[{"content":"From VMware to Proxmox #Initially I had started out with a single vSphere node running vSphere 6.7.I had a few Ubuntu server VMs running docker containers and samba shares for additional storage. After the Broadcom acquisition I discovered Proxmox which eventually led me to me migrating over.\nI built out a virtual environment comprised of two PVE nodes running a raspberry pi acting as the QDevice to keep the cluster in quorum and to act as the Tang server. I\u0026rsquo;ll cover Tang in more detail in a different post, but essentially my encrypted Linux VMs leverage Clevis to phone into the Tang server which unlocks them, this provides a secure convenience. I also have an LXC container running Twingate on one of the PVE nodes that allows for seamless zero trust access into my environment remotely.\n","date":"20 May 2026","permalink":"/posts/pve-cluster/","section":"Posts","summary":"\u003ch2 id=\"from-vmware-to-proxmox\" class=\"relative group\"\u003eFrom VMware to Proxmox \u003cspan class=\"absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100\"\u003e\u003ca class=\"group-hover:text-primary-300 dark:group-hover:text-neutral-700\" style=\"text-decoration-line: none !important;\" href=\"#from-vmware-to-proxmox\" aria-label=\"Anchor\"\u003e#\u003c/a\u003e\u003c/span\u003e\u003c/h2\u003e\u003cp\u003eInitially I had started out with a single vSphere node running vSphere 6.7.I had a few Ubuntu server VMs running docker containers and samba shares for additional storage. After the Broadcom acquisition I discovered Proxmox which eventually led me to me migrating over.\u003c/p\u003e\n\u003cp\u003eI built out a virtual environment comprised of two PVE nodes running a raspberry pi acting as the QDevice to keep the cluster in quorum and to act as the Tang server. I\u0026rsquo;ll cover Tang in more detail in a different post, but essentially my encrypted Linux VMs leverage Clevis to phone into the Tang server which unlocks them, this provides a secure convenience. I also have an LXC container running Twingate on one of the PVE nodes that allows for seamless zero trust access into my environment remotely.\u003c/p\u003e","title":"Building a 2-Node Proxmox VE Cluster"},{"content":"","date":null,"permalink":"/tags/homelab/","section":"Tags","summary":"","title":"Homelab"},{"content":"","date":null,"permalink":"/tags/linux/","section":"Tags","summary":"","title":"Linux"},{"content":"","date":null,"permalink":"/","section":"moehrig.dev","summary":"","title":"moehrig.dev"},{"content":"","date":null,"permalink":"/tags/pi/","section":"Tags","summary":"","title":"Pi"},{"content":"","date":null,"permalink":"/posts/","section":"Posts","summary":"","title":"Posts"},{"content":"","date":null,"permalink":"/tags/proxmox/","section":"Tags","summary":"","title":"Proxmox"},{"content":"","date":null,"permalink":"/tags/","section":"Tags","summary":"","title":"Tags"},{"content":"","date":null,"permalink":"/tags/ansible/","section":"Tags","summary":"","title":"Ansible"},{"content":"","date":null,"permalink":"/tags/fluxcd/","section":"Tags","summary":"","title":"Fluxcd"},{"content":"","date":null,"permalink":"/tags/kubernetes/","section":"Tags","summary":"","title":"Kubernetes"},{"content":"Overview #Multi-node Proxmox VE lab environment including a node migrated from VMware ESXi, used to test configurations and validate automation before production use.\nInfrastructure #VMs are provisioned via Terraform and managed through Ansible playbooks for automated deployment and hardening. OPNsense handles firewall, VLAN, DNS, and DHCP across the environment.\nKubernetes #Runs a K3s Kubernetes cluster with GitOps workflows managed through FluxCD and GitHub, enabling declarative infrastructure management and automated deployments.\nMonitoring #Prometheus and Grafana provide infrastructure monitoring across nodes and containers, giving full visibility into cluster and VM health.\nSystems #RHEL 9 is included for enterprise Linux testing alongside Debian and Ubuntu systems, providing a realistic multi-distro environment that mirrors production infrastructure.\n","date":"10 January 2025","permalink":"/projects/pve/","section":"Projects","summary":"\u003ch2 id=\"overview\" class=\"relative group\"\u003eOverview \u003cspan class=\"absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100\"\u003e\u003ca class=\"group-hover:text-primary-300 dark:group-hover:text-neutral-700\" style=\"text-decoration-line: none !important;\" href=\"#overview\" aria-label=\"Anchor\"\u003e#\u003c/a\u003e\u003c/span\u003e\u003c/h2\u003e\u003cp\u003eMulti-node Proxmox VE lab environment including a node migrated from VMware ESXi, used to test configurations and validate automation before production use.\u003c/p\u003e\n\u003ch2 id=\"infrastructure\" class=\"relative group\"\u003eInfrastructure \u003cspan class=\"absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100\"\u003e\u003ca class=\"group-hover:text-primary-300 dark:group-hover:text-neutral-700\" style=\"text-decoration-line: none !important;\" href=\"#infrastructure\" aria-label=\"Anchor\"\u003e#\u003c/a\u003e\u003c/span\u003e\u003c/h2\u003e\u003cp\u003eVMs are provisioned via Terraform and managed through Ansible playbooks for automated deployment and hardening. OPNsense handles firewall, VLAN, DNS, and DHCP across the environment.\u003c/p\u003e","title":"Local Virtual Environment"},{"content":"","date":null,"permalink":"/tags/monitoring/","section":"Tags","summary":"","title":"Monitoring"},{"content":"","date":null,"permalink":"/tags/opnsense/","section":"Tags","summary":"","title":"Opnsense"},{"content":"","date":null,"permalink":"/projects/","section":"Projects","summary":"","title":"Projects"},{"content":"","date":null,"permalink":"/tags/terraform/","section":"Tags","summary":"","title":"Terraform"},{"content":"Infrastructure # Deployed and maintained a 4-node VMware vCenter cluster on Dell PowerEdge servers that hosted the NETLAB+ modules. Designed high-availability network topology using dual Dell switches with LACP link aggregation for redundant connectivity and failover. Project Management # Managed stakeholder expectations across IT leadership, CS faculty, and department chair during a third-party ISP installation dependency that delayed the original launch timeline. Proposed and led a partial rollout as a structured user experience testing phase, enabling targeted improvements before the full Spring 2024 launch. ","date":"12 October 2023","permalink":"/projects/netlab/","section":"Projects","summary":"\u003ch2 id=\"infrastructure\" class=\"relative group\"\u003eInfrastructure \u003cspan class=\"absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100\"\u003e\u003ca class=\"group-hover:text-primary-300 dark:group-hover:text-neutral-700\" style=\"text-decoration-line: none !important;\" href=\"#infrastructure\" aria-label=\"Anchor\"\u003e#\u003c/a\u003e\u003c/span\u003e\u003c/h2\u003e\u003cul\u003e\n\u003cli\u003eDeployed and maintained a 4-node VMware vCenter cluster on Dell PowerEdge servers that hosted the NETLAB+ modules.\u003c/li\u003e\n\u003cli\u003eDesigned high-availability network topology using dual Dell switches with LACP link aggregation for redundant connectivity and failover.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2 id=\"project-management\" class=\"relative group\"\u003eProject Management \u003cspan class=\"absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100\"\u003e\u003ca class=\"group-hover:text-primary-300 dark:group-hover:text-neutral-700\" style=\"text-decoration-line: none !important;\" href=\"#project-management\" aria-label=\"Anchor\"\u003e#\u003c/a\u003e\u003c/span\u003e\u003c/h2\u003e\u003cul\u003e\n\u003cli\u003eManaged stakeholder expectations across IT leadership, CS faculty, and department chair during a third-party ISP installation dependency that delayed the original launch timeline.\u003c/li\u003e\n\u003cli\u003eProposed and led a partial rollout as a structured user experience testing phase, enabling targeted improvements before the full Spring 2024 launch.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\n\n\n\n\n\n\u003cfigure\u003e\n \n \n\n\n\n\n\n\n\n\n \n \u003cpicture\n class=\"mx-auto my-0 rounded-md\"\n \n \u003e\n \n \n \n \n \u003csource\n \n srcset=\"/projects/netlab/netlab_hu_d5120d027d8544a8.webp 330w,/projects/netlab/netlab_hu_26a13c429bd7180d.webp 660w\n \n ,/projects/netlab/netlab_hu_62080647208d8ffc.webp 1024w\n \n \n ,/projects/netlab/netlab_hu_5a3ebf0bb4ec820d.webp 1320w\n \"\n \n sizes=\"100vw\"\n type=\"image/webp\"\n /\u003e\n \n \u003cimg\n width=\"1408\"\n height=\"1056\"\n class=\"mx-auto my-0 rounded-md\"\n alt=\"Environment Topology\"\n loading=\"lazy\" decoding=\"async\"\n \n src=\"/projects/netlab/netlab_hu_cddf73e668703eea.jpg\" srcset=\"/projects/netlab/netlab_hu_a71a1f2bd11d30c3.jpg 330w,/projects/netlab/netlab_hu_cddf73e668703eea.jpg 660w\n \n ,/projects/netlab/netlab_hu_c0d80bdf984597a8.jpg 1024w\n \n \n ,/projects/netlab/netlab_hu_a2acff1569d6abe6.jpg 1320w\n \"\n sizes=\"100vw\"\n \n /\u003e\n \u003c/picture\u003e\n \n\n\n\u003c/figure\u003e\n\u003c/p\u003e","title":"Infrastructure for CS Dept | Our Lady of the Lake University"},{"content":"","date":null,"permalink":"/tags/network-administration/","section":"Tags","summary":"","title":"Network Administration"},{"content":"","date":null,"permalink":"/tags/network-planning/","section":"Tags","summary":"","title":"Network Planning"},{"content":"","date":null,"permalink":"/tags/project-management/","section":"Tags","summary":"","title":"Project Management"},{"content":"","date":null,"permalink":"/tags/system-configuration/","section":"Tags","summary":"","title":"System Configuration"},{"content":"","date":null,"permalink":"/tags/vcenter/","section":"Tags","summary":"","title":"VCenter"},{"content":"","date":null,"permalink":"/tags/vsphere/","section":"Tags","summary":"","title":"VSphere"}]