Proxmox VE inside VirtualBox

From Proxmox VE
Revision as of 07:44, 25 November 2014 by Martin Cleaver (talk | contribs) (sequence of actions, more detail around networks)
Jump to navigation Jump to search

How to install Proxmox PVE inside Oracle VirtualBox

Motivation

For development and testing purposes, it can be useful to install PVE inside a virtual machine on e.g. a laptop. Wanting to use Virtualbox as a host for Proxmox on a laptop is a common wish but can be tricky to get right.

Laptops use usually (only) WLAN connections which can be tricky because their network address continually change, and sometimes disappear, whereas desktops can assign a static ip address on a stable network. This can cause loss of stability unless an extra network is set up.

Goal

For accessing the internet use NAT - an address would be assigned by VirtualBox's DHCP service, usually something like 192.168.x.x or 10.0.x.x - but this would keep changing and completely disappear when WLAN loses connection. Instead, to have it under control we won't use DHCP from the WLAN but rather we will manually set up a separate subnet and manually assign a static IP address for the VM containing PVE.

Prerequisites / Assumptions

For PVE inside Virtualbox to work well it's strongly recommended (otherwise it may work but can be extremely slow) that

  • your laptop needs to support HW acceleration (to be activated in BIOS, but check it your CPU supports it)
  • in virtual machine's settings the above is activated by System > Acceleration > Hardware Virtualization: Enable VT-x/AMD-V

It has to be run as Linux Debian (64-bit) guest.

  • The assumption of this article is that the PVE installation needs to be accessible only from the laptop.
  • These instructions suppose the reader has minimal knowledge of networking, advanced configuration options that assume more knowledge are at Network Model.

Containers as target

You can run Containers (OpenVZ) in PVE without any problems. It's also possible to configure KVM (Virtual Machines)... you can run these as well if they don't have any graphical interface and don't consume to much CPU resources (tested e.g. with slax-router); be careful: in all other cases the Virtual Machine will freeze and can block your guest system too!


Create Host-Only Network in Virtualbox

This network will be to permit traffic from the laptop to the PVE in Virtualbox. We set it up before installing PVE.

In Virtualbox, there may be a Host-Only network already configured. This is set up at the Preferences > Network > Host-only Networks tab. Each adapter has an IPv4 address + a IPv4 Network Mask, addresses can be served by a VirtualBox DHCP server, Proxmox PVE is best set up with a static address on the Host-Only network.

We are editing vboxnet0. We don't need a DHCP Server.

For example Virtualbox Host-Only network.png


Check from the host machine:

 $ ifconfig
       vboxnet0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
       ether 0a:00:27:00:00:00 
       inet 172.241.0.100 netmask 0xffffff80 broadcast 172.241.0.127

Install PVE

1. Create a new Virtualbox Virtual Machine for Proxmox

Sample settings:

  • Name: Proxmox-vm
  • OS Type: Linux
  • Version: Debian (64 bit)
  • Memory: 6GB
  • Disk: Use a SSD if possible. Preallocated might provide faster access.

2. Edit the settings

  • Audio: disable
  • Storage:
    • IDE - Select Empty - click IDE Secondary - select the disk symbol, pick ISO for Proxmox
  • Network:
    • Adapter 1: NAT (attention: NOT NAT-network!!)
    • Adapter 2: Host-only Adapter, vboxnet0; recommended leave the advanced settings as they are (Paravirtualized Network (virtio-net)).

The order of the adapters matter.

This means for access to PVE VirtualBox's "Host-only Network" we go via "Host-only Adapter". For access to outside (internet) from PVE use VirtualBox's "NAT".

Do not use (it's not reliable!)

  • "NAT network" (note the additional word "network"!), nor
  • "Bridged Adapter" (to WLAN)

Start the newly created Virtual Machine

  1. This will install Proxmox from the DVD ISO; pick the drive you created
  2. At the last step in PVE set up you will be asked for an IP address. Choose a static address in the IPv4 Network.

Proxmox in Virtualbox Network Setup.png

  1. Once the installer has finished, eject the ISO from the virtual DVD drive
  2. Shutdown the VM

On your laptop (the host running Virtual Box), Define the Subnet for NAT

On command line. (Assuming your machine's name is "proxmox-vm")

  • Create the Nat Subnet:
VBoxManage modifyvm "proxmox-vm" --natnet1 "192.168.11.0/24"

In VirtualBox' Machine Settings:

  • Set Adapter 1 to "NAT"

Sample results from:

VBoxManage showvminfo proxmox-vm
NIC 1:           MAC: 0800277A6644, Attachment: NAT, Cable connected: on, Trace: off (file: none), Type: virtio, Reported speed: 0 Mbps, Boot priority: 0, Promisc Policy: allow-all, Bandwidth group: none
NIC 1 Settings:  MTU: 0, Socket (send: 64, receive: 64), TCP Window (send:64, receive: 64)
NIC 2:               MAC: 080027A1CCAC, Attachment: Host-only Interface 'vboxnet0', Cable connected: on, Trace: off (file: none), Type: virtio, Reported speed: 0 Mbps, Boot priority: 0, Promisc Policy: deny, Bandwidth group: none

Start the installed Proxmox Virtual Machine

Now the virtual machine containing proxmox has started we need to reconfigure networking based on the static network independent of the WLAN settings.

Configure the Network

Changing the Default Network

Proxmox default network is set up at the last stage of configuration to e.g. IP address 172.241.0.101. The WEB GUI then runs on port 8006 answering to https.

During installation PVE's Default Network is set to eth0 on bridge adapter vmbr0. You will need to change this so that the NAT network will be connected to the first virtual NIC.

The result we want is to use eth1 / vmbr0.

You can this adapt in WEB GUI after installation. We will change things around so that instead of all traffic being routed over the WLAN bridge (i.e. containers IP addresses appear on the WLAN), internet is accessed from Proxmox and CTs via NAT, Proxmox to your laptop and vice versa goes by "Host only" network. Access from the laptop to CTs also goes via "Host Only", but gets an additional hop in virtual Proxmox host.

In summary, we will set up the PVE virtual machine in VirtualBox:

  • eth0 = "Adapter 1" connected with NAT - address 192.168.11.15/24, gateway 192.168.11.2, DNS 192.168.11.3
  • eth1 = "Adapter 2" connected with "Host only" - address 192.168.4.2/24
  • vmbr1 (not bridged to any NIC in virtual Proxmox host) - address 192.168.9.1/24


On your laptop (the host running Virtual Box), Give a route to the CTs

This says "any traffic in the 9.x network should route via .4.2"

Your syntax may vary, and you may need something like the following to make the route permanent:

  • OS X:
sudo route add network 192.168.9.0: gateway 192.168.4.2 
netstat -rn
  • Linux:
sudo route add -net 192.168.9.0/24 gw 192.168.4.2
  • PC:
??


Configure Proxmox to talk to both networks

In PVE, define a new Network Linux Bridge

This is going to bridge (send & receive) traffic that arrives on eth0 so that it looks like it originates from the NAT Subnet address (in this case 192.168.11.15) and sent to the default gateway (in this case 192.168.11.2)

Create Linux Bridge for Virtual Box Private Network.png

Assuming the NIC connected to "NAT" is eth0.

  • Make a bridge called vmbr1
  • Bridge eth0 to it
  • Assign an address from the NAT subnet to it, e.g. 192.168.11.15
  • Set default gateway to "2" in the NAT subnet, e.g. 192.168.11.2


In the OpenVZ Containers

  • venet0 address 192.168.11.16, 17 etc.
  • veth NIC bridged to vmbr1 address 192.168.9.2,3 etc
  • route to laptop with
route add -net 192.168.4.0/24 gw 192.168.9.1

Note: all traffic not specifically for the host laptop goes out via the NAT

?? Does this mean that this route has to be manually added for each new CT?

Network in Containers or KVMs

In PVE's virtual machines you can achieve access to both networks by bridging your NAT subnet address to either vmbr0 (for Internal Network) or to direct IP addressing (venet0 ; for Containers only, don't set both networks with venet0!).

Try it!

Hit the PVE web interface

PVE started in Virtualbox.png

https://172.241.0.101:8006/#v1:0:18:4::::::

Test access to network addresses

  1. From the laptop you should be able to ping the static ip address you assigned
$ ping 172.241.0.101
PING 172.241.0.101 (172.241.0.101): 56 data bytes
64 bytes from 172.241.0.101: icmp_seq=0 ttl=64 time=0.579 ms
64 bytes from 172.241.0.101: icmp_seq=1 ttl=64 time=0.710 ms 
64 bytes from 172.241.0.101: icmp_seq=2 ttl=64 time=0.411 ms


  1. From the PVE machine you should be able to see the bridge

Network from within PVE.png

  1. But because the network is host-only, only the laptop can see the VM containing PVE
  1. Test for how you ensure you see the containers goes here

Diagnostics

View your Routes from the Host

Windows

route print

Mac OS X: use the netstat command:

netstat -rn

Sample:

172.241/25              link#12            UC                 2        0 vboxnet
172.241.0.127.rdns ff:ff:ff:ff:ff:ff      UHLWbI          0        7 vboxnet

View your Routes from the PVE

netstat -rn


View your Routes from the Container

References