#34;Lade Cloud-Image herunter: </span><span class="nv">$IMAGE_URL</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl"> wget <span class="s2">&#34;</span><span class="nv">$IMAGE_URL</span><span class="s2">&#34;</span> <span class="o">||</span> error <span class="s2">&#34;Download fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"><span class="k">else</span> </span></span><span class="line"><span class="cl"> log <span class="s2">&#34;Image existiert bereits: </span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl"><span class="k">fi</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Installiere qemu-guest-agent...&#34;</span> </span></span><span class="line"><span class="cl">virt-customize -a <span class="s2">&#34;</span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> --install qemu-guest-agent <span class="o">||</span> error <span class="s2">&#34;qemu-guest-agent Installation fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Setze root-Passwort...&#34;</span> </span></span><span class="line"><span class="cl">virt-customize -a <span class="s2">&#34;</span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> --root-password password:<span class="s2">&#34;</span><span class="nv">$ROOT_PASSWORD</span><span class="s2">&#34;</span> <span class="o">||</span> error <span class="s2">&#34;Passwort-Setzung fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Leere /etc/machine-id...&#34;</span> </span></span><span class="line"><span class="cl">virt-customize -a <span class="s2">&#34;</span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> --run-command <span class="s2">&#34;echo -n &gt; /etc/machine-id&#34;</span> <span class="o">||</span> error <span class="s2">&#34;machine-id Leerung fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Füge SSH-Keys zu root hinzu...&#34;</span> </span></span><span class="line"><span class="cl">virt-customize -a <span class="s2">&#34;</span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;mkdir -p /root/.ssh &amp;&amp; chmod 700 /root/.ssh&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;cat &gt;&gt; /root/.ssh/authorized_keys &lt;&lt; &#39;SSHEOF&#39; </span></span></span><span class="line"><span class="cl"><span class="s2">ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx user@host-1 </span></span></span><span class="line"><span class="cl"><span class="s2">ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy user@host-2 </span></span></span><span class="line"><span class="cl"><span class="s2">ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAAAAzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz user@host-3 </span></span></span><span class="line"><span class="cl"><span class="s2">SSHEOF&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;chmod 600 /root/.ssh/authorized_keys&#34;</span> <span class="o">||</span> error <span class="s2">&#34;SSH-Keys hinzufügen fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">if</span> <span class="o">[</span> <span class="s2">&#34;</span><span class="nv">$ENABLE_ROOT_SSH</span><span class="s2">&#34;</span> <span class="o">=</span> <span class="s2">&#34;true&#34;</span> <span class="o">]</span><span class="p">;</span> <span class="k">then</span> </span></span><span class="line"><span class="cl"> log <span class="s2">&#34;Aktiviere SSH Root-Login...&#34;</span> </span></span><span class="line"><span class="cl"> virt-customize -a <span class="s2">&#34;</span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --run-command <span class="s2">&#34;sed -i &#39;s/#PermitRootLogin prohibit-password/PermitRootLogin yes/&#39; /etc/ssh/sshd_config&#34;</span> <span class="o">||</span> error <span class="s2">&#34;SSH-Konfiguration fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"><span class="k">fi</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Erstelle VM mit ID </span><span class="nv">$VM_ID</span><span class="s2">...&#34;</span> </span></span><span class="line"><span class="cl">qm create <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --name <span class="s2">&#34;</span><span class="nv">$VM_NAME</span><span class="s2">&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --memory <span class="s2">&#34;</span><span class="nv">$VM_MEMORY</span><span class="s2">&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --cores <span class="s2">&#34;</span><span class="nv">$VM_CORES</span><span class="s2">&#34;</span> <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> --net0 virtio,bridge<span class="o">=</span><span class="s2">&#34;</span><span class="nv">$VM_BRIDGE</span><span class="s2">&#34;</span> <span class="o">||</span> error <span class="s2">&#34;VM-Erstellung fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Importiere Disk...&#34;</span> </span></span><span class="line"><span class="cl">qm importdisk <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> <span class="s2">&#34;</span><span class="nv">$IMAGE_NAME</span><span class="s2">&#34;</span> <span class="s2">&#34;</span><span class="nv">$STORAGE_LOCAL</span><span class="s2">&#34;</span> <span class="o">||</span> error <span class="s2">&#34;Disk-Import fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Konfiguriere VM...&#34;</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --scsihw virtio-scsi-single --scsi0 <span class="s2">&#34;</span><span class="nv">$STORAGE_LOCAL</span><span class="s2">:vm-</span><span class="nv">$VM_ID</span><span class="s2">-disk-0,cache=writeback,discard=on,ssd=1&#34;</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --boot c --bootdisk scsi0 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --scsi2 <span class="s2">&#34;</span><span class="nv">$STORAGE_LOCAL</span><span class="s2">:cloudinit&#34;</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --agent <span class="nv">enabled</span><span class="o">=</span><span class="m">1</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --serial0 socket </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --vga serial0 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --cpu <span class="nv">cputype</span><span class="o">=</span>host </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --ostype l26 </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --balloon <span class="s2">&#34;</span><span class="nv">$VM_MEMORY</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --ciupgrade <span class="m">1</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --ipconfig0 <span class="nv">ip</span><span class="o">=</span>dhcp </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --nameserver <span class="s2">&#34;</span><span class="nv">$NAMESERVER</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl">qm <span class="nb">set</span> <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> --searchdomain <span class="s2">&#34;</span><span class="nv">$SEARCHDOMAIN</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Markiere VM als Template...&#34;</span> </span></span><span class="line"><span class="cl">qm template <span class="s2">&#34;</span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> <span class="o">||</span> error <span class="s2">&#34;Template-Markierung fehlgeschlagen&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;✓ Cloud-Init Template erfolgreich erstellt!&#34;</span> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Template ID: </span><span class="nv">$VM_ID</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl">log <span class="s2">&#34;Template Name: </span><span class="nv">$VM_NAME</span><span class="s2">&#34;</span> </span></span></code></pre></td></tr></table> </div> </div>