popwebz

This works when run manually, but I keep finding that with container restarts are not handled and so the container cannot locate the host

Please share how you did this. I downloaded the script and got the following: Generally Necessary: - CONFIG_NETFILTER_XT_MATCH_IPVS: missing Optional Features: - CONFIG_CGROUP_HUGETLB: missing - CONFIG_NET_CLS_CGROUP: missing - CONFIG_CGROUP_NET_PRIO: missing - CONFIG_IP_VS: missing - CONFIG_IP_VS_NFCT: missing - CONFIG_IP_VS_PROTO_TCP: missing - CONFIG_IP_VS_PROTO_UDP: missing - CONFIG_IP_VS_RR: missing - CONFIG_EXT4_FS: enabled (as module) - CONFIG_EXT4_FS_POSIX_ACL: enabled - CONFIG_EXT4_FS_SECURITY: missing That's as far as I got. Searching slackware doesn't show any packages, so I am not sure what I am missing. I would like docker swarm solely for the orchestration. No need for HA. I'd like to orchestrate OpenFaaS. Thank you.

Thank you for the response but perhaps my question wasn't clear enough. I can see that br0 traffic between VMs is much faster than gigabit could ever provide so it is clear communication is internal. What I am trying to do is to specify the router VMs use on the unraid side. So instead of the unraid host handling routing to the physical LAN network (as it does when virbr0) I would like the VMs to use another VM as the gateway. They would only have access to the internet if the firewall VM was running. The pfsense VM would handle NAT and the firewall would work. This would be great for security. As it is, unraid allows all traffic to flow through which is not something that I want. In my situation the physical LAN cannot be trusted. Even when VMs use virbr0, any device on the home network can communicate with the virtual machines running on unraid because unraid is creating a NAT bridge which cannot be managed or controlled. Using a dedicated virtual firewall would be a great way to manage this. The only way that it seems this could be done as it is now is to passthrough a 4 port pcie NIC to the firewall VM and then install a second pcie NIC that unraid could access (br1) and then setting all other VMs to use br1. Then I would need to physically connecting a patch cable between the two network cards. And then also run another ethernet drop to connect the firewall's WAN port on its passthrough NIC to the home router. That approach seems convoluted and the VMs are still using bridged connections. If this could be virtualized (this should be possible, I'm just not sure how to do it with unraid) I wouldn't have to use my two pcie slots for such a hack

Bump. Can unraid handle internal networks?

How do I configure a VM to have no bridge? I would like to do the following: 1. Use my pfsense VM which currently has one virtual NIC installed (br0 WAN) 2. Add a virtual NIC to pfsense that is not bridged (this would be the pfSense LAN side, virbr0 is not an option because it still connects to my LAN via NAT) 3. Use a Windows VM that is also not bridged. It exists only an unraid VM only network. It can communicate with other VMs but it must use the pfSense VM as its gateway. Basically I want to use pfSense as a firewall for VMs which means I need both VMs to have a virtual NIC that is not bridged. How can I do this? It doesn't seem possible in the GUI but an XML edit should work. I'm just not sure what to change to configure this. The purpose of this would be to use unraid to test pfSense configurations. Thank you.

Thank you so much sir! That did the trick! Now to delete all my broken pfsense VMs. I had tried Q35-2.9 and 2.10 but hadn't considered earlier versions. I did get it to install in 2.10 by setting the vdisk to USB, but then it wouldn't boot. Now I have a working offense VM on unRAID.

I would like to install pfSense but so far I cannot get the installer to recognize the vdisk. I have tried with both OVMF and then SeaBIOS and with SATA vdisk and VirtIO vdisk, Unfortunately with all of these permutations nothing works. Below is the XML <domain type='kvm'> <name>pfSense</name> <uuid>40a39111-c9e2-53bd-5b9a-3e197e33668a</uuid> <metadata> <vmtemplate xmlns="unraid" name="FreeBSD" icon="freebsd.png" os="freebsd"/> </metadata> <memory unit='KiB'>2097152</memory> <currentMemory unit='KiB'>2097152</currentMemory> <memoryBacking> <nosharepages/> </memoryBacking> <vcpu placement='static'>2</vcpu> <cputune> <vcpupin vcpu='0' cpuset='8'/> <vcpupin vcpu='1' cpuset='24'/> </cputune> <os> <type arch='x86_64' machine='pc-q35-2.10'>hvm</type> </os> <features> <acpi/> <apic/> </features> <cpu mode='host-passthrough' check='none'> <topology sockets='1' cores='1' threads='2'/> </cpu> <clock offset='utc'> <timer name='rtc' tickpolicy='catchup'/> <timer name='pit' tickpolicy='delay'/> <timer name='hpet' present='no'/> </clock> <on_poweroff>destroy</on_poweroff> <on_reboot>restart</on_reboot> <on_crash>restart</on_crash> <devices> <emulator>/usr/local/sbin/qemu</emulator> <disk type='file' device='disk'> <driver name='qemu' type='raw' cache='writeback'/> <source file='/mnt/user/domains/pfSense/vdisk1.img'/> <target dev='hdc' bus='virtio'/> <boot order='1'/> <address type='pci' domain='0x0000' bus='0x03' slot='0x00' function='0x0'/> </disk> <disk type='file' device='cdrom'> <driver name='qemu' type='raw'/> <source file='/mnt/user/isos/pfSense-CE-2.4.2-RELEASE-amd64.iso'/> <target dev='hda' bus='sata'/> <readonly/> <boot order='2'/> <address type='drive' controller='0' bus='0' target='0' unit='0'/> </disk> <controller type='usb' index='0' model='ich9-ehci1'> <address type='pci' domain='0x0000' bus='0x00' slot='0x07' function='0x7'/> </controller> <controller type='usb' index='0' model='ich9-uhci1'> <master startport='0'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x07' function='0x0' multifunction='on'/> </controller> <controller type='usb' index='0' model='ich9-uhci2'> <master startport='2'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x07' function='0x1'/> </controller> <controller type='usb' index='0' model='ich9-uhci3'> <master startport='4'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x07' function='0x2'/> </controller> <controller type='sata' index='0'> <address type='pci' domain='0x0000' bus='0x00' slot='0x1f' function='0x2'/> </controller> <controller type='pci' index='0' model='pcie-root'/> <controller type='pci' index='1' model='pcie-root-port'> <model name='pcie-root-port'/> <target chassis='1' port='0x10'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x0' multifunction='on'/> </controller> <controller type='pci' index='2' model='pcie-root-port'> <model name='pcie-root-port'/> <target chassis='2' port='0x11'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x1'/> </controller> <controller type='pci' index='3' model='pcie-root-port'> <model name='pcie-root-port'/> <target chassis='3' port='0x12'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x2'/> </controller> <controller type='pci' index='4' model='pcie-root-port'> <model name='pcie-root-port'/> <target chassis='4' port='0x13'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x3'/> </controller> <controller type='pci' index='5' model='pcie-root-port'> <model name='pcie-root-port'/> <target chassis='5' port='0x14'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x4'/> </controller> <controller type='virtio-serial' index='0'> <address type='pci' domain='0x0000' bus='0x02' slot='0x00' function='0x0'/> </controller> <interface type='bridge'> <mac address='52:54:00:2b:ab:2d'/> <source bridge='br0'/> <model type='virtio'/> <address type='pci' domain='0x0000' bus='0x01' slot='0x00' function='0x0'/> </interface> <serial type='pty'> <target port='0'/> </serial> <console type='pty'> <target type='serial' port='0'/> </console> <channel type='unix'> <target type='virtio' name='org.qemu.guest_agent.0'/> <address type='virtio-serial' controller='0' bus='0' port='1'/> </channel> <input type='tablet' bus='usb'> <address type='usb' bus='0' port='1'/> </input> <input type='mouse' bus='ps2'/> <input type='keyboard' bus='ps2'/> <graphics type='vnc' port='-1' autoport='yes' websocket='-1' listen='0.0.0.0' keymap='en-us'> <listen type='address' address='0.0.0.0'/> </graphics> <video> <model type='qxl' ram='65536' vram='65536' vgamem='16384' heads='1' primary='yes'/> <address type='pci' domain='0x0000' bus='0x00' slot='0x01' function='0x0'/> </video> <memballoon model='virtio'> <address type='pci' domain='0x0000' bus='0x04' slot='0x00' function='0x0'/> </memballoon> </devices> </domain> I'm not sure what I am missing but any help would be appreciated. I really need this for the Certificate Authority function. I am running 6.4_rc15e.

I am also having issues with this docker. Auto discovery is not working. Running the docker in br0 removes the error message but because it is a bridge the auto discovery doesn't actually see anything. Have you found a solution yet?

I am not able to see logs in the ControlR app. I have set the server to use https and reconnected the app to use https as well. I suspect this may be the issue but I am not sure. I am running 6.4.0_rc10b. Thank you