Proxmox VE Administration Guide

.13. pvesr – Proxmox VE Storage Replication

pvesr<COMMAND> [ARGS] [OPTIONS]

pvesr create-local-job<id> <target>[OPTIONS]

Create a new replication job

pvesr delete<id>[OPTIONS]

Mark replication job for removal.

pvesr disable<id>

Disable a replication job.

pvesr enable<id>

Enable a replication job.

pvesr finalize-local-job<id> [<extra-args>][OPTIONS]

Finalize a replication job. This removes all replications snapshots with
timestamps different than <last_sync>.

pvesr help[OPTIONS]

Get help about specified command.

pvesr list

List replication jobs.

pvesr prepare-local-job<id> [<extra-args>][OPTIONS]

Prepare for starting a replication job. This is called on the target node
before replication starts. This call is for internal use, and return a JSON
object on stdout. The method first test if VM <vmid> reside on the local
node. If so, stop immediately.

After that the method scans all volume IDs
for snapshots, and removes all replications snapshots with timestamps
different than <last_sync>. It also removes any unused volumes. Returns a
hash with boolean markers for all volumes with existing replication
snapshots.

pvesr read<id>

Read replication job configuration.

pvesr run[OPTIONS]

This method is called by the systemd-timer and executes all (or a specific)
sync jobs.

pvesr schedule-now<id>

Schedule replication job to start as soon as possible.

pvesr set-state<vmid> <state>

Set the job replication state on migration. This call is for internal use.
It will accept the job state as ja JSON obj.

pvesr status[OPTIONS]

List status of all replication jobs on this node.

pvesr update<id>[OPTIONS]

Update replication job configuration.

.15. vzdump – Backup Utility for VMs and Containers

vzdumphelp

vzdump{<vmid>}[OPTIONS]

Create backup.

<vmid>: <string>

The ID of the guest system you want to backup.

–all<boolean> (default =0)

Backup all known guest systems on this host.

–bwlimit<integer> (0 – N) (default =0)

Limit I/O bandwidth (KBytes per second).

–compress<0 | 1 | gzip | lzo | zstd> (default =0)

Compress dump file.

–dumpdir<string>

Store resulting files to specified directory.

–exclude<string>

Exclude specified guest systems (assumes –all)

–exclude-path<string>

Exclude certain files/directories (shell globs). Paths starting with / are anchored to the container’s root, other paths match relative to each subdirectory.

–ionice<integer> (0 – 8) (default =7)

Set CFQ ionice priority.

–lockwait<integer> (0 – N) (default =180)

Maximal time to wait for the global lock (minutes).

–mailnotification<always | failure> (default =always)

Specify when to send an email

–mailto<string>

Comma-separated list of email addresses or users that should receive email notifications.

–maxfiles<integer> (1 – N)

Deprecated: use prune-backups instead. Maximal number of backup files per guest system.

–mode<snapshot | stop | suspend> (default =snapshot)

Backup mode.

–node<string>

Only run if executed on this node.

–notes-template<string>

Template string for generating notes for the backup(s). It can contain variables which will be replaced by their values. Currently supported are {{cluster}}, {{guestname}}, {{node}}, and {{vmid}}, but more might be added in the future.

–pigz<integer> (default =0)

Use pigz instead of gzip when N>0. N=1 uses half of cores, N>1 uses N as thread count.

–pool<string>

Backup all known guest systems included in the specified pool.

–protected<boolean>

If true, mark backup(s) as protected.

–prune-backups[keep-all=<1|0>] [,keep-daily=<N>] [,keep-hourly=<N>] [,keep-last=<N>] [,keep-monthly=<N>] [,keep-weekly=<N>] [,keep-yearly=<N>] (default =keep-all=1)

Use these retention options instead of those from the storage configuration.

–quiet<boolean> (default =0)

Be quiet.

–remove<boolean> (default =1)

Prune older backups according to prune-backups.

–script<string>

Use specified hook script.

–stdexcludes<boolean> (default =1)

Exclude temporary files and logs.

–stdout<boolean>

Write tar to stdout, not to a file.

–stop<boolean> (default =0)

Stop running backup jobs on this host.

–stopwait<integer> (0 – N) (default =10)

Maximal time to wait until a guest system is stopped (minutes).

–storage<string>

Store resulting file to this storage.

–tmpdir<string>

Store temporary files to specified directory.

–zstd<integer> (default =1)

Zstd threads. N=0 uses half of the available cores, N>0 uses N as thread count.

.16. ha-manager – Proxmox VE HA Manager

ha-manager<COMMAND> [ARGS] [OPTIONS]

ha-manager add<sid>[OPTIONS]

Create a new HA resource.

ha-manager config[OPTIONS]

List HA resources.

ha-manager crm-command migrate<sid> <node>

Request resource migration (online) to another node.

ha-manager crm-command relocate<sid> <node>

Request resource relocatzion to another node. This stops the service on the
old node, and restarts it on the target node.

ha-manager crm-command stop<sid> <timeout>

Request the service to be stopped.

ha-manager groupadd<group> –nodes <string>[OPTIONS]

Create a new HA group.

ha-manager groupconfig

Get HA groups.

ha-manager groupremove<group>

Delete ha group configuration.

ha-manager groupset<group>[OPTIONS]

Update ha group configuration.

ha-manager help[OPTIONS]

Get help about specified command.

ha-manager migrate

An alias for ha-manager crm-command migrate.

ha-manager relocate

An alias for ha-manager crm-command relocate.

ha-manager remove<sid>

Delete resource configuration.

ha-manager set<sid>[OPTIONS]

Update resource configuration.

ha-manager status[OPTIONS]

Display HA manger status.

.5. pveceph – Manage CEPH Services on Proxmox VE Nodes

pveceph<COMMAND> [ARGS] [OPTIONS]

pveceph createmgr

An alias for pveceph mgr create.

pveceph createmon

An alias for pveceph mon create.

pveceph createosd

An alias for pveceph osd create.

pveceph createpool

An alias for pveceph pool create.

pveceph destroymgr

An alias for pveceph mgr destroy.

pveceph destroymon

An alias for pveceph mon destroy.

pveceph destroyosd

An alias for pveceph osd destroy.

pveceph destroypool

An alias for pveceph pool destroy.

pveceph fs create[OPTIONS]

Create a Ceph filesystem

pveceph fs destroy<name>[OPTIONS]

Destroy a Ceph filesystem

pveceph help[OPTIONS]

Get help about specified command.

pveceph init[OPTIONS]

Create initial ceph default configuration and setup symlinks.

pveceph install[OPTIONS]

Install ceph related packages.

pveceph lspools

An alias for pveceph pool ls.

pveceph mds create[OPTIONS]

Create Ceph Metadata Server (MDS)

pveceph mds destroy<name>

Destroy Ceph Metadata Server

pveceph mgr create[OPTIONS]

Create Ceph Manager

pveceph mgr destroy<id>

Destroy Ceph Manager.

pveceph mon create[OPTIONS]

Create Ceph Monitor and Manager

pveceph mon destroy<monid>

Destroy Ceph Monitor and Manager.

pveceph osd create<dev>[OPTIONS]

Create OSD

pveceph osd destroy<osdid>[OPTIONS]

Destroy OSD

pveceph pool create<name>[OPTIONS]

Create Ceph pool

pveceph pool destroy<name>[OPTIONS]

Destroy pool

pveceph pool get<name>[OPTIONS][FORMAT_OPTIONS]

List pool settings.

pveceph pool ls[FORMAT_OPTIONS]

List all pools.

pveceph pool set<name>[OPTIONS]

Change POOL settings

pveceph purge[OPTIONS]

Destroy ceph related data and configuration files.

pveceph start[OPTIONS]

Start ceph services.

pveceph status

Get Ceph Status.

pveceph stop[OPTIONS]

Stop ceph services.

.6. pvenode – Proxmox VE Node Management

pvenode<COMMAND> [ARGS] [OPTIONS]

pvenode acme account deactivate[<name>]

Deactivate existing ACME account at CA.

pvenode acme account info[<name>][FORMAT_OPTIONS]

Return existing ACME account information.

pvenode acme account list

ACMEAccount index.

pvenode acme account register[<name>] {<contact>}[OPTIONS]

Register a new ACME account with a compatible CA.

pvenode acme account update[<name>][OPTIONS]

Update existing ACME account information with CA. Note: not specifying any
new account information triggers a refresh.

pvenode acme cert order[OPTIONS]

Order a new certificate from ACME-compatible CA.

pvenode acme cert renew[OPTIONS]

Renew existing certificate from CA.

pvenode acme cert revoke

Revoke existing certificate from CA.

pvenode acme plugin add<type> <id>[OPTIONS]

Add ACME plugin configuration.

pvenode acme plugin config<id>[FORMAT_OPTIONS]

Get ACME plugin configuration.

pvenode acme plugin list[OPTIONS][FORMAT_OPTIONS]

ACME plugin index.

pvenode acme plugin remove<id>

Delete ACME plugin configuration.

pvenode acme plugin set<id>[OPTIONS]

Update ACME plugin configuration.

pvenode cert delete[<restart>]

DELETE custom certificate chain and key.

pvenode cert info[FORMAT_OPTIONS]

Get information about node’s certificates.

pvenode cert set<certificates> [<key>][OPTIONS][FORMAT_OPTIONS]

Upload or update custom certificate chain and key.

pvenode config get[OPTIONS]

Get node configuration options.

pvenode config set[OPTIONS]

Set node configuration options.

pvenode help[OPTIONS]

Get help about specified command.

pvenode migrateall<target>[OPTIONS]

Migrate all VMs and Containers.

pvenode startall[OPTIONS]

Start all VMs and containers located on this node (by default only those
with onboot=1).

pvenode stopall[OPTIONS]

Stop all VMs and Containers.

pvenode task list[OPTIONS][FORMAT_OPTIONS]

Read task list for one node (finished tasks).

pvenode task log<upid>[OPTIONS]

Read task log.

pvenode task status<upid>[FORMAT_OPTIONS]

Read task status.

pvenode wakeonlan<node>

Try to wake a node via wake on LAN network packet.

.8. qm – Qemu/KVM Virtual Machine Manager

qm<COMMAND> [ARGS] [OPTIONS]

qm agent

An alias for qm guest cmd.

qm cleanup<vmid> <clean-shutdown> <guest-requested>

Похожее:  Ппф страхование жизни варп вход для агентов | Русская правда

Cleans up resources like tap devices, vgpus, etc. Called after a vm shuts
down, crashes, etc.

qm clone<vmid> <newid>[OPTIONS]

Create a copy of virtual machine/template.

qm cloudinit dump<vmid> <type>

Get automatically generated cloudinit config.

qm config<vmid>[OPTIONS]

Get the virtual machine configuration with pending configuration changes
applied. Set the current parameter to get the current configuration
instead.

qm create<vmid>[OPTIONS]

Create or restore a virtual machine.

<vmid>: <integer> (1 – N)

The (unique) ID of the VM.

–acpi<boolean> (default =1)

Enable/disable ACPI.

–agent[enabled=]<1|0> [,fstrim_cloned_disks=<1|0>] [,type=<virtio|isa>]

Enable/disable communication with the Qemu Guest Agent and its properties.

–arch<aarch64 | x86_64>

Virtual processor architecture. Defaults to the host.

–archive<string>

The backup archive. Either the file system path to a .tar or .vma file (use to pipe data from stdin) or a proxmox storage backup volume identifier.

–args<string>

Arbitrary arguments passed to kvm.

–audio0device=<ich9-intel-hda|intel-hda|AC97> [,driver=<spice|none>]

Configure a audio device, useful in combination with QXL/Spice.

–autostart<boolean> (default =0)

Automatic restart after crash (currently ignored).

–balloon<integer> (0 – N)

Amount of target RAM for the VM in MB. Using zero disables the ballon driver.

–bios<ovmf | seabios> (default =seabios)

Select BIOS implementation.

–boot[[legacy=]<[acdn]{1,4}>] [,order=<device[;device…]>]

Specify guest boot order. Use the order= sub-property as usage with no key or legacy= is deprecated.

–bootdisk(ide|sata|scsi|virtio)d

Enable booting from specified disk. Deprecated: Use boot: order=foo;bar instead.

–bwlimit<integer> (0 – N) (default =restore limit from datacenter or storage config)

Override I/O bandwidth limit (in KiB/s).

–cdrom<volume>

This is an alias for option -ide2

–cicustom[meta=<volume>] [,network=<volume>] [,user=<volume>] [,vendor=<volume>]

cloud-init: Specify custom files to replace the automatically generated ones at start.

–cipassword<password>

cloud-init: Password to assign the user. Using this is generally not recommended. Use ssh keys instead. Also note that older cloud-init versions do not support hashed passwords.

–citype<configdrive2 | nocloud | opennebula>

Specifies the cloud-init configuration format. The default depends on the configured operating system type (ostype. We use the nocloud format for Linux, and configdrive2 for windows.

–ciuser<string>

cloud-init: User name to change ssh keys and password for instead of the image’s configured default user.

–cores<integer> (1 – N) (default =1)

The number of cores per socket.

–cpu[[cputype=]<string>] [,flags=< FLAG[;-FLAG…]>] [,hidden=<1|0>] [,hv-vendor-id=<vendor-id>] [,phys-bits=<8-64|host>] [,reported-model=<enum>]

Emulated CPU type.

–cpulimit<number> (0 – 128) (default =0)

Limit of CPU usage.

–cpuunits<integer> (1 – 262144) (default =cgroup v1: 1024, cgroup v2: 100)

CPU weight for a VM, will be clamped to [1, 10000] in cgroup v2.

–description<string>

Description for the VM. Shown in the web-interface VM’s summary. This is saved as comment inside the configuration file.

–efidisk0[file=]<volume> [,efitype=<2m|4m>] [,format=<enum>] [,import-from=<source volume>] [,pre-enrolled-keys=<1|0>] [,size=<DiskSize>]

Configure a Disk for storing EFI vars. Use the special syntax STORAGE_ID:SIZE_IN_GiB to allocate a new volume. Note that SIZE_IN_GiB is ignored here and that the default EFI vars are copied to the volume instead. Use STORAGE_ID:0 and the import-from parameter to import from an existing volume.

–force<boolean>

Allow to overwrite existing VM.

–freeze<boolean>

Freeze CPU at startup (use c monitor command to start execution).

–hookscript<string>

Script that will be executed during various steps in the vms lifetime.

–hostpci[n][host=]<HOSTPCIID[;HOSTPCIID2…]> [,device-id=<hex id>] [,legacy-igd=<1|0>] [,mdev=<string>] [,pcie=<1|0>] [,rombar=<1|0>] [,romfile=<string>] [,sub-device-id=<hex id>] [,sub-vendor-id=<hex id>] [,vendor-id=<hex id>] [,x-vga=<1|0>]

Map host PCI devices into guest.

–hotplug<string> (default =network,disk,usb)

Selectively enable hotplug features. This is a comma separated list of hotplug features: network, disk, cpu, memory and usb. Use 0 to disable hotplug completely. Using 1 as value is an alias for the default network,disk,usb.

–hugepages<1024 | 2 | any>

Enable/disable hugepages memory.

–ide[n][file=]<volume> [,aio=<native|threads|io_uring>] [,backup=<1|0>] [,bps=<bps>] [,bps_max_length=<seconds>] [,bps_rd=<bps>] [,bps_rd_max_length=<seconds>] [,bps_wr=<bps>] [,bps_wr_max_length=<seconds>] [,cache=<enum>] [,cyls=<integer>] [,detect_zeroes=<1|0>] [,discard=<ignore|on>] [,format=<enum>] [,heads=<integer>] [,import-from=<source volume>] [,iops=<iops>] [,iops_max=<iops>] [,iops_max_length=<seconds>] [,iops_rd=<iops>] [,iops_rd_max=<iops>] [,iops_rd_max_length=<seconds>] [,iops_wr=<iops>] [,iops_wr_max=<iops>] [,iops_wr_max_length=<seconds>] [,mbps=<mbps>] [,mbps_max=<mbps>] [,mbps_rd=<mbps>] [,mbps_rd_max=<mbps>] [,mbps_wr=<mbps>] [,mbps_wr_max=<mbps>] [,media=<cdrom|disk>] [,model=<model>] [,replicate=<1|0>] [,rerror=<ignore|report|stop>] [,secs=<integer>] [,serial=<serial>] [,shared=<1|0>] [,size=<DiskSize>] [,snapshot=<1|0>] [,ssd=<1|0>] [,trans=<none|lba|auto>] [,werror=<enum>] [,wwn=<wwn>]

Use volume as IDE hard disk or CD-ROM (n is 0 to 3). Use the special syntax STORAGE_ID:SIZE_IN_GiB to allocate a new volume. Use STORAGE_ID:0 and the import-from parameter to import from an existing volume.

–ipconfig[n][gw=<GatewayIPv4>] [,gw6=<GatewayIPv6>] [,ip=<IPv4Format/CIDR>] [,ip6=<IPv6Format/CIDR>]

cloud-init: Specify IP addresses and gateways for the corresponding interface.

IP addresses use CIDR notation, gateways are optional but need an IP of the same type specified.

The special string dhcp can be used for IP addresses to use DHCP, in which case no explicit
gateway should be provided.
For IPv6 the special string auto can be used to use stateless autoconfiguration. This requires
cloud-init 19.4 or newer.

If cloud-init is enabled and neither an IPv4 nor an IPv6 address is specified, it defaults to using
dhcp on IPv4.

–ivshmemsize=<integer> [,name=<string>]

Inter-VM shared memory. Useful for direct communication between VMs, or to the host.

–keephugepages<boolean> (default =0)

Use together with hugepages. If enabled, hugepages will not not be deleted after VM shutdown and can be used for subsequent starts.

–keyboard<da | de | de-ch | en-gb | en-us | es | fi | fr | fr-be | fr-ca | fr-ch | hu | is | it | ja | lt | mk | nl | no | pl | pt | pt-br | sl | sv | tr>

Keyboard layout for VNC server. This option is generally not required and is often better handled from within the guest OS.

–kvm<boolean> (default =1)

Enable/disable KVM hardware virtualization.

–live-restore<boolean>

Start the VM immediately from the backup and restore in background. PBS only.

–localtime<boolean>

Set the real time clock (RTC) to local time. This is enabled by default if the ostype indicates a Microsoft Windows OS.

–lock<backup | clone | create | migrate | rollback | snapshot | snapshot-delete | suspended | suspending>

Lock/unlock the VM.

–machine(pc|pc(-i440fx)?-d (.d ) ( pved )?(.pxe)?|q35|pc-q35-d (.d ) ( pved )?(.pxe)?|virt(?:-d (.d ) )?( pved )?)

Specifies the Qemu machine type.

–memory<integer> (16 – N) (default =512)

Amount of RAM for the VM in MB. This is the maximum available memory when you use the balloon device.

–migrate_downtime<number> (0 – N) (default =0.1)

Set maximum tolerated downtime (in seconds) for migrations.

–migrate_speed<integer> (0 – N) (default =0)

Set maximum speed (in MB/s) for migrations. Value 0 is no limit.

–name<string>

Set a name for the VM. Only used on the configuration web interface.

–nameserver<string>

cloud-init: Sets DNS server IP address for a container. Create will’
.’ automatically use the setting from the host if neither searchdomain nor nameserver’
.’ are set.

–net[n][model=]<enum> [,bridge=<bridge>] [,firewall=<1|0>] [,link_down=<1|0>] [,macaddr=<XX:XX:XX:XX:XX:XX>] [,mtu=<integer>] [,queues=<integer>] [,rate=<number>] [,tag=<integer>] [,trunks=<vlanid[;vlanid…]>] [,<model>=<macaddr>]

Specify network devices.

–numa<boolean> (default =0)

Enable/disable NUMA.

–numa[n]cpus=<id[-id];…> [,hostnodes=<id[-id];…>] [,memory=<number>] [,policy=<preferred|bind|interleave>]

NUMA topology.

–onboot<boolean> (default =0)

Specifies whether a VM will be started during system bootup.

–ostype<l24 | l26 | other | solaris | w2k | w2k3 | w2k8 | win10 | win11 | win7 | win8 | wvista | wxp>

Specify guest operating system.

–parallel[n]/dev/parportd |/dev/usb/lpd

Map host parallel devices (n is 0 to 2).

–pool<string>

Add the VM to the specified pool.

–protection<boolean> (default =0)

Sets the protection flag of the VM. This will disable the remove VM and remove disk operations.

–reboot<boolean> (default =1)

Allow reboot. If set to 0 the VM exit on reboot.

–rng0[source=]</dev/urandom|/dev/random|/dev/hwrng> [,max_bytes=<integer>] [,period=<integer>]

Configure a VirtIO-based Random Number Generator.

–sata[n][file=]<volume> [,aio=<native|threads|io_uring>] [,backup=<1|0>] [,bps=<bps>] [,bps_max_length=<seconds>] [,bps_rd=<bps>] [,bps_rd_max_length=<seconds>] [,bps_wr=<bps>] [,bps_wr_max_length=<seconds>] [,cache=<enum>] [,cyls=<integer>] [,detect_zeroes=<1|0>] [,discard=<ignore|on>] [,format=<enum>] [,heads=<integer>] [,import-from=<source volume>] [,iops=<iops>] [,iops_max=<iops>] [,iops_max_length=<seconds>] [,iops_rd=<iops>] [,iops_rd_max=<iops>] [,iops_rd_max_length=<seconds>] [,iops_wr=<iops>] [,iops_wr_max=<iops>] [,iops_wr_max_length=<seconds>] [,mbps=<mbps>] [,mbps_max=<mbps>] [,mbps_rd=<mbps>] [,mbps_rd_max=<mbps>] [,mbps_wr=<mbps>] [,mbps_wr_max=<mbps>] [,media=<cdrom|disk>] [,replicate=<1|0>] [,rerror=<ignore|report|stop>] [,secs=<integer>] [,serial=<serial>] [,shared=<1|0>] [,size=<DiskSize>] [,snapshot=<1|0>] [,ssd=<1|0>] [,trans=<none|lba|auto>] [,werror=<enum>] [,wwn=<wwn>]

Use volume as SATA hard disk or CD-ROM (n is 0 to 5). Use the special syntax STORAGE_ID:SIZE_IN_GiB to allocate a new volume. Use STORAGE_ID:0 and the import-from parameter to import from an existing volume.

–scsi[n][file=]<volume> [,aio=<native|threads|io_uring>] [,backup=<1|0>] [,bps=<bps>] [,bps_max_length=<seconds>] [,bps_rd=<bps>] [,bps_rd_max_length=<seconds>] [,bps_wr=<bps>] [,bps_wr_max_length=<seconds>] [,cache=<enum>] [,cyls=<integer>] [,detect_zeroes=<1|0>] [,discard=<ignore|on>] [,format=<enum>] [,heads=<integer>] [,import-from=<source volume>] [,iops=<iops>] [,iops_max=<iops>] [,iops_max_length=<seconds>] [,iops_rd=<iops>] [,iops_rd_max=<iops>] [,iops_rd_max_length=<seconds>] [,iops_wr=<iops>] [,iops_wr_max=<iops>] [,iops_wr_max_length=<seconds>] [,iothread=<1|0>] [,mbps=<mbps>] [,mbps_max=<mbps>] [,mbps_rd=<mbps>] [,mbps_rd_max=<mbps>] [,mbps_wr=<mbps>] [,mbps_wr_max=<mbps>] [,media=<cdrom|disk>] [,queues=<integer>] [,replicate=<1|0>] [,rerror=<ignore|report|stop>] [,ro=<1|0>] [,scsiblock=<1|0>] [,secs=<integer>] [,serial=<serial>] [,shared=<1|0>] [,size=<DiskSize>] [,snapshot=<1|0>] [,ssd=<1|0>] [,trans=<none|lba|auto>] [,werror=<enum>] [,wwn=<wwn>]

Use volume as SCSI hard disk or CD-ROM (n is 0 to 30). Use the special syntax STORAGE_ID:SIZE_IN_GiB to allocate a new volume. Use STORAGE_ID:0 and the import-from parameter to import from an existing volume.

–scsihw<lsi | lsi53c810 | megasas | pvscsi | virtio-scsi-pci | virtio-scsi-single> (default =lsi)

SCSI controller model

–searchdomain<string>

cloud-init: Sets DNS search domains for a container. Create will’
.’ automatically use the setting from the host if neither searchdomain nor nameserver’
.’ are set.

–serial[n](/dev/. |socket)

Create a serial device inside the VM (n is 0 to 3)

–shares<integer> (0 – 50000) (default =1000)

Amount of memory shares for auto-ballooning. The larger the number is, the more memory this VM gets. Number is relative to weights of all other running VMs. Using zero disables auto-ballooning. Auto-ballooning is done by pvestatd.

–smbios1[base64=<1|0>] [,family=<Base64 encoded string>] [,manufacturer=<Base64 encoded string>] [,product=<Base64 encoded string>] [,serial=<Base64 encoded string>] [,sku=<Base64 encoded string>] [,uuid=<UUID>] [,version=<Base64 encoded string>]

Specify SMBIOS type 1 fields.

–smp<integer> (1 – N) (default =1)

The number of CPUs. Please use option -sockets instead.

–sockets<integer> (1 – N) (default =1)

The number of CPU sockets.

–spice_enhancements[foldersharing=<1|0>] [,videostreaming=<off|all|filter>]

Configure additional enhancements for SPICE.

–sshkeys<filepath>

cloud-init: Setup public SSH keys (one key per line, OpenSSH format).

–start<boolean> (default =0)

Start VM after it was created successfully.

–startdate(now | YYYY-MM-DD | YYYY-MM-DDTHH:MM:SS) (default =now)

Set the initial date of the real time clock. Valid format for date are:’now’ or 2006-06-17T16:01:21 or 2006-06-17.

–startup `[[order=]d ] [,up=d ] [,down=d ] `

Startup and shutdown behavior. Order is a non-negative number defining the general startup order. Shutdown in done with reverse ordering. Additionally you can set the up or down delay in seconds, which specifies a delay to wait before the next VM is started or stopped.

–storage<string>

Default storage.

–tablet<boolean> (default =1)

Enable/disable the USB tablet device.

–tags<string>

Tags of the VM. This is only meta information.

–tdf<boolean> (default =0)

Enable/disable time drift fix.

–template<boolean> (default =0)

Enable/disable Template.

–tpmstate0[file=]<volume> [,import-from=<source volume>] [,size=<DiskSize>] [,version=<v1.2|v2.0>]

Configure a Disk for storing TPM state. The format is fixed to raw. Use the special syntax STORAGE_ID:SIZE_IN_GiB to allocate a new volume. Note that SIZE_IN_GiB is ignored here and 4 MiB will be used instead. Use STORAGE_ID:0 and the import-from parameter to import from an existing volume.

–unique<boolean>

Assign a unique random ethernet address.

–unused[n][file=]<volume>

Reference to unused volumes. This is used internally, and should not be modified manually.

–usb[n][host=]<HOSTUSBDEVICE|spice> [,usb3=<1|0>]

Configure an USB device (n is 0 to 4).

–vcpus<integer> (1 – N) (default =0)

Number of hotplugged vcpus.

–vga[[type=]<enum>] [,memory=<integer>]

Configure the VGA hardware.

–virtio[n][file=]<volume> [,aio=<native|threads|io_uring>] [,backup=<1|0>] [,bps=<bps>] [,bps_max_length=<seconds>] [,bps_rd=<bps>] [,bps_rd_max_length=<seconds>] [,bps_wr=<bps>] [,bps_wr_max_length=<seconds>] [,cache=<enum>] [,cyls=<integer>] [,detect_zeroes=<1|0>] [,discard=<ignore|on>] [,format=<enum>] [,heads=<integer>] [,import-from=<source volume>] [,iops=<iops>] [,iops_max=<iops>] [,iops_max_length=<seconds>] [,iops_rd=<iops>] [,iops_rd_max=<iops>] [,iops_rd_max_length=<seconds>] [,iops_wr=<iops>] [,iops_wr_max=<iops>] [,iops_wr_max_length=<seconds>] [,iothread=<1|0>] [,mbps=<mbps>] [,mbps_max=<mbps>] [,mbps_rd=<mbps>] [,mbps_rd_max=<mbps>] [,mbps_wr=<mbps>] [,mbps_wr_max=<mbps>] [,media=<cdrom|disk>] [,replicate=<1|0>] [,rerror=<ignore|report|stop>] [,ro=<1|0>] [,secs=<integer>] [,serial=<serial>] [,shared=<1|0>] [,size=<DiskSize>] [,snapshot=<1|0>] [,trans=<none|lba|auto>] [,werror=<enum>]

Use volume as VIRTIO hard disk (n is 0 to 15). Use the special syntax STORAGE_ID:SIZE_IN_GiB to allocate a new volume. Use STORAGE_ID:0 and the import-from parameter to import from an existing volume.

–vmgenid<UUID> (default =1 (autogenerated))

Set VM Generation ID. Use 1 to autogenerate on create or update, pass 0 to disable explicitly.

–vmstatestorage<string>

Default storage for VM state volumes/files.

–watchdog[[model=]<i6300esb|ib700>] [,action=<enum>]

Create a virtual hardware watchdog device.

Похожее:  Модальное окно входа в систему / регистрация на CSS и jQuery

qm delsnapshot<vmid> <snapname>[OPTIONS]

Delete a VM snapshot.

qm destroy<vmid>[OPTIONS]

Destroy the VM and all used/owned volumes. Removes any VM specific
permissions and firewall rules

qm guest cmd<vmid> <command>

Execute Qemu Guest Agent commands.

qm guest exec<vmid> [<extra-args>][OPTIONS]

Executes the given command via the guest agent

qm guest exec-status<vmid> <pid>

Gets the status of the given pid started by the guest-agent

Pveum(1)

pveum<COMMAND> [ARGS] [OPTIONS]

pveum acl delete<path> –roles <string>[OPTIONS]

Update Access Control List (add or remove permissions).

pveum acl list[FORMAT_OPTIONS]

Get Access Control List (ACLs).

pveum acl modify<path> –roles <string>[OPTIONS]

Update Access Control List (add or remove permissions).

pveum acldel

An alias for pveum acl delete.

pveum aclmod

An alias for pveum acl modify.

pveum group add<groupid>[OPTIONS]

Create new group.

pveum group delete<groupid>

Delete group.

pveum group list[FORMAT_OPTIONS]

Group index.

pveum group modify<groupid>[OPTIONS]

Update group data.

pveum groupadd

An alias for pveum group add.

pveum groupdel

An alias for pveum group delete.

pveum groupmod

An alias for pveum group modify.

pveum help[OPTIONS]

Get help about specified command.

pveum passwd<userid>

Change user password.

pveum pool add<poolid>[OPTIONS]

Create new pool.

pveum pool delete<poolid>

Delete pool.

pveum pool list[FORMAT_OPTIONS]

Pool index.

pveum pool modify<poolid>[OPTIONS]

Update pool data.

pveum realm add<realm> –type <string>[OPTIONS]

Add an authentication server.

<realm>: <string>

Authentication domain ID

–base_dnw =[^,] (,s*w =[^,] )*

LDAP base domain name

–bind_dnw =[^,] (,s*w =[^,] )*

LDAP bind domain name

–capath<string> (default =/etc/ssl/certs)

Path to the CA certificate store

–case-sensitive<boolean> (default =1)

username is case-sensitive

–cert<string>

Path to the client certificate

–certkey<string>

Path to the client certificate key

–comment<string>

Description.

–default<boolean>

Use this as default realm

–domainS

AD domain name

–filter<string>

LDAP filter for user sync.

–group_classes<string> (default =groupOfNames, group, univentionGroup, ipausergroup)

The objectclasses for groups.

–group_dnw =[^,] (,s*w =[^,] )*

LDAP base domain name for group sync. If not set, the base_dn will be used.

–group_filter<string>

LDAP filter for group sync.

–group_name_attr<string>

LDAP attribute representing a groups name. If not set or found, the first value of the DN will be used as name.

–mode<ldap | ldap starttls | ldaps> (default =ldap)

LDAP protocol mode.

–password<string>

LDAP bind password. Will be stored in /etc/pve/priv/realm/<REALM>.pw.

–port<integer> (1 – 65535)

Server port.

–secure<boolean>

Use secure LDAPS protocol. DEPRECATED: use mode instead.

–server1<string>

Server IP address (or DNS name)

–server2<string>

Fallback Server IP address (or DNS name)

–sslversion<tlsv1 | tlsv1_1 | tlsv1_2 | tlsv1_3>

LDAPS TLS/SSL version. It’s not recommended to use version older than 1.2!

–sync-defaults-options[enable-new=<1|0>] [,full=<1|0>] [,purge=<1|0>] [,scope=<users|groups|both>]

The default options for behavior of synchronizations.

–sync_attributesw =[^,] (,s*w =[^,] )*

Comma separated list of key=value pairs for specifying which LDAP attributes map to which PVE user field. For example, to map the LDAP attribute mail to PVEs email, write email=mail. By default, each PVE user field is represented by an LDAP attribute of the same name.

–tfatype=<TFATYPE> [,digits=<COUNT>] [,id=<ID>] [,key=<KEY>] [,step=<SECONDS>] [,url=<URL>]

Use Two-factor authentication.

–type<ad | ldap | pam | pve>

Realm type.

–user_attrS{2,}

LDAP user attribute name

–user_classes<string> (default =inetorgperson, posixaccount, person, user)

The objectclasses for users.

–verify<boolean> (default =0)

Verify the server’s SSL certificate

pveum realm delete<realm>

Delete an authentication server.

pveum realm list[FORMAT_OPTIONS]

Authentication domain index.

pveum realm modify<realm>[OPTIONS]

Update authentication server settings.

<realm>: <string>

Authentication domain ID

–base_dnw =[^,] (,s*w =[^,] )*

LDAP base domain name

–bind_dnw =[^,] (,s*w =[^,] )*

LDAP bind domain name

–capath<string> (default =/etc/ssl/certs)

Path to the CA certificate store

–case-sensitive<boolean> (default =1)

username is case-sensitive

–cert<string>

Path to the client certificate

–certkey<string>

Path to the client certificate key

–comment<string>

Description.

–default<boolean>

Use this as default realm

–delete<string>

A list of settings you want to delete.

–digest<string>

Prevent changes if current configuration file has different SHA1 digest. This can be used to prevent concurrent modifications.

–domainS

AD domain name

–filter<string>

LDAP filter for user sync.

–group_classes<string> (default =groupOfNames, group, univentionGroup, ipausergroup)

The objectclasses for groups.

–group_dnw =[^,] (,s*w =[^,] )*

LDAP base domain name for group sync. If not set, the base_dn will be used.

–group_filter<string>

LDAP filter for group sync.

–group_name_attr<string>

LDAP attribute representing a groups name. If not set or found, the first value of the DN will be used as name.

–mode<ldap | ldap starttls | ldaps> (default =ldap)

LDAP protocol mode.

–password<string>

LDAP bind password. Will be stored in /etc/pve/priv/realm/<REALM>.pw.

–port<integer> (1 – 65535)

Server port.

–secure<boolean>

Use secure LDAPS protocol. DEPRECATED: use mode instead.

–server1<string>

Server IP address (or DNS name)

–server2<string>

Fallback Server IP address (or DNS name)

–sslversion<tlsv1 | tlsv1_1 | tlsv1_2 | tlsv1_3>

LDAPS TLS/SSL version. It’s not recommended to use version older than 1.2!

–sync-defaults-options[enable-new=<1|0>] [,full=<1|0>] [,purge=<1|0>] [,scope=<users|groups|both>]

The default options for behavior of synchronizations.

–sync_attributesw =[^,] (,s*w =[^,] )*

Comma separated list of key=value pairs for specifying which LDAP attributes map to which PVE user field. For example, to map the LDAP attribute mail to PVEs email, write email=mail. By default, each PVE user field is represented by an LDAP attribute of the same name.

–tfatype=<TFATYPE> [,digits=<COUNT>] [,id=<ID>] [,key=<KEY>] [,step=<SECONDS>] [,url=<URL>]

Use Two-factor authentication.

–user_attrS{2,}

LDAP user attribute name

–user_classes<string> (default =inetorgperson, posixaccount, person, user)

The objectclasses for users.

–verify<boolean> (default =0)

Verify the server’s SSL certificate

Похожее:  Валта | Компания

pveum realm sync<realm>[OPTIONS]

Syncs users and/or groups from the configured LDAP to user.cfg. NOTE:
Synced groups will have the name name-$realm, so make sure those groups
do not exist to prevent overwriting.

pveum role add<roleid>[OPTIONS]

Create new role.

pveum role delete<roleid>

Delete role.

pveum role list[FORMAT_OPTIONS]

Role index.

pveum role modify<roleid>[OPTIONS]

Update an existing role.

pveum roleadd

An alias for pveum role add.

pveum roledel

An alias for pveum role delete.

pveum rolemod

An alias for pveum role modify.

pveum ticket<username>[OPTIONS]

Create or verify authentication ticket.

pveum user add<userid>[OPTIONS]

Create new user.

pveum user delete<userid>

Delete user.

pveum user list[OPTIONS][FORMAT_OPTIONS]

User index.

pveum user modify<userid>[OPTIONS]

Update user configuration.

pveum user permissions[<userid>][OPTIONS][FORMAT_OPTIONS]

Retrieve effective permissions of given user/token.

pveum user tfa delete<userid>[OPTIONS]

Change user u2f authentication.

<userid>: <string>

User ID

–configtype=<TFATYPE> [,digits=<COUNT>] [,id=<ID>] [,key=<KEY>] [,step=<SECONDS>] [,url=<URL>]

A TFA configuration. This must currently be of type TOTP of not set at all.

–key<string>

When adding TOTP, the shared secret value.

–password<string>

The current password.

–response<string>

Either the the response to the current u2f registration challenge, or, when adding TOTP, the currently valid TOTP value.

pveum user token add<userid> <tokenid>[OPTIONS][FORMAT_OPTIONS]

Generate a new API token for a specific user. NOTE: returns API token
value, which needs to be stored as it cannot be retrieved afterwards!

pveum user token list<userid>[FORMAT_OPTIONS]

Get user API tokens.

pveum user token modify<userid> <tokenid>[OPTIONS][FORMAT_OPTIONS]

Update API token for a specific user.

pveum user token permissions<userid> <tokenid>[OPTIONS][FORMAT_OPTIONS]

Retrieve effective permissions of given token.

pveum user token remove<userid> <tokenid>[FORMAT_OPTIONS]

Remove API token for a specific user.

pveum useradd

An alias for pveum user add.

pveum userdel

An alias for pveum user delete.

pveum usermod

An alias for pveum user modify.

История проекта

Проект стартовал в 2007 году, за ним последовала первая стабильная версия в 2008 году. В то время мы использовали OpenVZ для контейнеров и KVM для виртуальных машин. Возможности кластеризации были ограничены, а пользовательский интерфейс был простым (серверная веб-страница).

Но мы быстро разработали новые функции с использованием стека кластеров Corosync, и внедрение новой кластерной файловой системы Proxmox (pmxcfs) стало большим шагом вперед, поскольку полностью скрывает сложность кластера от пользователя. Управлять кластером из 16 узлов так же просто, как управлять одним узлом.

Мы также представили новый REST API с полной декларативной спецификацией, написанной на JSON-Schema. Это позволило другим людям интегрировать Proxmox VE в свою инфраструктуру и облегчило предоставление дополнительных услуг.

Кроме того, новый REST API позволил заменить исходный пользовательский интерфейс современным приложением HTML5 с использованием JavaScript. Мы также заменили старый код консоли VNC на основе Java на

. Таким образом, вам нужен только веб-браузер для управления виртуальными машинами.

Поддержка различных типов хранилищ – еще одна важная задача. Примечательно, что Proxmox VE был первым дистрибутивом, который по умолчанию поставлял ZFS для Linux в 2022 году. Еще одной важной вехой стала возможность запуска и управления хранилищем

на узлах гипервизора. Такие установки чрезвычайно рентабельны.

Когда мы начинали, мы были в числе первых компаний, предоставляющих коммерческую поддержку KVM. Сам проект KVM непрерывно развивался и в настоящее время является широко используемым гипервизором. Новые функции добавляются с каждым выпуском. Мы разработали функцию оперативного резервного копирования KVM, которая позволяет создавать резервные копии с помощью snapshot в любом типе хранилища.
Самым заметным изменением в версии 4.0 стал переход с OpenVZ на

. Контейнеры теперь тесно интегрированы и могут использовать те же функции хранения и сети, что и виртуальные машины.

Централизованное управление

Большинство людей начинают с одного узла, хотя Proxmox VE может масштабироваться до большого набора кластерных узлов. Стек кластера полностью интегрирован и присутствует в установке по умолчанию.

Уникальный дизайн Multi-Master
Интегрированный веб-интерфейс управления дает вам полный обзор всех ваших гостевых виртуальных машин KVM и контейнеров Linux, а так же всего вашего кластера. Вы можете легко управлять своими виртуальными машинами и контейнерами, хранилищем или кластером с помощью графического интерфейса. Нет необходимости устанавливать отдельный, сложный и дорогой сервер управления.
Файловая система кластера Proxmox (pmxcfs)
Proxmox VE использует уникальную файловую систему кластера Proxmox (pmxcfs), управляемую базой данных файловую систему для хранения файлов конфигурации. Это позволяет хранить конфигурацию тысяч виртуальных машин. С помощью corosync эти файлы реплицируются в режиме реального времени на всех узлах кластера. Эта файловая система хранит все данные внутри базы данных на диске, тем не менее, копия данных находится в оперативной памяти, которая обеспечивает максимальный размер хранилища 30 МБ – что более чем достаточно для тысяч виртуальных машин. Proxmox VE – единственная платформа виртуализации, использующая эту уникальную кластерную файловую систему.
Веб-интерфейс управления
Proxmox VE прост в использовании. Задачи управления могут быть выполнены через встроенный веб-интерфейс управления – нет необходимости устанавливать отдельный инструмент управления или какой-либо дополнительный центр управления с огромными базами данных. Инструментарий multi-master позволяет управлять всем кластером с любого узла кластера. Централизованное веб-управление, основанное на JavaScript Framework (Ex-tJS), дает вам возможность управлять всеми функциями из графического интерфейса пользователя, а также просматривать историю и системные журналы каждого отдельного узла. Это включает в себя выполнение заданий резервного копирования или восстановления, живую миграцию или действия, инициируемые HA(высокая доступность).
Командная строка
Для опытных пользователей, которые привыкли к удобству консоли Unix или Windows Powershell, Proxmox VE предоставляет интерфейс командной строки для управления всеми компонентами вашей виртуальной среды. Этот интерфейс командной строки имеет интеллектуальное завершение по клавише <Tab> и полную документацию в виде справочных страниц UNIX.
REST API
Proxmox VE использует RESTful API. Мы выбираем JSON в качестве основного формата данных, и весь API-интерфейс формализован с помощью JSON-Schema. Это позволяет быстро и легко интегрировать сторонние инструменты управления, такие как пользовательские среды размещения.
Администрирование на основе ролей
Вы можете тонко настроить доступ ко всем объектам (таким как виртуальные машины, хранилища, узлы и т. д.), используя управление пользователями и правами доступа на основе ролей. Это позволяет вам определять привилегии и помогает вам контролировать доступ к объектам. Эта концепция также известна как списки контроля доступа: Каждое разрешение определяет субъекта (пользователя или группу) и роль (набор привилегий) для определенного пути.
Способы аутентификации
Proxmox VE поддерживает различные способы аутентификации, такие как Microsoft Active Directory, LDAP, стандартная аутентификация Linux PAM или встроенный сервер аутентификации Proxmox VE.
1 Звезда2 Звезды3 Звезды4 Звезды5 Звезд (1 оценок, среднее: 5,00 из 5)
Загрузка...

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *