d-bis/loc_az_hci
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit: loc_az_hci (smom-dbis-138 excluded via .gitignore)
Some checks failed
Test / test (push) Has been cancelled
Details

Browse Source 
Co-authored-by: Cursor <cursoragent@cursor.com>
This commit is contained in:
defiQUG
2026-02-08 09:04:46 -08:00
commit c39465c2bd
386 changed files with 50649 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

65
docs/temporary/ADD_DISK_FROM_IMAGE.md Normal file
View File

@@ -0,0 +1,65 @@
# Add Disk from Cloud Image - Step by Step
## Current Status
✅ Image is visible in: Storage → local → ISO Images
✅ Image name: `ubuntu-24.04-server-cloudimg-amd64.img`
## Steps to Add Disk
### Option 1: Direct Import (Recommended)
1. **Go to VM 9000 → Hardware tab**
2. **Click "Add" → "Hard Disk"**
3. **In the "Add: Hard Disk" dialog:**
- **Storage:** Select `local`
- **Look for one of these options:**
- "Import from" dropdown
- "Use existing disk"
- File browser icon (folder icon)
- **Select:** `ubuntu-24.04-server-cloudimg-amd64.img`
- **Disk size:** 20 GiB
- **Click "Add"**
### Option 2: If Import Option Not Available
If you don't see an import option in the Hard Disk dialog:
1. **Go to Storage → local → Import tab**
- This might allow importing the image as a disk format
2. **Or use the file path directly:**
- The image is at: `/var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img`
- Some Proxmox versions allow entering this path directly
### Option 3: Manual Disk Creation
If the above don't work:
1. **Create a new disk:**
- Storage: `local`
- Size: 20 GiB
- Format: qcow2
2. **Then copy the image to the disk:**
- This requires command-line access to Proxmox host
- Or use the Import feature in Storage
## After Disk is Added
1. **Remove CD-ROM (ide2)** if it still exists
2. **Verify disk is scsi0** (not ide2)
3. **Configure Cloud-Init:**
- Options → Cloud-Init
- User: `ubuntu`
- SSH Public Keys: (paste your key)
4. **Convert to Template:**
- Right-click VM 9000 → Convert to Template
## Quick Check
After adding the disk, verify in Hardware tab:
- ✅ scsi0: Should show the cloud image (20GB)
- ❌ ide2: Should be removed (no CD-ROM)

105
docs/temporary/ATTACH_ISO_FIRST.md Normal file
View File

@@ -0,0 +1,105 @@
# Fix: CD-ROM Not Shown in Boot Order
## Problem
CD-ROM option doesn't appear in Boot Order because the CD/DVD drive isn't attached yet.
## Solution: Attach ISO First, Then Set Boot Order
### Step-by-Step (For Each VM)
#### Step 1: Attach CD/DVD Drive with ISO
1. **Open Proxmox Web UI:** https://192.168.1.206:8006
2. **Click on VM** (e.g., "cloudflare-tunnel" or VM 100)
3. **Go to "Hardware" tab**
4. **Click "Add" button** (top right, blue button)
5. **Select "CD/DVD Drive"** from the dropdown menu
6. **In the dialog:**
- **Storage:** Select `local` from dropdown
- **ISO image:** Click the dropdown
- **Select:** `ubuntu-24.04.3-live-server-amd64.iso`
- **Click "Add"** button at bottom
7. **Verify:** You should now see "CD/DVD Drive (ide2)" in the Hardware list
#### Step 2: Set Boot Order (Now CD-ROM Will Appear)
1. **Go to "Options" tab**
2. **Find "Boot Order"** in the list
3. **Click "Edit"** (or double-click)
4. **Now you'll see CD-ROM option!**
- Drag "CD-ROM" to the top (or select it as first)
- Or use the up/down arrows to move it first
5. **Click "OK"**
#### Step 3: Start VM
1. **Click "Start" button** (top right)
2. **Click "Console" tab**
3. **Ubuntu installer should boot!**
### Visual Guide
```
┌─────────────────────────────────────┐
│ Proxmox Web UI │
├─────────────────────────────────────┤
│ 1. VM → Hardware tab │
│ 2. Add → CD/DVD Drive │
│ 3. Storage: local │
│ 4. ISO: ubuntu-24.04.3...iso │
│ 5. Add → ✓ CD/DVD appears in list │
│ 6. Options tab │
│ 7. Boot Order → Edit │
│ 8. CD-ROM → Move to top │
│ 9. OK │
│ 10. Start → Console → Ubuntu boots! │
└─────────────────────────────────────┘
```
### Important Notes
- **CD-ROM won't appear in Boot Order until CD/DVD drive is attached first**
- **You must attach the ISO in Hardware tab BEFORE setting boot order**
- **If CD-ROM still doesn't appear:**
- Verify CD/DVD drive shows in Hardware tab
- Try refreshing the page
- Try removing and re-adding the CD/DVD drive
### For All 4 VMs
Repeat the above steps for:
- VM 100: cloudflare-tunnel
- VM 101: k3s-master
- VM 102: git-server
- VM 103: observability
### Quick Checklist
For each VM:
- [ ] Hardware tab → CD/DVD Drive added with ISO
- [ ] CD/DVD Drive visible in Hardware list
- [ ] Options tab → Boot Order → CD-ROM appears
- [ ] CD-ROM moved to first position
- [ ] VM started
- [ ] Console shows Ubuntu installer
### Troubleshooting
**"CD-ROM not in Boot Order list":**
- Go back to Hardware tab
- Verify CD/DVD Drive exists
- If missing, add it again
- Refresh Options tab
**"ISO not in dropdown":**
- Go to: Datacenter → Storage → local → ISO images
- Verify ISO file exists
- If missing, you may need to upload it
**"Still shows 'No bootable disk'":**
- Stop VM
- Hardware → Remove CD/DVD drive
- Add it again
- Options → Verify boot order
- Start VM

61
docs/temporary/AZURE_SUBSCRIPTION_STATUS.md Normal file
View File

@@ -0,0 +1,61 @@
# Azure Subscription Status
## Current Subscription
- **Name**: Digital Bank of International Settlements
- **Subscription ID**: `fc08d829-4f14-413d-ab27-ce024425db0b`
- **State**: Enabled (but read-only for writes)
- **Tenant ID**: `fb97e99d-3e94-4686-bfde-4bf4062e05f3`
- **Account**: `admin@absoluterealms.org`
## Issue
The subscription appears as "Enabled" but is in **read-only mode**, preventing:
- Resource group creation
- Azure Arc onboarding
- Any write operations
## Resolution Options
### Option 1: Re-enable Subscription (Recommended)
1. Go to [Azure Portal](https://portal.azure.com)
2. Navigate to: Subscriptions → Digital Bank of International Settlements
3. Check subscription status and billing
4. Re-enable if suspended due to billing/payment issues
5. Contact Azure Support if needed
### Option 2: Use Alternative Subscription
If you have access to other subscriptions, you can switch:
```bash
# List all subscriptions
az account list --output table
# Switch to a different subscription
az account set --subscription "subscription-id-here"
# Update .env file with new subscription ID
```
### Option 3: Continue Without Azure Arc (Temporary)
- Deploy infrastructure without Azure Arc integration
- Onboard to Azure Arc later when subscription is enabled
- Use Proxmox and Cloudflare features independently
## Next Steps
1. **Resolve subscription issue** in Azure Portal
2. **Or switch to alternative subscription** if available
3. **Then proceed with**:
- Create resource group
- Onboard Proxmox hosts to Azure Arc
- Continue with deployment
## Workaround: Test Other Operations
While waiting for subscription resolution, you can:
- ✅ Test Proxmox operations (VM creation, etc.)
- ✅ Configure Cloudflare Tunnel
- ✅ Prepare Terraform configurations
- ✅ Create VM templates
- ✅ Test network configurations

71
docs/temporary/BOOT_FIX_INSTRUCTIONS.md Normal file
View File

@@ -0,0 +1,71 @@
# Fix "No Bootable Disk" Error
## Problem
VMs are showing "No bootable disk" error when starting.
## Solution
### Option 1: Fix via Proxmox Web UI (Recommended)
1. **Access Proxmox:** https://192.168.1.206:8006
2. **For each VM (100, 101, 102, 103):**
**a. Add CD/DVD Drive (if missing):**
- Click VM → Hardware tab
- Click "Add" → "CD/DVD Drive"
- Storage: `local`
- ISO image: `ubuntu-24.04.3-live-server-amd64.iso`
- Click "Add"
**b. Set Boot Order:**
- Click VM → Options tab
- Boot Order: Select "CD-ROM" first
- Click "OK"
**c. Verify Network:**
- Click VM → Hardware tab
- Ensure Network Device exists
- If missing: Add → Network Device → Bridge: vmbr0
3. **Start VM:**
- Click VM → Start
- Open Console
- Ubuntu installer should boot
### Option 2: Automated Fix (Attempted)
The script `scripts/fix-boot-config.sh` has been run to attempt fixing via API.
**If it didn't work**, use Option 1 (Web UI) as the API has format limitations.
## Verification
After fixing, verify:
1. VM boots from ISO (Ubuntu installer appears)
2. Network works (if Ubuntu installer shows network)
3. Installation can proceed
## Troubleshooting
**If ISO still doesn't boot:**
- Verify ISO exists in Proxmox storage: Storage → local → ISO images
- Check VM has CD/DVD drive in Hardware tab
- Verify boot order in Options tab
- Try detaching and re-attaching ISO
**If "No bootable disk" persists:**
- Check if disk (scsi0) exists in Hardware tab
- Verify boot order includes both CD-ROM and disk
- Try resetting VM (Stop → Start)
## Quick Fix Checklist
For each VM:
- [ ] CD/DVD drive exists in Hardware tab
- [ ] ISO is attached (ubuntu-24.04.3-live-server-amd64.iso)
- [ ] Boot order is set to CD-ROM first (Options tab)
- [ ] Network device exists (Hardware tab)
- [ ] VM is started
- [ ] Console shows Ubuntu installer

84
docs/temporary/BOOT_ORDER_ALTERNATIVE.md Normal file
View File

@@ -0,0 +1,84 @@
# Alternative: Set Boot Order When CD-ROM Not Shown
## Problem
CD/DVD drive is attached, but CD-ROM doesn't appear in Boot Order dropdown.
## Solution: Use Boot Order Text Field
In Proxmox, you can set boot order by typing device names directly.
### Method 1: Edit Boot Order Field Directly
1. **Go to:** VM → **Options** tab
2. **Find:** "Boot Order" option
3. **Click:** "Edit" (or double-click)
4. **In the dialog, look for a text field** (not just dropdown)
5. **Type or enter:** `order=ide2;scsi0`
- `ide2` = CD/DVD drive
- `scsi0` = Hard disk
- `;` separates devices (first = boot priority)
6. **Click:** "OK"
### Method 2: Use BIOS Boot Menu
If boot order can't be set:
1. **Start the VM**
2. **Open Console**
3. **When VM starts, press F2 or Delete** (during boot)
4. **Enter BIOS/UEFI settings**
5. **Navigate to Boot menu**
6. **Set CD/DVD as first boot device**
7. **Save and exit**
### Method 3: Manual Boot Selection
1. **Start the VM**
2. **Open Console**
3. **When VM starts, press F12** (boot menu)
4. **Select CD/DVD drive** from boot menu
5. **Ubuntu installer should start**
### Method 4: Verify CD/DVD is Actually Attached
1. **Hardware tab**
2. **Look for:** "CD/DVD Drive (ide2)"
3. **Verify it shows:** `ubuntu-24.04.3-live-server-amd64.iso`
4. **If missing or shows "Do not use any media":**
- Click on it → Edit
- Select ISO image
- Click OK
### Method 5: Check Proxmox Version
Some Proxmox versions show boot order differently:
- **Older versions:** Text field where you type `order=ide2;scsi0`
- **Newer versions:** Drag-and-drop interface
- **If neither works:** Use BIOS boot menu (Method 2)
## Quick Test
1. **Start VM**
2. **Open Console**
3. **Press F12** when VM boots
4. **Select CD/DVD** from boot menu
5. **If Ubuntu installer appears:** Boot order is working, just needs to be set as default
## Troubleshooting
**CD-ROM still not in boot order:**
- Verify CD/DVD drive exists in Hardware tab
- Check it's not set to "Do not use any media"
- Try removing and re-adding the CD/DVD drive
- Refresh the Options tab
**VM won't boot from CD even with F12:**
- Verify ISO file isn't corrupted
- Check CD/DVD drive is properly attached
- Try a different ISO or re-upload it
**Boot order field is read-only:**
- You may need to stop the VM first
- Or use BIOS boot menu method

74
docs/temporary/BOOT_ORDER_WORKAROUND.md Normal file
View File

@@ -0,0 +1,74 @@
# Boot Order Workaround - CD-ROM Not in Dropdown
## Good News! ✅
The ISO is attached and boot disk is configured via API. The VM should boot from CD-ROM even if it doesn't show in the Web UI dropdown.
## Solution: Test Boot Now
### Option 1: Just Start the VM (Recommended)
The boot order is already set via API (`bootdisk=ide2`). Try this:
1. **Start the VM** (if not already running)
2. **Open Console tab**
3. **Ubuntu installer should boot automatically!**
If it boots from CD-ROM, you're done! The Web UI dropdown is just a display issue.
### Option 2: Use BIOS Boot Menu (If Needed)
If VM doesn't boot from CD automatically:
1. **Start the VM**
2. **Open Console**
3. **Immediately press F12** (or F2, Delete, or ESC - depends on VM)
4. **Select "CD/DVD" or "ide2"** from boot menu
5. **Ubuntu installer should start**
### Option 3: Set Boot Order in Web UI (Alternative Method)
If you want to set it in Web UI anyway:
1. **Options tab → Boot Order**
2. **Look for a text input field** (not just dropdown)
3. **Type:** `order=ide2;scsi0`
4. **Or try:** Just `ide2`
5. **Click OK**
Some Proxmox versions have a text field where you can type the boot order directly.
### Option 4: Verify Current Configuration
The API has already set:
- ✅ ISO attached (ide2)
- ✅ Boot disk = ide2
- ✅ VM should boot from CD-ROM
**Test it:** Just start the VM and open Console. It should boot from the ISO.
## Why CD-ROM Doesn't Show in Dropdown
Some Proxmox Web UI versions don't show CD-ROM in the boot order dropdown even when it's attached. This is a UI limitation, but the boot order is still set correctly via the API.
## Verification
Current status (via API):
- ✅ ISO attached: `ide2=local:iso/ubuntu-24.04.3-live-server-amd64.iso`
- ✅ Boot disk set: `bootdisk=ide2`
- ✅ VM should boot from CD-ROM
**Just start the VM and check the Console!**
## Next Steps
1. **Start VM 100** (cloudflare-tunnel)
2. **Open Console**
3. **If Ubuntu installer appears:** ✅ Success! Proceed with installation
4. **If "No bootable disk":** Use F12 boot menu method
5. **Repeat for VMs 101, 102, 103**
## Quick Test Command
After starting VM, check console. If Ubuntu installer appears, boot order is working!

226
docs/temporary/COMPLETE_DEPLOYMENT.md Normal file
View File

@@ -0,0 +1,226 @@
# Complete Deployment Guide - All Tasks
This document provides a comprehensive guide to complete all deployment tasks.
## Current Status
**Completed:**
- Proxmox connections verified
- Environment variables configured
- All setup scripts created
- Documentation complete
**In Progress:**
- VM creation (requires Proxmox Web UI)
## Step-by-Step Deployment
### Step 1: Create All VMs
**Access Proxmox Web UI:**
- URL: https://192.168.1.206:8006
- Username: `root@pam`
- Password: (from `.env` file: `PVE_ROOT_PASS`)
**Create these VMs (see CREATE_VMS.md for details):**
1. **Cloudflare Tunnel VM** (ID: 100)
- Name: `cloudflare-tunnel`
- IP: 192.168.1.60
- Specs: 2 CPU, 4GB RAM, 40GB disk
2. **K3s Master VM** (ID: 101)
- Name: `k3s-master`
- IP: 192.168.1.188
- Specs: 4 CPU, 8GB RAM, 80GB disk
3. **Git Server VM** (ID: 102)
- Name: `git-server`
- IP: 192.168.1.121
- Specs: 4 CPU, 8GB RAM, 100GB disk
4. **Observability VM** (ID: 103)
- Name: `observability`
- IP: 192.168.1.82
- Specs: 4 CPU, 8GB RAM, 200GB disk
### Step 2: Install OS on Each VM
For each VM:
1. Boot from Ubuntu 22.04 LTS ISO
2. Complete installation
3. Configure static IP addresses (see VM IPs above)
4. Gateway: 192.168.1.254
5. DNS: 8.8.8.8
### Step 3: Run Setup Scripts
**Option A: Automated (if SSH access configured)**
```bash
./scripts/deploy-all-services.sh
```
**Option B: Manual (recommended for first-time)**
For each VM, SSH and run the appropriate script:
**Cloudflare Tunnel VM:**
```bash
ssh user@192.168.1.60
# Copy scripts/setup-cloudflare-tunnel.sh to VM
sudo bash /path/to/setup-cloudflare-tunnel.sh
```
**K3s VM:**
```bash
ssh user@192.168.1.188
# Copy scripts/setup-k3s.sh to VM
sudo bash /path/to/setup-k3s.sh
```
**Git Server VM:**
```bash
ssh user@192.168.1.121
# Copy scripts/setup-git-server.sh to VM
sudo bash /path/to/setup-git-server.sh
```
**Observability VM:**
```bash
ssh user@192.168.1.82
# Copy scripts/setup-observability.sh to VM
sudo bash /path/to/setup-observability.sh
```
### Step 4: Configure Services
#### Cloudflare Tunnel
1. Complete tunnel authentication:
```bash
ssh user@192.168.1.60
sudo cloudflared tunnel login
sudo cloudflared tunnel create azure-stack-hci
```
2. Update `/etc/cloudflared/config.yml` with your domain
3. Configure DNS records in Cloudflare Dashboard
4. Set up Zero Trust policies
See `docs/cloudflare-integration.md` for details.
#### K3s
1. Verify cluster:
```bash
ssh user@192.168.1.188
export KUBECONFIG=/etc/rancher/k3s/k3s.yaml
kubectl get nodes
```
2. Create namespaces:
```bash
kubectl create namespace blockchain
kubectl create namespace monitoring
kubectl create namespace hc-stack
```
3. Deploy ingress controller and cert-manager
#### Git Server
1. Access Gitea: http://192.168.1.121:3000
2. Complete initial setup
3. Create GitOps repository
4. Configure SSH keys
#### Observability
1. Access Grafana: http://192.168.1.82:3000
- Default: admin/admin (change on first login)
2. Add Prometheus data source: http://localhost:9090
3. Import dashboards
4. Configure alerting
### Step 5: Deploy HC Stack Services
Once K3s is ready:
```bash
# Deploy services via Helm or GitOps
kubectl apply -f gitops/apps/besu/
kubectl apply -f gitops/apps/firefly/
kubectl apply -f gitops/apps/chainlink-ccip/
kubectl apply -f gitops/apps/blockscout/
```
### Step 6: Configure GitOps (Optional)
1. Set up Flux:
```bash
flux install
flux create source git gitops-repo --url=http://192.168.1.121:3000/user/gitops-repo.git
flux create kustomization apps --source=gitops-repo --path=./apps
```
2. Verify sync:
```bash
flux get kustomizations
```
## Verification Checklist
- [ ] All VMs created and running
- [ ] OS installed on all VMs
- [ ] Cloudflare Tunnel configured and running
- [ ] K3s cluster operational
- [ ] Git server accessible
- [ ] Observability stack running
- [ ] HC Stack services deployed
- [ ] All services accessible via Cloudflare Tunnel
## Troubleshooting
### VM Creation Issues
- Check Proxmox storage availability
- Verify network bridge configuration
- Ensure sufficient resources
### Service Setup Issues
- Check network connectivity: `ping <vm-ip>`
- Verify SSH access
- Check service logs: `journalctl -u <service> -f`
### Cloudflare Tunnel Issues
- Verify tunnel token in `.env`
- Check DNS records
- Review tunnel logs: `journalctl -u cloudflared -f`
## Quick Reference
**Proxmox:**
- ML110: https://192.168.1.206:8006
- R630: https://192.168.1.49:8006
**Services:**
- Cloudflare Tunnel: 192.168.1.60
- K3s: 192.168.1.188:6443
- Gitea: http://192.168.1.121:3000
- Prometheus: http://192.168.1.82:9090
- Grafana: http://192.168.1.82:3000
**Documentation:**
- `CREATE_VMS.md` - VM creation guide
- `QUICK_START.md` - Quick reference
- `DEPLOYMENT_WITHOUT_AZURE.md` - Full deployment plan
- `DEPLOYMENT_CHECKLIST.md` - Progress tracker

58
docs/temporary/COMPLETE_DISK_ADD.md Normal file
View File

@@ -0,0 +1,58 @@
# Complete Hard Disk Configuration
## In the "Add: Hard Disk" Dialog
### Step 1: Select Storage
- **Storage dropdown:** Select **"local"**
- This should populate the storage options
### Step 2: Import from Cloud Image
After selecting storage, you should see an option to:
- **"Import from"** or **"Use existing disk"** or **"Import disk"**
- Select: **`ubuntu-24.04-server-cloudimg-amd64.img`**
**If you don't see the import option:**
- The image might be in a different location
- Check: Storage → local → Content tab
- Look for `ubuntu-24.04-server-cloudimg-amd64.img`
- It should be in the "ISO images" or "Disk images" section
### Step 3: Disk Size
- **Disk size (GiB):** Set to **20** (minimum for template)
- This is the minimum size; VMs cloned from template can be resized
### Step 4: Other Settings
- **Bus/Device:** SCSI 0 (default is fine)
- **Cache:** Default (No cache) - OK
- **IO thread:** Checked - Good (leave it)
- **Discard:** Unchecked - OK
### Step 5: Click Add
- Click the blue **"Add"** button
- The disk will be added from the cloud image
## After Adding Disk
1. **Remove the CD-ROM (ide2)** if it's still there:
- Hardware tab → CD/DVD Drive → Remove
2. **Configure Cloud-Init:**
- Options tab → Cloud-Init
- User: `ubuntu`
- SSH Public Keys: (paste your key)
3. **Convert to Template:**
- Right-click VM 9000 → Convert to Template
## Troubleshooting
**If "Import from" option doesn't appear:**
- The image file might be in the wrong storage location
- Try: Storage → local → Upload (if not already uploaded)
- Or check if image is in: `/var/lib/vz/template/iso/`
**If storage dropdown is empty:**
- Check Proxmox storage configuration
- Ensure "local" storage is available
- Try refreshing the page

138
docs/temporary/COMPLETE_STATUS.md Normal file
View File

@@ -0,0 +1,138 @@
# Complete Deployment Status
## ✅ Completed Steps
### 1. Environment Configuration
- [x] `.env` file configured with all credentials
- [x] Proxmox connections verified (both servers)
- [x] Cloudflare credentials configured
- [x] ISO uploaded to Proxmox storage
### 2. VM Creation
- [x] All 4 VMs created via Proxmox API
- [x] VMs configured with CPU, RAM, and disk
- [x] QEMU agent enabled on all VMs
- [x] VMs started and running
### 3. VM Configuration Fixes
- [x] Comprehensive configuration fixes applied
- [x] Disks configured (local-lvm storage)
- [x] Network interfaces configured
- [x] ISO/CD-ROM configured
- [x] Boot order configured
### 4. Automation Scripts
- [x] Setup scripts created for all services
- [x] VM status checking script
- [x] Complete automation script
- [x] Configuration fix scripts
## ⏳ Next Steps (Requires Manual Action)
### Step 1: Install Ubuntu 24.04
**Status:** ⏳ PENDING - Requires manual console access
**Action Required:**
1. Access Proxmox Web UI: https://192.168.1.206:8006
2. For each VM (100, 101, 102, 103):
- Click on VM → Console
- Ubuntu installer should boot from ISO
- Complete installation:
- **VM 100 (cloudflare-tunnel):** IP: 192.168.1.60/24, Gateway: 192.168.1.254
- **VM 101 (k3s-master):** IP: 192.168.1.188/24, Gateway: 192.168.1.254
- **VM 102 (git-server):** IP: 192.168.1.121/24, Gateway: 192.168.1.254
- **VM 103 (observability):** IP: 192.168.1.82/24, Gateway: 192.168.1.254
- Create user account (remember for SSH)
**Why Manual:** Console access required for interactive Ubuntu installation
### Step 2: Verify OS Installation
**Status:** ⏳ PENDING - After Step 1
**Action:**
```bash
./scripts/check-vm-status.sh
```
This will verify:
- Network connectivity
- SSH availability
- Ubuntu installation
### Step 3: Automated Service Setup
**Status:** ⏳ PENDING - After Step 2 verification passes
**Action:**
```bash
./scripts/automate-all-setup.sh
```
This will automatically:
- Copy setup scripts to each VM
- Run Cloudflare Tunnel setup (VM 100)
- Run K3s installation (VM 101)
- Run Git Server setup (VM 102)
- Run Observability setup (VM 103)
## 📊 Current VM Status
| VM | ID | IP | CPU | RAM | Disk | Status |
|----|----|----|-----|-----|------|--------|
| cloudflare-tunnel | 100 | 192.168.1.60 | 2 | 4GB | 40GB | ✅ Running |
| k3s-master | 101 | 192.168.1.188 | 4 | 8GB | 80GB | ✅ Running |
| git-server | 102 | 192.168.1.121 | 4 | 8GB | 100GB | ✅ Running |
| observability | 103 | 192.168.1.82 | 4 | 8GB | 200GB | ✅ Running |
## 🔧 Available Scripts
### Configuration & Verification
- `scripts/fix-all-vm-configs.sh` - Fix VM hardware configurations
- `scripts/check-vm-status.sh` - Verify VM readiness and prerequisites
### Service Setup
- `scripts/setup-cloudflare-tunnel.sh` - Cloudflare Tunnel installation
- `scripts/setup-k3s.sh` - K3s Kubernetes installation
- `scripts/setup-git-server.sh` - Gitea Git server setup
- `scripts/setup-observability.sh` - Prometheus + Grafana setup
### Automation
- `scripts/automate-all-setup.sh` - Complete automated setup (requires OS installed)
## 📝 Quick Start Commands
```bash
# 1. Check current status
./scripts/check-vm-status.sh
# 2. After Ubuntu installation, verify readiness
./scripts/check-vm-status.sh
# 3. Run complete automation (after verification)
./scripts/automate-all-setup.sh
```
## 🎯 Summary
**What's Done:**
- ✅ All infrastructure is configured
- ✅ All VMs are created and running
- ✅ All automation scripts are ready
- ✅ All documentation is complete
**What's Next:**
- ⏳ Install Ubuntu on VMs (manual - requires console)
- ⏳ Verify installation
- ⏳ Run automated setup scripts
**Estimated Time:**
- Ubuntu installation: ~15-20 minutes per VM (60-80 minutes total)
- Automated setup: ~10-15 minutes per VM (40-60 minutes total)
- **Total remaining: ~2 hours**
## 📚 Documentation
- `VM_STATUS_REPORT.md` - Detailed status and troubleshooting
- `DEPLOYMENT_PROGRESS.md` - Progress tracking
- `COMPLETE_DEPLOYMENT.md` - Full deployment guide
- `QUICK_START.md` - Quick reference

138
docs/temporary/COMPLETE_TASKS_STATUS.md Normal file
View File

@@ -0,0 +1,138 @@
# Complete VM Tasks - Status & Instructions
## Current Status
**Automation Scripts Created:**
-`scripts/complete-all-vm-tasks.sh` - Master script to complete all TODO tasks
-`scripts/check-vm-readiness.sh` - Check if VMs are ready
-`scripts/monitor-and-complete.sh` - Auto-monitor and complete when ready
**VM Status:**
- ⏳ VMs are installing Ubuntu (not reachable yet)
- ⏳ Waiting for VMs to complete installation and become SSH-ready
## What Will Be Completed
When VMs are ready, the script will automatically:
### For Each VM (100, 101, 102, 103):
1. **Install QEMU Guest Agent**
- Installs `qemu-guest-agent` package
- Enables and starts the service
- Enables agent in Proxmox configuration
2. **Install Service-Specific Software:**
- **VM 100 (cloudflare-tunnel)**: Install cloudflared
- **VM 101 (k3s-master)**: Install K3s Kubernetes
- **VM 102 (git-server)**: Install Gitea
- **VM 103 (observability)**: Install Prometheus + Grafana
3. **Verify Services**
- Check services are running
- Display service status and access URLs
## How to Run
### Option 1: Automatic Monitoring (Recommended)
The monitoring script will automatically detect when VMs are ready and run the tasks:
```bash
./scripts/monitor-and-complete.sh
```
This runs in the background and will:
- Check VM readiness every 30 seconds
- Automatically run `complete-all-vm-tasks.sh` when all VMs are ready
- Wait up to 1 hour for VMs to become ready
### Option 2: Manual Check and Run
1. **Check VM readiness:**
```bash
./scripts/check-vm-readiness.sh
```
2. **When all VMs show as ready, run:**
```bash
export SSH_KEY="$HOME/.ssh/id_rsa"
./scripts/complete-all-vm-tasks.sh
```
## Prerequisites
- ✅ SSH keys configured (`~/.ssh/id_rsa`)
- ✅ VMs must have Ubuntu installed and booted
- ✅ VMs must be reachable on their IP addresses:
- VM 100: 192.168.1.60
- VM 101: 192.168.1.188
- VM 102: 192.168.1.121
- VM 103: 192.168.1.82
- ✅ SSH access with user `ubuntu` (or set `SSH_USER`)
## Expected Timeline
- **VM Installation**: 15-30 minutes (Ubuntu installation)
- **Task Completion**: 10-20 minutes (once VMs are ready)
- **Total**: ~30-50 minutes from VM start
## What Happens After
After the script completes:
1. **All services installed and running**
2. **Guest agents enabled** for proper Proxmox integration
3. **Manual configuration needed:**
- Cloudflare Tunnel: Authenticate and configure tunnel
- Gitea: Complete initial web UI setup
- Grafana: Change default password
- K3s: Deploy namespaces and services
## Troubleshooting
### VMs Not Reachable
**Check VM status in Proxmox:**
- Ensure VMs are started
- Check console to see installation progress
- Verify network configuration
### SSH Connection Failed
**Verify:**
- SSH key is correct: `ls -la ~/.ssh/id_rsa`
- VM has completed Ubuntu installation
- Network connectivity to VM IPs
- SSH service is running on VMs
### Script Fails Partway
**Re-run the script:**
- It will skip already-completed tasks
- Check logs for specific errors
- Manually verify service status on affected VMs
## Next Steps After Completion
1. **Verify all services:**
```bash
# Check each service
curl http://192.168.1.60:... # Cloudflare Tunnel
kubectl get nodes # K3s (from VM 101)
curl http://192.168.1.121:3000 # Gitea
curl http://192.168.1.82:9090 # Prometheus
curl http://192.168.1.82:3000 # Grafana
```
2. **Complete manual configuration:**
- See individual service setup guides
- Configure Cloudflare Tunnel
- Set up Gitea repositories
- Import Grafana dashboards
3. **Continue with deployment:**
- Deploy K3s services
- Set up GitOps
- Configure monitoring alerts

55
docs/temporary/CONNECTION_TEST_RESULTS.md Normal file
View File

@@ -0,0 +1,55 @@
# Connection Test Results
## Test Date
$(date)
## Proxmox VE Connections
### HPE ML110 Gen9
- **URL**: `https://192.168.1.206:8006`
- **Status**: ✅ Connected
- **Authentication**: ✅ Successful
- **Proxmox Version**: 9.1.1
- **Release**: 9.1
- **Cluster**: Accessible (1 node found)
### Dell R630
- **URL**: `https://192.168.1.49:8006`
- **Status**: ✅ Connected
- **Authentication**: ✅ Successful
- **Proxmox Version**: 9.1.1
- **Release**: 9.1
- **Cluster**: Accessible (1 node found)
## Azure Connection
- **CLI Status**: ✅ Authenticated
- **Subscription ID**: `fc08d829-4f14-413d-ab27-ce024425db0b`
- **Tenant ID**: `fb97e99d-3e94-4686-bfde-4bf4062e05f3`
- **Subscription Status**: ⚠️ Disabled (read-only mode)
- **Action Required**: Re-enable subscription in Azure Portal
## Cloudflare Connection
- **API Authentication**: ✅ Successful
- **Account ID**: `52ad57a71671c5fc009edf0744658196`
- **Zone**: `d-bis.org`
- **Zone Status**: ✅ Active
- **DNS API**: ✅ Working
- **Tunnel Token**: ✅ Available
- **Zero Trust API**: ⚠️ Error 10000 (may need subscription/permissions)
- **Tunnel API**: ⚠️ Error 10000 (may need subscription/permissions)
## Summary
**Proxmox**: Both servers fully operational and accessible
**Cloudflare**: API connected, DNS zone active, tunnel token available
⚠️ **Azure**: Subscription disabled - blocks resource creation
## Next Steps
1. **Re-enable Azure Subscription** (Critical)
2. **Create Azure Resource Group** (once subscription enabled)
3. **Onboard Proxmox Hosts to Azure Arc**
4. **Configure Cloudflare Tunnel** (using available tunnel token)
5. **Deploy Service VMs**

108
docs/temporary/CREATE_VMS.md Normal file
View File

@@ -0,0 +1,108 @@
# Create Service VMs - Quick Guide
## Option 1: Using Proxmox Web UI (Easiest)
### Access Proxmox
- ML110: https://192.168.1.206:8006
- R630: https://192.168.1.49:8006
- Login: root / (password from PVE_ROOT_PASS)
### Create Cloudflare Tunnel VM
1. Click "Create VM"
2. **General**:
- VM ID: 100
- Name: cloudflare-tunnel
- Resource Pool: (leave default)
3. **OS**:
- Use CD/DVD: ISO image (Ubuntu 22.04 LTS)
- Or: Use existing template if available
4. **System**:
- Graphics: Default
- Qemu Agent: Enable
5. **Hard Disk**:
- Storage: local
- Disk size: 40GB
- Cache: Write back
6. **CPU**:
- Cores: 2
- Type: host
7. **Memory**:
- RAM: 4096 MB
8. **Network**:
- Bridge: vmbr0
- Model: VirtIO
9. **Cloud-Init** (if using template):
- IP Config: 192.168.1.60/24
- Gateway: 192.168.1.254
- DNS: 8.8.8.8
- User: ubuntu
- SSH Keys: (add your public key)
10. Click "Finish" and start VM
### Create K3s VM
Repeat above with:
- VM ID: 101
- Name: k3s-master
- CPU: 4 cores
- RAM: 8192 MB
- Disk: 80GB
- IP: 192.168.1.188
### Create Git Server VM
- VM ID: 102
- Name: git-server
- CPU: 4 cores
- RAM: 8192 MB
- Disk: 100GB
- IP: 192.168.1.121
### Create Observability VM
- VM ID: 103
- Name: observability
- CPU: 4 cores
- RAM: 8192 MB
- Disk: 200GB
- IP: 192.168.1.82
## Option 2: Using Terraform
```bash
cd terraform/proxmox
# Initialize Terraform
terraform init
# Review plan
terraform plan
# Apply (create VMs)
terraform apply
```
**Note**: Requires VM templates to be created first in Proxmox.
## Option 3: Using Proxmox API (Advanced)
See `scripts/proxmox/create-service-vms.sh` for API-based creation.
## Next Steps After VM Creation
1. **Install OS** on each VM (if not using template)
2. **Configure network** (static IPs)
3. **Install cloudflared** on Tunnel VM
4. **Install K3s** on K3s VM
5. **Deploy services** on respective VMs
See [DEPLOYMENT_WITHOUT_AZURE.md](DEPLOYMENT_WITHOUT_AZURE.md) for detailed setup.

623
docs/temporary/CREATE_VM_9000_STEPS.md Normal file
View File

@@ -0,0 +1,623 @@
# Create VM 9000 from Uploaded Image - CLI Workflow
## ⚠️ Troubleshooting I/O Errors
If you encounter I/O errors during VM creation (like `qemu-img: error while reading at byte...`), see **[TROUBLESHOOTING_VM_9000.md](TROUBLESHOOTING_VM_9000.md)** for:
- Diagnostic steps to check file integrity
- Solutions to fix corrupted images
- Alternative upload methods
- Storage health checks
**Quick Fix**: The most common solution is to re-upload the image. See Solution 1 in the troubleshooting guide.
## ✅ Image Uploaded Successfully!
- Location: `/var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img`
- Size: 597 MB
## Pre-Creation Verification (Recommended)
Before creating the VM, verify the image is valid:
**On Proxmox host (SSH):**
```bash
# Check file exists and size
ls -lh /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
# Verify image integrity
qemu-img info /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
```
The `qemu-img info` command should show:
- Format: `raw` or `qcow2`
- Virtual size: ~2.2 GB (or similar)
- No errors
If you see errors, follow the troubleshooting guide.
---
# 🚀 Proxmox: 5-Minute CLI Workflow to Create a VM from Any QCOW2/RAW Image
This workflow works for:
- Ubuntu cloud images
- Windows prepared images
- Turnkey appliances
- Custom images you built yourself
**Reference**: For official Proxmox VE documentation, see [Proxmox VE Documentation Index](https://pve.proxmox.com/pve-docs/index.html)
---
## Quick Reference: 5-Minute CLI Workflow
**On Proxmox host (SSH):**
```bash
# Step 1: Create VM shell (no disk)
qm create 9000 --name "ubuntu-24.04-cloudinit" --memory 4096 --cores 2 --net0 virtio,bridge=vmbr0
# Step 2: Import disk from image
qm importdisk 9000 /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img local-lvm
# Step 3: Attach imported disk
qm set 9000 --scsihw virtio-scsi-pci --scsi0 local-lvm:vm-9000-disk-0
# Step 4: Configure boot order
qm set 9000 --boot order=scsi0
# Step 5: (Optional) Add UEFI support
qm set 9000 --bios ovmf --efidisk0 local-lvm:1
# Step 6: (Optional) Add Cloud-init support
qm set 9000 --ide2 local-lvm:cloudinit
qm set 9000 --serial0 socket --vga serial0
# Step 7: Start VM
qm start 9000
```
Done! You've created a VM from a raw disk image in **5 minutes**.
---
## Detailed Step-by-Step Instructions
### Step 1: Upload Image to Proxmox Storage
Upload your `.qcow2` or `.raw` image to:
- `/var/lib/vz/template/iso/` (directory storage)
- Or upload via Proxmox Web UI to your storage pool
**Verify upload:**
```bash
ls -lh /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
qemu-img info /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
```
### Step 2: Create New VM Shell (No Disk Yet)
Pick an unused VMID (example uses **9000**):
```bash
qm create 9000 \
--name "ubuntu-24.04-cloudinit" \
--memory 4096 \
--cores 2 \
--net0 virtio,bridge=vmbr0
```
**Parameters:**
- `--name`: VM display name
- `--memory`: Memory in MB (4096 = 4 GB)
- `--cores`: Number of CPU cores
- `--net0`: Network interface (VirtIO for best performance)
**Check available VMIDs:**
```bash
qm list
```
### Step 3: Import the QCOW2/RAW Disk into the VM
Import the disk image to your storage pool:
```bash
qm importdisk 9000 /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img local-lvm
```
**Parameters:**
- `9000`: VM ID
- Image path: Full path to your image file
- `local-lvm`: Target storage pool (adjust for your environment)
**Available storage pools:**
```bash
pvesm status
```
**Note**: The output will tell you the volume name (usually `vm-9000-disk-0`).
### Step 4: Attach the Imported Disk to the VM
Attach the imported disk as a VirtIO SCSI device:
```bash
qm set 9000 --scsihw virtio-scsi-pci --scsi0 local-lvm:vm-9000-disk-0
```
**Why VirtIO SCSI?**
- Best performance for virtualized storage
- Supports advanced features (discard, iothread)
- Recommended for production VMs
**Alternative disk configurations:**
```bash
# VirtIO block device (alternative)
qm set 9000 --virtio0 local-lvm:vm-9000-disk-0
# IDE device (legacy compatibility)
qm set 9000 --ide0 local-lvm:vm-9000-disk-0
```
### Step 5: Configure Bootloader and Boot Disk
Set the boot order to use the attached disk:
```bash
qm set 9000 --boot order=scsi0
```
**UEFI Configuration (Optional, Recommended for Modern Images):**
If your image requires UEFI (most modern cloud images do):
```bash
# Enable UEFI/OVMF
qm set 9000 --bios ovmf
# Create EFI disk (if not using secure boot)
qm set 9000 --efidisk0 local-lvm:1,format=raw
```
**BIOS Configuration (Legacy):**
For older images that require BIOS:
```bash
qm set 9000 --bios seabios
```
**Verify boot configuration:**
```bash
qm config 9000 | grep -E "boot|bios|scsi0"
```
### Step 6: (Optional) Add Cloud-Init Support
Enable Cloud-Init for automatic VM configuration:
```bash
# Add Cloud-Init drive
qm set 9000 --ide2 local-lvm:cloudinit
# Enable serial console (required for cloud-init)
qm set 9000 --serial0 socket --vga serial0
```
**Configure Cloud-Init settings:**
```bash
# Set Cloud-Init user
qm set 9000 --ciuser ubuntu
# Set SSH public key (recommended over password)
qm set 9000 --sshkey ~/.ssh/id_rsa.pub
# Or set password (less secure)
# qm set 9000 --cipassword "your-secure-password"
# Configure IP address (optional)
qm set 9000 --ipconfig0 ip=192.168.1.100/24,gw=192.168.1.1
# Configure DNS (optional)
qm set 9000 --nameserver "8.8.8.8 8.8.4.4"
# Configure search domains (optional)
qm set 9000 --searchdomain "example.com"
```
**Multiple SSH keys:**
```bash
# Read multiple keys from file
qm set 9000 --sshkey "$(cat ~/.ssh/id_rsa.pub ~/.ssh/id_ed25519.pub)"
```
### Step 7: Enable QEMU Guest Agent (Recommended)
Enable the QEMU Guest Agent for better VM management:
```bash
qm set 9000 --agent 1
```
**Benefits:**
- Accurate CPU and memory reporting
- Proper shutdown/reboot from Proxmox UI
- File system freeze for backups
- Network statistics
### Step 8: Configure Additional Options (Optional)
**CPU Optimization:**
```bash
# Use host CPU type for best performance
qm set 9000 --cpu host
# Set CPU limit (optional)
qm set 9000 --cpulimit 2
```
**Memory Optimization:**
```bash
# Enable balloon driver for dynamic memory
qm set 9000 --balloon 2048
# Enable memory hotplug
qm set 9000 --hotplug memory
```
**Disk I/O Optimization:**
```bash
# Enable IO thread for better I/O performance
qm set 9000 --iothread 1
# Set cache mode (none = best performance, safest)
qm set 9000 --cache none
# Enable discard (for thin provisioning)
qm set 9000 --discard on
```
**Network Optimization:**
```bash
# Enable multi-queue for high network loads
qm set 9000 --queues 2
# Configure VLAN tagging
qm set 9000 --net0 virtio,bridge=vmbr0,tag=20
```
### Step 9: Start the VM
Start the VM:
```bash
qm start 9000
```
**Monitor VM status:**
```bash
# Check VM status
qm status 9000
# View VM console
qm terminal 9000
# View VM logs
journalctl -u qemu-server@9000 -f
```
---
## 🎯 Converting VM to Template
After installing and customizing the VM, convert it to a reusable template:
```bash
# Shutdown VM gracefully
qm shutdown 9000
# Wait for shutdown, then convert to template
qm template 9000
```
**Now you can clone it in seconds:**
**Full Clone (Independent):**
```bash
qm clone 9000 9100 --full --name "ubuntu-24.04-vm-1"
qm start 9100
```
**Linked Clone (Space Efficient):**
```bash
qm clone 9000 9100 --name "ubuntu-24.04-vm-1"
qm start 9100
```
**Configure cloned VM:**
```bash
# Set unique cloud-init settings for clone
qm set 9100 --ciuser ubuntu
qm set 9100 --sshkey ~/.ssh/id_rsa.pub
qm set 9100 --ipconfig0 ip=192.168.1.101/24,gw=192.168.1.1
```
---
## 🎯 Cloud-Init Template Best Practices
Create a production-ready cloud-init template:
```bash
# 1. Create and configure base VM (as above)
# 2. Configure Cloud-Init with best practices
qm set 9000 --ciuser ubuntu
qm set 9000 --cipassword "" # Leave empty, use SSH keys
qm set 9000 --sshkey "$(cat ~/.ssh/id_rsa.pub)"
qm set 9000 --ipconfig0 ip=dhcp # Or static IP per deployment
# 3. Add metadata tags
qm set 9000 --tags ubuntu,cloud-init,template
# 4. Optimize for cloning
qm set 9000 --description "Ubuntu 24.04 Cloud-Init Template - Created $(date +%Y-%m-%d)"
# 5. Shutdown and convert to template
qm shutdown 9000
qm template 9000
```
**Clone with custom configuration:**
```bash
# Clone template
qm clone 9000 9100 --name "production-web-1"
# Configure per-deployment settings
qm set 9100 \
--ciuser ubuntu \
--sshkey "$(cat ~/.ssh/id_rsa.pub)" \
--ipconfig0 ip=10.10.30.10/24,gw=10.10.30.1 \
--nameserver "10.10.30.1" \
--tags "production,web,app-tier"
# Start VM
qm start 9100
```
---
## 🎯 Complete Example: Production-Ready VM Creation
Complete command sequence for a production VM:
```bash
# Variables
VMID=9000
VMNAME="ubuntu-24.04-cloudinit"
IMAGE="/var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img"
STORAGE="local-lvm"
MEMORY=4096
CORES=2
BRIDGE="vmbr0"
SSHKEY="$(cat ~/.ssh/id_rsa.pub)"
# Step 1: Create VM shell
qm create $VMID \
--name "$VMNAME" \
--memory $MEMORY \
--cores $CORES \
--net0 virtio,bridge=$BRIDGE \
--cpu host \
--agent 1
# Step 2: Import disk
qm importdisk $VMID "$IMAGE" $STORAGE
# Step 3: Attach disk
qm set $VMID \
--scsihw virtio-scsi-pci \
--scsi0 ${STORAGE}:vm-${VMID}-disk-0 \
--iothread 1 \
--cache none \
--discard on
# Step 4: Configure boot
qm set $VMID \
--boot order=scsi0 \
--bios ovmf \
--efidisk0 ${STORAGE}:1,format=raw
# Step 5: Configure Cloud-Init
qm set $VMID \
--ide2 ${STORAGE}:cloudinit \
--serial0 socket \
--vga serial0 \
--ciuser ubuntu \
--sshkey "$SSHKEY" \
--ipconfig0 ip=dhcp
# Step 6: Optimize memory
qm set $VMID --balloon $((MEMORY/2))
# Step 7: Start VM
qm start $VMID
# Step 8: Monitor
qm status $VMID
qm terminal $VMID
```
---
## 🎯 Network Configuration Examples
### Basic Network (VLAN-unaware)
```bash
qm set 9000 --net0 virtio,bridge=vmbr0
```
### VLAN Tagging
```bash
# Single VLAN
qm set 9000 --net0 virtio,bridge=vmbr0,tag=20
# Multiple network interfaces with different VLANs
qm set 9000 --net0 virtio,bridge=vmbr0,tag=20
qm set 9000 --net1 virtio,bridge=vmbr0,tag=30
```
### Project-Specific VLANs
According to project architecture:
```bash
# Storage VLAN (10.10.10.0/24)
qm set 9000 --net0 virtio,bridge=vmbr0,tag=10
# Compute VLAN (10.10.20.0/24)
qm set 9000 --net0 virtio,bridge=vmbr0,tag=20
# App Tier VLAN (10.10.30.0/24)
qm set 9000 --net0 virtio,bridge=vmbr0,tag=30
# Observability VLAN (10.10.40.0/24)
qm set 9000 --net0 virtio,bridge=vmbr0,tag=40
# Dev/Test VLAN (10.10.50.0/24)
qm set 9000 --net0 virtio,bridge=vmbr0,tag=50
# Management VLAN (10.10.60.0/24)
qm set 9000 --net0 virtio,bridge=vmbr0,tag=60
# DMZ VLAN (10.10.99.0/24)
qm set 9000 --net0 virtio,bridge=vmbr0,tag=99
```
---
## 🎯 Storage Options
### Different Storage Types
```bash
# Local LVM (fast, thin-provisioned)
qm importdisk 9000 "$IMAGE" local-lvm
# Local directory storage
qm importdisk 9000 "$IMAGE" local
# NFS shared storage
qm importdisk 9000 "$IMAGE" nfs-shared
# Ceph distributed storage
qm importdisk 9000 "$IMAGE" ceph-storage
```
### Disk Format Choices
```bash
# Raw format (best performance)
qm importdisk 9000 "$IMAGE" local-lvm --format raw
# qcow2 format (advanced features)
qm importdisk 9000 "$IMAGE" local-lvm --format qcow2
# vmdk format (VMware compatibility)
qm importdisk 9000 "$IMAGE" local-lvm --format vmdk
```
---
## 🎯 Automation Script
For automated VM creation, use the provided script:
```bash
./scripts/create-vm-from-image.sh \
--vmid 9000 \
--name "ubuntu-24.04-cloudinit" \
--image /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img \
--storage local-lvm \
--memory 4096 \
--cores 2 \
--cloud-init \
--uefi \
--template \
--ciuser ubuntu \
--sshkey "$(cat ~/.ssh/id_rsa.pub)"
```
See `scripts/create-vm-from-image.sh` for full documentation.
---
## ✅ Done!
Once template is created, the monitoring script will automatically:
- Detect the template
- Destroy existing VMs
- Recreate them from template
- Auto-configure everything
Or run manually:
```bash
./scripts/recreate-vms-from-template.sh
```
---
## 📚 Additional Resources
### Official Proxmox VE Documentation
- **[Proxmox VE Documentation Index](https://pve.proxmox.com/pve-docs/index.html)**: Complete documentation (Version 9.1.1)
- **[QEMU/KVM Virtual Machines](https://pve.proxmox.com/pve-docs/chapter-qm.html)**: VM management guide (Chapter 10)
- **[qm(1) Manual Page](https://pve.proxmox.com/pve-docs/qm.1.html)**: Complete qm command reference
- **[Proxmox VE Storage](https://pve.proxmox.com/pve-docs/chapter-pvesm.html)**: Storage management (Chapter 7)
- **[qm.conf(5) Configuration](https://pve.proxmox.com/pve-docs/qm.conf.5.html)**: VM configuration file format
- **[High Availability](https://pve.proxmox.com/pve-docs/chapter-ha-manager.html)**: HA configuration (Chapter 15)
- **[Backup and Restore](https://pve.proxmox.com/pve-docs/chapter-vzdump.html)**: Backup strategies (Chapter 16)
- **[FAQ](https://pve.proxmox.com/pve-docs/chapter-pve-faq.html)**: Frequently asked questions (Chapter 26)
### Project-Specific Documentation
- **[Azure Arc Onboarding](docs/azure-arc-onboarding.md)**: Azure Arc integration guide
- **[Network Topology](docs/network-topology.md)**: Network design and VLAN configuration
- **[Proxmox Operations](docs/runbooks/proxmox-operations.md)**: General Proxmox operations runbook
- **[Deployment Guide](docs/deployment-guide.md)**: Complete deployment instructions
### Troubleshooting
- **[TROUBLESHOOTING_VM_9000.md](TROUBLESHOOTING_VM_9000.md)**: Troubleshooting I/O errors and image issues
- Common issues and solutions are documented in the troubleshooting guide above
### Scripts and Automation
- `scripts/create-vm-from-image.sh`: Automated VM creation script
- `scripts/create-vm-template.sh`: Cloud-init template creation script
- `scripts/recreate-vms-from-template.sh`: Clone VMs from template
- `scripts/verify-proxmox-image.sh`: Image verification script
---
## 🎯 Next Steps
1. **Verify VM creation**: Check that VM starts successfully
2. **Configure Azure Arc agent**: Install Arc agent for Azure integration
```bash
./scripts/azure-arc/onboard-vms.sh
```
3. **Configure monitoring**: Set up Prometheus/Grafana monitoring
4. **Create backup**: Schedule regular backups
```bash
vzdump 9000 --storage backup-storage --compress zstd
```
---
**Happy Deploying! 🚀**

81
docs/temporary/DEPLOYMENT_BLOCKERS.md Normal file
View File

@@ -0,0 +1,81 @@
# Deployment Blockers
## Current Status
### ✅ Working Components
- **Proxmox ML110**: Connected and operational
- **Proxmox R630**: Connected and operational
- **Cloudflare API**: Connected and authenticated
- **Cloudflare Zone**: d-bis.org (active)
- **Cloudflare Tunnel Token**: Available
### ⚠️ Blockers
#### Azure Subscription Read-Only Mode
**Issue**: All available Azure subscriptions are in read-only mode, preventing:
- Resource group creation
- Azure Arc onboarding
- Any write operations
**Affected Subscriptions**:
1. Digital Bank of International Settlements (`fc08d829-4f14-413d-ab27-ce024425db0b`)
2. MIM4U (`6d3c4263-bba9-497c-8843-eae6c4e87192`)
3. Landrum Law (`70569bdd-de60-4dd1-838e-5fde7f91fe8d`)
4. International Criminal Court of Commerce (`88e5f6a1-ab86-4a86-9e91-831ed63fed81`)
**Root Cause**: Likely billing/payment issue or account-level restriction
## Resolution Steps
### 1. Check Azure Portal
- Navigate to: https://portal.azure.com
- Go to: Subscriptions → Check each subscription status
- Look for: Billing alerts, payment issues, or restrictions
### 2. Contact Azure Support
- Open support ticket for subscription activation
- Provide subscription IDs that need re-enabling
- Request removal of read-only restriction
### 3. Alternative: Continue Without Azure Arc
While waiting for Azure resolution, you can:
- ✅ Deploy VMs on Proxmox
- ✅ Configure Cloudflare Tunnel
- ✅ Set up Kubernetes (K3s)
- ✅ Deploy applications
- ⏸️ Onboard to Azure Arc later (once subscription enabled)
## Workarounds
### Proceed with Local Deployment
All infrastructure can be deployed and configured locally:
1. Create VMs using Terraform or Proxmox UI
2. Configure Cloudflare Tunnel (tunnel token available)
3. Deploy Kubernetes cluster
4. Deploy applications
5. Onboard to Azure Arc when subscription is enabled
### Update .env for Alternative Subscription
If you get access to a working subscription:
```bash
# Update subscription ID in .env
AZURE_SUBSCRIPTION_ID=new-subscription-id
# Then create resource group
az group create --name HC-Stack --location eastus
```
## Next Actions
1. **Resolve Azure subscription issue** (priority)
2. **Or proceed with local deployment** (workaround)
3. **Onboard to Azure Arc** once subscription is enabled
## Files Ready for Deployment
- ✅ All scripts prepared and tested
- ✅ Terraform configurations ready
- ✅ Connection tests passing
- ✅ Documentation complete
**Status**: Ready to deploy once Azure subscription is enabled, or proceed with local-only deployment.

72
docs/temporary/DEPLOYMENT_CHECKLIST.md Normal file
View File

@@ -0,0 +1,72 @@
# Deployment Checklist
## Phase 1: Infrastructure Setup ✅
- [x] Proxmox connections verified
- [x] Environment variables configured
- [x] Setup scripts created
- [ ] Service VMs created
- [ ] OS installed on VMs
- [ ] Network configured (static IPs)
## Phase 2: Cloudflare Tunnel
- [ ] Cloudflare Tunnel VM created
- [ ] cloudflared installed
- [ ] Tunnel authenticated
- [ ] Tunnel created
- [ ] Configuration file created
- [ ] Systemd service configured
- [ ] DNS records configured
- [ ] Zero Trust policies configured
- [ ] Tunnel tested and verified
## Phase 3: Kubernetes (K3s)
- [ ] K3s VM created
- [ ] K3s installed
- [ ] Cluster verified
- [ ] kubectl configured
- [ ] Namespaces created
- [ ] Ingress controller deployed
- [ ] Cert-manager deployed
## Phase 4: Git Server
- [ ] Git Server VM created
- [ ] Gitea/GitLab installed
- [ ] Initial configuration completed
- [ ] GitOps repository created
- [ ] SSH keys configured
## Phase 5: Observability
- [ ] Observability VM created
- [ ] Prometheus deployed
- [ ] Grafana deployed
- [ ] Dashboards configured
- [ ] Alerting rules configured
## Phase 6: HC Stack Services
- [ ] Hyperledger Besu deployed
- [ ] Hyperledger Firefly deployed
- [ ] Chainlink CCIP deployed
- [ ] Blockscout deployed
- [ ] Services verified
## Phase 7: Security & Hardening
- [ ] Proxmox RBAC accounts created
- [ ] API tokens generated
- [ ] Firewall rules configured
- [ ] SSH hardening completed
- [ ] Backup strategy implemented
## Phase 8: Documentation
- [ ] Network diagrams updated
- [ ] Runbooks created
- [ ] Access matrix documented
- [ ] IP address list documented

88
docs/temporary/DEPLOYMENT_COMPLETE.md Normal file
View File

@@ -0,0 +1,88 @@
# Deployment Status - All Automatable Steps Complete
## ✅ Completed (100% of Automatable Work)
### Infrastructure Setup
- [x] Environment variables configured (.env)
- [x] Proxmox connections verified (both servers)
- [x] Cloudflare credentials configured
- [x] ISO uploaded to Proxmox storage
### VM Creation & Configuration
- [x] All 4 VMs created via Proxmox API
- [x] CPU cores configured (2-4 per VM)
- [x] RAM configured (4-8GB per VM)
- [x] Disk storage configured (40-200GB per VM)
- [x] QEMU agent enabled on all VMs
- [x] Cloud-Init configuration attempted
- [x] VMs started and running
### Automation & Scripts
- [x] Setup scripts for all services created
- [x] VM status verification script
- [x] Complete automation script
- [x] Configuration fix scripts
- [x] Manual steps guide script
### Documentation
- [x] Complete status reports
- [x] Progress trackers
- [x] Deployment guides
- [x] Final instructions
## ⏳ Remaining (Requires Manual Action)
### Why Manual?
These steps require:
1. **Proxmox Web UI access** - Network/ISO configuration has API format limitations
2. **Interactive console** - Ubuntu installation requires user interaction
### What Needs to Be Done
**Step 1: Verify Hardware (5-10 min)**
- Access Proxmox Web UI: https://192.168.1.206:8006
- Verify network and ISO for each VM
- Fix if needed (see FINAL_INSTRUCTIONS.md)
**Step 2: Install Ubuntu (60-80 min)**
- Open VM console for each VM
- Complete Ubuntu 24.04 installation
- Configure static IPs
**Step 3: Run Automation (Automated)**
```bash
./scripts/check-vm-status.sh # Verify
./scripts/automate-all-setup.sh # Complete setup
```
## 📊 Current VM Status
| VM | ID | IP | CPU | RAM | Disk | Status |
|----|----|----|-----|-----|------|--------|
| cloudflare-tunnel | 100 | 192.168.1.60 | 2 | 4GB | 40GB | ✅ Running |
| k3s-master | 101 | 192.168.1.188 | 4 | 8GB | 80GB | ✅ Running |
| git-server | 102 | 192.168.1.121 | 4 | 8GB | 100GB | ✅ Running |
| observability | 103 | 192.168.1.82 | 4 | 8GB | 200GB | ✅ Running |
## 🎯 Next Actions
1. **Open Proxmox Web UI:** https://192.168.1.206:8006
2. **Follow:** FINAL_INSTRUCTIONS.md
3. **Or run:** ./scripts/manual-steps-guide.sh (interactive)
## 📚 All Documentation
- `FINAL_INSTRUCTIONS.md` - Step-by-step manual instructions
- `COMPLETE_STATUS.md` - Full status report
- `VM_STATUS_REPORT.md` - Detailed VM status
- `DEPLOYMENT_PROGRESS.md` - Progress tracker
## ✨ Summary
**100% of automatable work is complete!**
All infrastructure is ready. The remaining steps are manual due to:
- Proxmox API limitations (network/ISO format)
- Interactive Ubuntu installation requirement
Once Ubuntu is installed, all remaining setup is fully automated.

91
docs/temporary/DEPLOYMENT_PROGRESS.md Normal file
View File

@@ -0,0 +1,91 @@
# Deployment Progress Tracker
## ✅ Completed Tasks
1. **Environment Setup**
- [x] .env file configured
- [x] Proxmox connections verified
- [x] ISO uploaded to Proxmox
2. **VM Creation**
- [x] All 4 VMs created via API
- [x] VMs started and running
- [x] Configuration fixes attempted
3. **Scripts Created**
- [x] Setup scripts for all services
- [x] VM creation scripts
- [x] Status checking scripts
## ⏳ Pending Tasks (In Order)
### Phase 1: VM Configuration Verification
**Prerequisite:** None
**Status:** Ready to execute
- [ ] Verify VM hardware via Proxmox Web UI
- [ ] Fix any missing network/disk/ISO configurations
- [ ] Verify boot order
**Action Required:**
1. Access https://192.168.1.206:8006
2. Check each VM's hardware configuration
3. Fix any issues manually
### Phase 2: Ubuntu Installation
**Prerequisite:** Phase 1 complete
**Status:** Waiting for Phase 1
- [ ] Install Ubuntu 24.04 on cloudflare-tunnel (VM 100)
- [ ] Install Ubuntu 24.04 on k3s-master (VM 101)
- [ ] Install Ubuntu 24.04 on git-server (VM 102)
- [ ] Install Ubuntu 24.04 on observability (VM 103)
**Action Required:**
1. Open VM console in Proxmox Web UI
2. Complete Ubuntu installation
3. Configure static IPs during installation
### Phase 3: OS Verification
**Prerequisite:** Phase 2 complete
**Status:** Waiting for Phase 2
- [ ] Run: ./scripts/check-vm-status.sh
- [ ] Verify all VMs are reachable
- [ ] Verify SSH access works
- [ ] Verify Ubuntu installation
**Action Required:**
```bash
./scripts/check-vm-status.sh
```
### Phase 4: Service Setup
**Prerequisite:** Phase 3 shows all VMs ready
**Status:** Waiting for Phase 3
- [ ] Setup Cloudflare Tunnel (VM 100)
- [ ] Setup K3s (VM 101)
- [ ] Setup Git Server (VM 102)
- [ ] Setup Observability (VM 103)
**Action Required:**
See VM_STATUS_REPORT.md for detailed instructions
## 🔍 Current Blockers
1. **VM Configuration:** Some hardware may need manual configuration via Web UI
2. **OS Installation:** Ubuntu must be installed before proceeding
3. **Network Setup:** Static IPs must be configured during OS installation
## 📋 Quick Reference
**Proxmox Web UI:** https://192.168.1.206:8006
**VM IPs:**
- 192.168.1.60 (cloudflare-tunnel)
- 192.168.1.188 (k3s-master)
- 192.168.1.121 (git-server)
- 192.168.1.82 (observability)
**Verification Script:** `./scripts/check-vm-status.sh`
**Status Report:** `VM_STATUS_REPORT.md`

76
docs/temporary/DEPLOYMENT_STATUS.md Normal file
View File

@@ -0,0 +1,76 @@
# Deployment Status
## ✅ Completed Tasks
- [x] Environment configuration file (`.env`) created
- [x] Proxmox credential structure configured (PVE_ROOT_PASS)
- [x] Proxmox connection testing script created and verified
- [x] Both Proxmox servers tested and accessible:
- HPE ML110 Gen9: `192.168.1.206:8006`
- Dell R630: `192.168.1.49:8006`
- [x] Azure CLI installed and authenticated
- [x] Azure credentials updated in `.env`:
- Subscription ID: `fc08d829-4f14-413d-ab27-ce024425db0b`
- Tenant ID: `fb97e99d-3e94-4686-bfde-4bf4062e05f3`
- [x] Documentation updated with security best practices
## ⚠️ Blockers / Issues
### Azure Subscription Disabled
- **Status**: Azure subscription is in read-only mode (disabled)
- **Impact**: Cannot create Azure resources (resource groups, Arc connections, etc.)
- **Action Required**: Re-enable subscription in Azure Portal
- **Subscription ID**: `fc08d829-4f14-413d-ab27-ce024425db0b`
### Cloudflare Configuration Pending
- **Status**: Cloudflare credentials not yet configured
- **Required**:
- `CLOUDFLARE_API_TOKEN` - Create at https://dash.cloudflare.com/profile/api-tokens
- `CLOUDFLARE_ACCOUNT_EMAIL` - Your Cloudflare account email
## 🎯 Ready to Execute (Pending Azure Subscription)
Once Azure subscription is re-enabled:
1. **Create Azure Resource Group**:
```bash
source <(grep -v '^#' .env | grep -v '^$' | sed 's/#.*$//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//' | grep '=')
az group create --name "$AZURE_RESOURCE_GROUP" --location "$AZURE_LOCATION"
```
2. **Onboard Proxmox Hosts to Azure Arc**:
- ML110: `ssh root@192.168.1.206` then run onboarding script
- R630: `ssh root@192.168.1.49` then run onboarding script
## 📋 Next Steps
1. **Re-enable Azure Subscription** (Critical blocker)
2. **Configure Cloudflare Credentials** in `.env`
3. **Create Azure Resource Group** (once subscription enabled)
4. **Onboard Proxmox Hosts to Azure Arc**
5. **Create Service VMs** (K3s, Cloudflare Tunnel, Git Server, etc.)
6. **Configure Cloudflare Tunnel**
7. **Deploy Kubernetes (K3s)**
8. **Set up GitOps**
## 🔧 Useful Commands
```bash
# Test Proxmox connections
./scripts/utils/test-proxmox-connection.sh
# Check prerequisites
./scripts/utils/prerequisites-check.sh
# Verify environment variables
source <(grep -v '^#' .env | grep -v '^$' | sed 's/#.*$//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//' | grep '=')
echo "Azure Subscription: $AZURE_SUBSCRIPTION_ID"
echo "Azure Tenant: $AZURE_TENANT_ID"
```
## 📚 Documentation
- [Next Steps Guide](NEXT_STEPS.md) - Complete deployment roadmap
- [Bring-Up Checklist](docs/bring-up-checklist.md) - Detailed installation guide
- [Deployment Guide](docs/deployment-guide.md) - Step-by-step deployment
- [Proxmox RBAC Guide](docs/security/proxmox-rbac.md) - Security best practices

488
docs/temporary/DEPLOYMENT_WITHOUT_AZURE.md Normal file
View File

@@ -0,0 +1,488 @@
# Deployment Guide - Without Azure Arc
This guide covers deploying the complete infrastructure stack without Azure Arc integration. Azure Arc can be added later once subscription issues are resolved.
## ✅ What Works Without Azure
- ✅ Proxmox VE cluster and VM management
- ✅ Cloudflare Tunnel for secure external access
- ✅ Kubernetes (K3s) cluster deployment
- ✅ GitOps with self-hosted Git server
- ✅ All HC Stack services (Besu, Firefly, Chainlink, etc.)
- ✅ Monitoring and observability stack
- ✅ Network configuration and VLANs
- ✅ Storage management
## ⏸️ What's Deferred (Until Azure Available)
- ⏸️ Azure Arc onboarding
- ⏸️ Azure Policy enforcement
- ⏸️ Azure Monitor integration
- ⏸️ Azure Defender
- ⏸️ Azure Update Management
## 🚀 Deployment Phases (Without Azure)
### Phase 1: Proxmox Cluster Setup
**Verify/Configure Cluster:**
```bash
# On ML110 (192.168.1.206)
ssh root@192.168.1.206
pvecm status
pvecm nodes
# On R630 (192.168.1.49)
ssh root@192.168.1.49
pvecm status
pvecm nodes
```
**If not clustered, create cluster:**
```bash
# On ML110 (first node)
pvecm create hc-cluster
# On R630 (join cluster)
pvecm add 192.168.1.206
```
### Phase 2: Create Service VMs
**Option A: Using Terraform**
```bash
cd terraform/proxmox
# Create terraform.tfvars from .env
source <(grep -v '^#' ../.env | grep -v '^$' | sed 's/#.*$//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//' | grep '=')
cat > terraform.tfvars <<EOF
proxmox_host = "192.168.1.206"
proxmox_username = "root@pam"
proxmox_password = "$PVE_ROOT_PASS"
proxmox_node = "pve"
EOF
terraform init
terraform plan
terraform apply
```
**Option B: Manual VM Creation via Proxmox UI**
Access Proxmox web UI:
- ML110: `https://192.168.1.206:8006`
- R630: `https://192.168.1.49:8006`
Create VMs for:
1. **K3s Master** (Kubernetes)
- 4 vCPU, 8GB RAM, 80GB disk
- Ubuntu 22.04 LTS
- IP: 192.168.1.188 (adjust as needed)
2. **Cloudflare Tunnel VM**
- 2 vCPU, 4GB RAM, 40GB disk
- Ubuntu 22.04 LTS
- IP: 192.168.1.60 (VLAN 99/DMZ)
3. **Git Server** (Gitea/GitLab)
- 4 vCPU, 8GB RAM, 100GB disk
- Ubuntu 22.04 LTS
- IP: 192.168.1.121
4. **Observability VM** (Prometheus/Grafana)
- 4 vCPU, 8GB RAM, 200GB disk
- Ubuntu 22.04 LTS
- IP: 192.168.1.82
### Phase 3: Cloudflare Tunnel Configuration
**On Cloudflare Tunnel VM:**
```bash
# SSH to tunnel VM
ssh ubuntu@192.168.1.60
# Install cloudflared
curl -L https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-amd64 -o /usr/local/bin/cloudflared
chmod +x /usr/local/bin/cloudflared
# Configure tunnel using tunnel token from .env
# Load environment variables
source <(grep -v '^#' /path/to/.env | grep -v '^$' | sed 's/#.*$//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//' | grep '=')
# Create tunnel config directory
sudo mkdir -p /etc/cloudflared
# Create config.yml using tunnel token
cat > /tmp/config.yml <<EOF
tunnel: $(echo $CLOUDFLARE_TUNNEL_TOKEN | cut -d'_' -f1)
credentials-file: /etc/cloudflared/credentials.json
ingress:
# Proxmox UI - ML110
- hostname: proxmox-ml110.d-bis.org
service: https://192.168.1.206:8006
originRequest:
noHappyEyeballs: true
tcpKeepAlive: 30
# Proxmox UI - R630
- hostname: proxmox-r630.d-bis.org
service: https://192.168.1.49:8006
originRequest:
noHappyEyeballs: true
tcpKeepAlive: 30
# Kubernetes Dashboard (will add after K3s deployment)
- hostname: k8s.d-bis.org
service: http://192.168.1.188:8000
originRequest:
noHappyEyeballs: true
# Git Server (will add after Git deployment)
- hostname: git.d-bis.org
service: http://192.168.1.121:3000
originRequest:
noHappyEyeballs: true
# Grafana (will add after observability deployment)
- hostname: grafana.d-bis.org
service: http://192.168.1.82:3000
originRequest:
noHappyEyeballs: true
# Catch-all
- service: http_status:404
EOF
sudo mv /tmp/config.yml /etc/cloudflared/config.yml
# Create credentials file from tunnel token
# Note: Tunnel token format may vary, adjust as needed
echo "{\"AccountTag\":\"$CLOUDFLARE_ACCOUNT_ID\",\"TunnelSecret\":\"$CLOUDFLARE_TUNNEL_TOKEN\"}" | sudo tee /etc/cloudflared/credentials.json
sudo chmod 600 /etc/cloudflared/credentials.json
# Create systemd service
sudo tee /etc/systemd/system/cloudflared.service > /dev/null <<EOF
[Unit]
Description=Cloudflare Tunnel
After=network.target
[Service]
Type=simple
User=cloudflared
ExecStart=/usr/local/bin/cloudflared tunnel --config /etc/cloudflared/config.yml run
Restart=on-failure
RestartSec=5s
[Install]
WantedBy=multi-user.target
EOF
# Create cloudflared user
sudo useradd -r -s /usr/sbin/nologin cloudflared
sudo chown -R cloudflared:cloudflared /etc/cloudflared
# Enable and start
sudo systemctl enable cloudflared
sudo systemctl start cloudflared
sudo systemctl status cloudflared
```
### Phase 4: Kubernetes (K3s) Deployment
**On K3s VM:**
```bash
# SSH to K3s VM
ssh ubuntu@192.168.1.188
# Install K3s
curl -sfL https://get.k3s.io | sh -
# Verify installation
sudo k3s kubectl get nodes
# Get kubeconfig
sudo cat /etc/rancher/k3s/k3s.yaml
# Copy kubeconfig to local machine
mkdir -p ~/.kube
sudo cat /etc/rancher/k3s/k3s.yaml | sed 's/127.0.0.1/192.168.1.188/g' > ~/.kube/config
chmod 600 ~/.kube/config
# Test access
kubectl get nodes
```
**Deploy Base Infrastructure:**
```bash
# Create namespaces
kubectl create namespace blockchain
kubectl create namespace monitoring
kubectl create namespace hc-stack
# Deploy NGINX Ingress Controller
kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/deploy/static/provider/cloud/deploy.yaml
# Deploy Cert-Manager (optional, for TLS)
kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.13.0/cert-manager.yaml
```
### Phase 5: Git Server Deployment
**On Git Server VM:**
```bash
# SSH to Git server VM
ssh ubuntu@192.168.1.121
# Option A: Deploy Gitea (Recommended)
docker run -d --name=gitea \
-p 3000:3000 \
-p 2222:22 \
-v gitea_data:/data \
-e USER_UID=1000 \
-e USER_GID=1000 \
gitea/gitea:latest
# Access Gitea at http://192.168.1.121:3000
# Complete initial setup
# Create repository for GitOps
```
**Or use deployment script:**
```bash
cd /path/to/loc_az_hci
./infrastructure/gitops/gitea-deploy.sh
```
### Phase 6: Observability Stack
**On Observability VM or Kubernetes:**
**Option A: Deploy in Kubernetes (Recommended)**
```bash
# Deploy Prometheus
helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
helm install prometheus prometheus-community/kube-prometheus-stack -n monitoring
# Deploy Grafana (if not included in kube-prometheus-stack)
helm repo add grafana https://grafana.github.io/helm-charts
helm install grafana grafana/grafana -n monitoring
# Get Grafana admin password
kubectl get secret --namespace monitoring grafana -o jsonpath="{.data.admin-password}" | base64 --decode
```
**Option B: Deploy on VM**
```bash
# On observability VM
ssh ubuntu@192.168.1.82
# Install Prometheus
# Install Grafana
# Configure data sources
```
### Phase 7: Deploy HC Stack Services
**Deploy Blockchain Services:**
```bash
# Ensure you're in project directory
cd /path/to/loc_az_hci
# Deploy Besu
helm install besu ./gitops/apps/besu -n blockchain
# Deploy Firefly
helm install firefly ./gitops/apps/firefly -n blockchain
# Deploy Chainlink
helm install chainlink-ccip ./gitops/apps/chainlink-ccip -n blockchain
# Deploy Blockscout
helm install blockscout ./gitops/apps/blockscout -n blockchain
# Deploy Cacti (monitoring)
helm install cacti ./gitops/apps/cacti -n monitoring
# Deploy NGINX Proxy
helm install nginx-proxy ./gitops/apps/nginx-proxy -n hc-stack
```
### Phase 8: Configure Ingress
**Update Cloudflare Tunnel config with service endpoints:**
```bash
# On Cloudflare Tunnel VM
sudo nano /etc/cloudflared/config.yml
# Add ingress rules for:
# - besu.d-bis.org → Kubernetes service
# - firefly.d-bis.org → Kubernetes service
# - blockscout.d-bis.org → Kubernetes service
# - grafana.d-bis.org → Grafana service
# Restart tunnel
sudo systemctl restart cloudflared
```
**Create Kubernetes Ingress resources:**
```bash
# Create ingress for services
kubectl apply -f - <<EOF
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: blockchain-ingress
namespace: blockchain
annotations:
kubernetes.io/ingress.class: nginx
spec:
rules:
- host: besu.d-bis.org
http:
paths:
- path: /
pathType: Prefix
backend:
service:
name: besu
port:
number: 8545
EOF
```
### Phase 9: Network Configuration
**Configure VLANs on Proxmox (if not done):**
```bash
# On each Proxmox host
# Configure VLAN bridges
# See: infrastructure/proxmox/configure-proxmox-vlans.sh
```
**Configure OpenWrt (if router server exists):**
```bash
# Configure VLANs, routing, firewall
# See: infrastructure/network/configure-openwrt-network.ps1
```
### Phase 10: Monitoring Setup
**Configure Prometheus Targets:**
```bash
# Add Proxmox exporters
# Add node exporters
# Configure scrape configs
```
**Create Grafana Dashboards:**
```bash
# Import dashboards for:
# - Kubernetes cluster
# - Proxmox hosts
# - Network metrics
# - Application metrics
```
## 🔧 Useful Commands (Without Azure)
**Proxmox Operations:**
```bash
# List VMs
pvesh get /nodes/pve/qemu
# Create VM via API
# Use Terraform or Proxmox UI
```
**Kubernetes Operations:**
```bash
# Check cluster status
kubectl get nodes
kubectl get pods --all-namespaces
kubectl get services --all-namespaces
# Check ingress
kubectl get ingress --all-namespaces
```
**Cloudflare Tunnel:**
```bash
# Check tunnel status
sudo systemctl status cloudflared
sudo journalctl -u cloudflared -f
# Test tunnel connectivity
cloudflared tunnel info
```
## 📋 Deployment Checklist (Without Azure)
- [ ] Verify Proxmox cluster status
- [ ] Create service VMs (K3s, Tunnel, Git, Observability)
- [ ] Configure Cloudflare Tunnel
- [ ] Deploy Kubernetes (K3s)
- [ ] Deploy Git server (Gitea/GitLab)
- [ ] Deploy observability stack
- [ ] Deploy HC Stack services
- [ ] Configure ingress and routing
- [ ] Set up monitoring dashboards
- [ ] Test all services
- [ ] Configure backups
- [ ] Document IPs and configurations
## 🎯 Adding Azure Arc Later
Once Azure subscription is enabled:
1. **Install Arc agents on Proxmox hosts:**
```bash
# On each Proxmox host
./scripts/azure-arc/onboard-proxmox-hosts.sh
```
2. **Install Arc agents on VMs:**
```bash
# On each VM
./scripts/azure-arc/onboard-vms.sh
```
3. **Onboard Kubernetes to Arc:**
```bash
# On K3s VM
./infrastructure/kubernetes/arc-onboard-k8s.sh
```
## 🚨 Important Notes
- **No Azure dependencies**: All services work independently
- **Local monitoring**: Use Prometheus/Grafana instead of Azure Monitor
- **Local GitOps**: Use self-hosted Git server instead of Azure DevOps
- **Cloudflare for access**: Use Cloudflare Tunnel instead of Azure VPN
- **Manual updates**: Update management without Azure Update Management
## 📚 Reference Documentation
- [Deployment Guide](docs/deployment-guide.md) - General deployment steps
- [Cloudflare Integration](docs/cloudflare-integration.md) - Tunnel setup
- [Proxmox Operations](docs/runbooks/proxmox-operations.md) - Proxmox management
- [Network Topology](docs/network-topology.md) - Network configuration

147
docs/temporary/FINAL_INSTRUCTIONS.md Normal file
View File

@@ -0,0 +1,147 @@
# Final Instructions - Complete Remaining Steps
## ✅ What's Been Completed
All automatable steps are complete:
- ✅ Environment configured
- ✅ All 4 VMs created and running
- ✅ CPU, RAM, and disk configured
- ✅ QEMU agent enabled
- ✅ All automation scripts ready
- ✅ Cloud-Init configuration attempted
## ⚠️ What Needs Manual Action
Due to Proxmox API limitations, these require Proxmox Web UI:
### 1. Verify/Fix VM Hardware (5-10 minutes)
**Access Proxmox:** https://192.168.1.206:8006
For each VM (100, 101, 102, 103):
1. Click on VM → **Hardware** tab
2. **Network Device:**
- If missing: Click "Add" → "Network Device"
- Model: VirtIO
- Bridge: vmbr0
- Click "Add"
3. **CD/DVD Drive:**
- If missing: Click "Add" → "CD/DVD Drive"
- Storage: local
- ISO image: ubuntu-24.04.3-live-server-amd64.iso
- Click "Add"
4. **Boot Order:**
- Go to **Options** tab
- Boot Order: Set to "CD-ROM" first
- Click "OK"
### 2. Install Ubuntu 24.04 (60-80 minutes)
For each VM:
1. Click VM → **Console**
2. Ubuntu installer should boot automatically
3. Complete installation with these settings:
**VM 100 - cloudflare-tunnel:**
- IP: 192.168.1.60/24
- Gateway: 192.168.1.254
- DNS: 8.8.8.8
- User: ubuntu (or your choice)
- Password: (remember for SSH)
**VM 101 - k3s-master:**
- IP: 192.168.1.188/24
- Gateway: 192.168.1.254
- DNS: 8.8.8.8
**VM 102 - git-server:**
- IP: 192.168.1.121/24
- Gateway: 192.168.1.254
- DNS: 8.8.8.8
**VM 103 - observability:**
- IP: 192.168.1.82/24
- Gateway: 192.168.1.254
- DNS: 8.8.8.8
### 3. Verify Installation (Automated)
After Ubuntu is installed on all VMs:
```bash
./scripts/check-vm-status.sh
```
This verifies:
- Network connectivity
- SSH access
- Ubuntu installation
### 4. Complete Automated Setup (Automated)
Once verification passes:
```bash
./scripts/automate-all-setup.sh
```
This will automatically:
- Install Cloudflare Tunnel (VM 100)
- Install K3s (VM 101)
- Install Gitea (VM 102)
- Install Prometheus + Grafana (VM 103)
## 🚀 Quick Start
**Option 1: Interactive Guide**
```bash
./scripts/manual-steps-guide.sh
```
**Option 2: Manual Steps**
1. Follow steps 1-2 above
2. Run: `./scripts/check-vm-status.sh`
3. Run: `./scripts/automate-all-setup.sh`
## 📋 Checklist
- [ ] Verify VM hardware via Proxmox Web UI
- [ ] Install Ubuntu on VM 100 (cloudflare-tunnel)
- [ ] Install Ubuntu on VM 101 (k3s-master)
- [ ] Install Ubuntu on VM 102 (git-server)
- [ ] Install Ubuntu on VM 103 (observability)
- [ ] Run: `./scripts/check-vm-status.sh`
- [ ] Run: `./scripts/automate-all-setup.sh`
## 🎯 Expected Timeline
- Hardware verification: 5-10 minutes
- Ubuntu installation: 60-80 minutes (15-20 min per VM)
- Automated setup: 40-60 minutes
- **Total: ~2 hours**
## 📞 Troubleshooting
**If VMs don't boot:**
- Check boot order in Proxmox (should be CD-ROM first)
- Verify ISO is attached
- Check VM has sufficient resources
**If network doesn't work:**
- Verify network device exists in Hardware tab
- Check bridge (vmbr0) exists
- Verify IP configuration during Ubuntu install
**If setup scripts fail:**
- Ensure Ubuntu is fully installed
- Check SSH access works
- Verify user has sudo privileges
## 📄 Related Documentation
- `COMPLETE_STATUS.md` - Full status report
- `VM_STATUS_REPORT.md` - Detailed VM status
- `DEPLOYMENT_PROGRESS.md` - Progress tracker

102
docs/temporary/FIX_BOOT_NOW.md Normal file
View File

@@ -0,0 +1,102 @@
# Fix "No Bootable Disk" - Step by Step
## Problem
VMs show "No bootable disk" because the ISO isn't attached via API.
## Quick Fix (5 minutes)
### Step 1: Access Proxmox Web UI
1. Open: https://192.168.1.206:8006
2. Login: `root@pam` / (password from `.env` file: `PVE_ROOT_PASS`)
3. Accept the self-signed certificate warning
### Step 2: Fix Each VM
**For VM 100 (cloudflare-tunnel):**
1. Click on **cloudflare-tunnel** (or VM ID 100) in the left panel
2. Click **Hardware** tab
3. **Add CD/DVD Drive:**
- Click **"Add"** button (top)
- Select **"CD/DVD Drive"**
- Storage: `local`
- ISO image: `ubuntu-24.04.3-live-server-amd64.iso`
- Click **"Add"**
4. **Set Boot Order:**
- Click **"Options"** tab
- Find **"Boot Order"**
- Click **"Edit"**
- Set to: **"CD-ROM"** first
- Click **"OK"**
5. **Verify Network:**
- Go back to **"Hardware"** tab
- If no Network Device exists:
- Click **"Add"** → **"Network Device"**
- Model: **VirtIO**
- Bridge: **vmbr0**
- Click **"Add"**
**Repeat for VMs 101, 102, 103:**
- VM 101: k3s-master
- VM 102: git-server
- VM 103: observability
### Step 3: Start and Verify
1. **Start each VM:**
- Click VM → **"Start"** button (top right)
2. **Open Console:**
- Click **"Console"** tab
- You should see Ubuntu installer booting
3. **If still "No bootable disk":**
- Stop VM
- Hardware tab → Remove CD/DVD drive
- Add it again with ISO
- Options tab → Verify boot order
- Start VM again
## Visual Guide
```
Proxmox Web UI Steps:
┌─────────────────────────────────┐
│ 1. Click VM (left panel) │
│ 2. Hardware tab │
│ 3. Add → CD/DVD Drive │
│ - Storage: local │
│ - ISO: ubuntu-24.04.3... │
│ 4. Options tab │
│ 5. Boot Order → CD-ROM first │
│ 6. Start VM │
│ 7. Console → Should see Ubuntu │
└─────────────────────────────────┘
```
## Troubleshooting
**ISO not in list?**
- Go to: Datacenter → Storage → local → ISO images
- Verify `ubuntu-24.04.3-live-server-amd64.iso` exists
- If missing, upload it
**Still won't boot?**
- Try: Hardware → CD/DVD → Edit → Check "Use CD/DVD disc image file"
- Verify: Options → Boot Order has "ide2" or "CD-ROM" first
- Try: Stop VM → Detach ISO → Re-attach → Start
## Expected Result
After fixing, when you open Console:
- ✅ Ubuntu installer should boot
- ✅ You'll see Ubuntu installation screen
- ✅ Network should be detected (if network device exists)
## Next Steps After Boot Works
1. Complete Ubuntu installation
2. Configure static IPs during installation
3. Run: `./scripts/check-vm-status.sh`
4. Run: `./scripts/automate-all-setup.sh`

81
docs/temporary/FIX_FLOPPY_BOOT.md Normal file
View File

@@ -0,0 +1,81 @@
# Fix: VM Booting from Floppy Instead of CD-ROM
## Problem
VM keeps trying to boot from floppy drive instead of CD-ROM (ISO).
## Solution: Remove Floppy and Set Boot Order
### Quick Fix via Proxmox Web UI
1. **Access Proxmox:** https://192.168.1.206:8006
2. **For each VM (100, 101, 102, 103):**
**Step 1: Remove Floppy Drive**
- Click VM → **Hardware** tab
- Look for **"Floppy Drive"** or **"floppy0"**
- If it exists, click on it → **Remove**
- Confirm removal
**Step 2: Set Boot Order**
- Go to **Options** tab
- Find **"Boot Order"**
- Click **"Edit"**
- **Remove floppy from boot order** (if shown)
- Set order to: **CD-ROM first, then Hard Disk**
- Or type in text field: `order=ide2;scsi0`
- Click **OK**
**Step 3: Verify CD/DVD Drive**
- Go back to **Hardware** tab
- Verify **CD/DVD Drive (ide2)** exists
- Verify it shows: `ubuntu-24.04.3-live-server-amd64.iso`
- If missing, add it (see ATTACH_ISO_FIRST.md)
**Step 4: Start VM**
- Click **Start**
- Open **Console**
- Should boot from CD-ROM now!
### Alternative: Use BIOS/UEFI Settings
If Web UI doesn't work:
1. **Start VM**
2. **Open Console**
3. **Press F2 or Delete** during boot (enter BIOS)
4. **Navigate to Boot menu**
5. **Disable Floppy** in boot order
6. **Set CD/DVD as first boot device**
7. **Save and exit**
### API Fix (Attempted)
The script `scripts/fix-floppy-boot.sh` has been run to:
- Remove floppy drive via API
- Set boot order to skip floppy
- Configure boot from CD-ROM
**If it didn't work, use Web UI method above.**
## Why This Happens
Proxmox VMs sometimes have a default floppy drive that takes boot priority. The floppy needs to be:
1. Removed from hardware, OR
2. Removed from boot order
## Verification
After fixing:
- ✅ Floppy drive removed (or disabled in boot order)
- ✅ Boot order: CD-ROM first
- ✅ VM boots from Ubuntu ISO
## Quick Checklist
For each VM:
- [ ] Hardware tab → Remove floppy drive (if exists)
- [ ] Options tab → Boot Order → Remove floppy
- [ ] Boot Order → CD-ROM first
- [ ] Hardware tab → Verify CD/DVD drive with ISO
- [ ] Start VM → Console → Should boot from CD-ROM

57
docs/temporary/FIX_VM_9000_NOW.md Normal file
View File

@@ -0,0 +1,57 @@
# Fix VM 9000 Configuration - Quick Steps
## Current Issue
VM 9000 has the cloud image attached as CD-ROM (ide2) instead of as a disk.
## Fix Steps (2 minutes)
### Step 1: Remove CD-ROM and Add Disk
1. **Select VM 9000** in Proxmox Web UI
2. **Go to "Hardware" tab**
3. **Remove CD-ROM:**
- Find **"CD/DVD Drive (ide2)"**
- Click on it
- Click **"Remove"**
- Confirm
4. **Add Disk from Image:**
- Click **"Add"** → **"Hard Disk"**
- Storage: **local**
- **Import from:** Select `ubuntu-24.04-server-cloudimg-amd64.img` from dropdown
- Disk size: **20GB**
- Click **"Add"**
### Step 2: Configure Cloud-Init
1. **Go to "Options" tab**
2. **Click "Cloud-Init"**
3. **Configure:**
- **User:** `ubuntu`
- **Password:** (leave empty)
- **SSH Public Keys:** Paste this key:
```
ssh-rsa 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 defi@defi-oracle.io
```
- Click **"OK"**
### Step 3: Convert to Template
1. **Right-click VM 9000** in left panel
2. **Select "Convert to Template"**
3. **Confirm**
4. **Wait** for conversion (1-2 minutes)
## ✅ Done!
After conversion, run:
```bash
./scripts/recreate-vms-from-template.sh
```
This will automatically recreate all VMs from the template!

97
docs/temporary/MANUAL_FLOPPY_FIX.md Normal file
View File

@@ -0,0 +1,97 @@
# Manual Fix: Remove Floppy from Boot Order
## Problem
VM keeps booting from floppy even though floppy drive isn't in hardware. This is because floppy is in the default BIOS boot order.
## Solution: Set Boot Order via Proxmox Web UI
### Step-by-Step Instructions
1. **Access Proxmox Web UI**
- Go to: https://192.168.1.206:8006
- Login with root credentials
2. **For Each VM (100, 101, 102, 103):**
**A. Stop the VM** (if running)
- Click VM → **Stop** button
- Wait for it to stop
**B. Go to Options Tab**
- Click on the VM
- Click **Options** tab (left sidebar)
**C. Edit Boot Order**
- Find **"Boot Order"** in the list
- Click on it (or double-click)
- Click **"Edit"** button
**D. Configure Boot Order**
- Look for a **text field** or **dropdown**
- If text field: Type: `order=ide2;scsi0`
- `ide2` = CD/DVD drive (ISO)
- `scsi0` = Hard disk
- `;` separates devices (first = highest priority)
- If dropdown:
- Remove "Floppy" from boot order
- Set "CD-ROM" as first
- Set "Hard Disk" as second
- Click **OK**
**E. Verify Hardware**
- Go to **Hardware** tab
- Verify **CD/DVD Drive (ide2)** exists
- Verify it shows: `ubuntu-24.04.3-live-server-amd64.iso`
- If you see **Floppy Drive**, click it → **Remove**
**F. Start VM**
- Click **Start** button
- Open **Console** tab
- Should boot from CD-ROM now!
### Alternative: Use BIOS Boot Menu
If Web UI boot order doesn't work:
1. **Start VM**
2. **Open Console**
3. **Press F2 or Delete** immediately when VM starts
4. **Enter BIOS/UEFI settings**
5. **Navigate to "Boot" menu**
6. **Find "Boot Priority" or "Boot Order"**
7. **Move CD/DVD to top** (use +/- or arrow keys)
8. **Move Floppy to bottom** or disable it
9. **Save and Exit** (usually F10)
### Quick Test
After setting boot order:
- Start VM → Console
- Should see Ubuntu installer boot screen
- If still shows floppy error, use BIOS method above
## Boot Order Format
In Proxmox, boot order can be set as:
- `order=ide2;scsi0` = CD-ROM first, then disk
- `order=scsi0;ide2` = Disk first, then CD-ROM
- `order=ide2` = CD-ROM only
**We want:** `order=ide2;scsi0`
## Troubleshooting
**Boot order field is read-only:**
- Stop the VM first
- Some Proxmox versions require VM to be stopped
**CD-ROM still not booting:**
- Verify ISO is attached in Hardware tab
- Check boot order text field has `ide2` first
- Try BIOS boot menu method
**Floppy still appears:**
- Remove floppy drive from Hardware tab (if exists)
- Set boot order explicitly to skip floppy
- Use BIOS to disable floppy boot

371
docs/temporary/NEXT_STEPS.md Normal file
View File

@@ -0,0 +1,371 @@
# Next Steps - Azure Stack HCI Deployment
## ✅ Completed
- [x] Environment configuration (`.env` file setup)
- [x] Proxmox credential structure (best practices with `PVE_ROOT_PASS`)
- [x] Connection testing script created and verified
- [x] Both Proxmox servers tested and accessible:
- HPE ML110 Gen9: `192.168.1.206:8006`
- Dell R630: `192.168.1.49:8006`
- [x] Documentation updated with security best practices
## 🎯 Immediate Next Steps (Priority Order)
### 1. Complete Environment Configuration
**Status**: Partially complete - Proxmox configured, Azure/Cloudflare pending
```bash
# Edit .env file and configure remaining credentials
nano .env # or use your preferred editor
```
**Required:**
- [ ] `AZURE_SUBSCRIPTION_ID` - Get from: `az account show --query id -o tsv`
- [ ] `AZURE_TENANT_ID` - Get from: `az account show --query tenantId -o tsv`
- [ ] `AZURE_RESOURCE_GROUP` - Set to: `HC-Stack` (or your preferred name)
- [ ] `AZURE_LOCATION` - Set to: `eastus` (or your preferred region)
- [ ] `CLOUDFLARE_API_TOKEN` - Create at: https://dash.cloudflare.com/profile/api-tokens
- [ ] `CLOUDFLARE_ACCOUNT_EMAIL` - Your Cloudflare account email
**Verify configuration:**
```bash
# Test Proxmox connections (already working)
./scripts/utils/test-proxmox-connection.sh
# Test Azure CLI connection
az account show
# Verify environment variables loaded
source <(grep -v '^#' .env | grep -v '^$' | sed 's/#.*$//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//' | grep '=')
echo "Azure Subscription: $AZURE_SUBSCRIPTION_ID"
echo "Azure Tenant: $AZURE_TENANT_ID"
```
### 2. Azure Prerequisites Setup
**Create Azure Resource Group:**
```bash
# Load environment variables
source <(grep -v '^#' .env | grep -v '^$' | sed 's/#.*$//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//' | grep '=')
# Login to Azure
az login
# Set subscription
az account set --subscription "$AZURE_SUBSCRIPTION_ID"
# Create resource group
az group create \
--name "$AZURE_RESOURCE_GROUP" \
--location "$AZURE_LOCATION"
# Verify
az group show --name "$AZURE_RESOURCE_GROUP"
```
**Verify Azure CLI:**
```bash
# Check prerequisites
./scripts/utils/prerequisites-check.sh
```
### 3. Proxmox Cluster Configuration
**Current Status**: Both servers are accessible but may not be clustered yet.
**Option A: If servers are already clustered:**
```bash
# Verify cluster status (run on one of the Proxmox hosts)
pvecm status
pvecm nodes
```
**Option B: If servers need to be clustered:**
**On ML110 (192.168.1.206):**
```bash
# SSH to the server
ssh root@192.168.1.206
# Configure network (if needed)
export NODE_IP=192.168.1.206
export NODE_GATEWAY=192.168.1.254 # Adjust based on your network
export NODE_HOSTNAME=pve-ml110
# Run configuration scripts (if available)
# ./infrastructure/proxmox/network-config.sh
# ./infrastructure/proxmox/cluster-setup.sh
```
**On R630 (192.168.1.49):**
```bash
# SSH to the server
ssh root@192.168.1.49
# Configure network (if needed)
export NODE_IP=192.168.1.49
export NODE_GATEWAY=192.168.1.254 # Adjust based on your network
export NODE_HOSTNAME=pve-r630
export CLUSTER_NODE_IP=192.168.1.206
# Run configuration scripts (if available)
# ./infrastructure/proxmox/network-config.sh
# export NODE_ROLE=join
# ./infrastructure/proxmox/cluster-setup.sh
```
**Verify cluster:**
```bash
# From either Proxmox host
pvecm status
pvecm nodes
```
### 4. Azure Arc Onboarding
**Onboard Proxmox Hosts to Azure Arc:**
**On ML110:**
```bash
# SSH to ML110
ssh root@192.168.1.206
# Load environment variables (copy .env or set manually)
export RESOURCE_GROUP="${AZURE_RESOURCE_GROUP:-HC-Stack}"
export TENANT_ID="${AZURE_TENANT_ID}"
export SUBSCRIPTION_ID="${AZURE_SUBSCRIPTION_ID}"
export LOCATION="${AZURE_LOCATION:-eastus}"
export TAGS="type=proxmox,host=ml110"
# Run onboarding script
./scripts/azure-arc/onboard-proxmox-hosts.sh
```
**On R630:**
```bash
# SSH to R630
ssh root@192.168.1.49
# Load environment variables
export RESOURCE_GROUP="${AZURE_RESOURCE_GROUP:-HC-Stack}"
export TENANT_ID="${AZURE_TENANT_ID}"
export SUBSCRIPTION_ID="${AZURE_SUBSCRIPTION_ID}"
export LOCATION="${AZURE_LOCATION:-eastus}"
export TAGS="type=proxmox,host=r630"
# Run onboarding script
./scripts/azure-arc/onboard-proxmox-hosts.sh
```
**Verify in Azure Portal:**
- Navigate to: Azure Portal → Azure Arc → Servers
- Both Proxmox hosts should appear as "Connected"
### 5. Create Service VMs
**Using Terraform (Recommended):**
```bash
cd terraform/proxmox
# Create terraform.tfvars
cat > terraform.tfvars <<EOF
proxmox_host = "192.168.1.206" # or 192.168.1.49
proxmox_username = "root@pam"
proxmox_password = "${PVE_ROOT_PASS}"
proxmox_node = "pve" # Adjust based on your node name
EOF
# Initialize and apply
terraform init
terraform plan
terraform apply
```
**Or manually via Proxmox Web UI:**
- Access: `https://192.168.1.206:8006` or `https://192.168.1.49:8006`
- Create VMs for:
- Kubernetes (K3s)
- Cloudflare Tunnel
- Git Server (Gitea/GitLab)
- Observability (Prometheus/Grafana)
### 6. Cloudflare Tunnel Setup
**Prerequisites:**
- Cloudflare account with Zero Trust enabled
- Ubuntu VM deployed in VLAN 99 (or appropriate network)
**Setup Tunnel:**
```bash
# On Ubuntu Tunnel VM
# Install cloudflared
curl -L https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-amd64 -o /usr/local/bin/cloudflared
chmod +x /usr/local/bin/cloudflared
# Authenticate
cloudflared tunnel login
# Create tunnel
cloudflared tunnel create azure-stack-hci
# Configure tunnel (see docs/cloudflare-integration.md)
```
**Reference:**
- [Cloudflare Integration Guide](docs/cloudflare-integration.md)
### 7. Kubernetes (K3s) Deployment
**On K3s VM:**
```bash
# Install K3s
./infrastructure/kubernetes/k3s-install.sh
# Onboard to Azure Arc
export RESOURCE_GROUP="${AZURE_RESOURCE_GROUP:-HC-Stack}"
export TENANT_ID="${AZURE_TENANT_ID}"
export SUBSCRIPTION_ID="${AZURE_SUBSCRIPTION_ID}"
export LOCATION="${AZURE_LOCATION:-eastus}"
export CLUSTER_NAME=proxmox-k3s-cluster
./infrastructure/kubernetes/arc-onboard-k8s.sh
```
### 8. GitOps Setup
**Deploy Git Server:**
**Option A: Gitea (Recommended for small deployments):**
```bash
./infrastructure/gitops/gitea-deploy.sh
```
**Option B: GitLab CE:**
```bash
./infrastructure/gitops/gitlab-deploy.sh
```
**Configure GitOps:**
1. Create Git repository in your Git server
2. Copy `gitops/` directory to repository
3. Configure GitOps in Azure Portal or using Flux CLI
### 9. Security Hardening
**Create RBAC Accounts for Proxmox:**
```bash
# Follow the guide
cat docs/security/proxmox-rbac.md
# Create service accounts
# Create operator accounts
# Generate API tokens
# Replace root usage in automation
```
**Reference:**
- [Proxmox RBAC Guide](docs/security/proxmox-rbac.md)
### 10. Monitoring and Observability
**Deploy Monitoring Stack:**
```bash
# Deploy via GitOps or manually
helm install prometheus ./gitops/apps/prometheus -n monitoring
helm install grafana ./gitops/apps/grafana -n monitoring
```
**Configure Azure Monitor:**
- Enable Log Analytics workspace
- Configure data collection rules
- Set up alerting
## 📋 Detailed Checklists
For comprehensive step-by-step instructions, refer to:
1. **[Bring-Up Checklist](docs/bring-up-checklist.md)** - Complete day-one installation guide
2. **[Deployment Guide](docs/deployment-guide.md)** - Detailed deployment phases
3. **[Azure Arc Onboarding](docs/azure-arc-onboarding.md)** - Azure integration steps
4. **[Cloudflare Integration](docs/cloudflare-integration.md)** - Secure external access
## 🔧 Useful Commands
**Test Connections:**
```bash
# Test Proxmox connections
./scripts/utils/test-proxmox-connection.sh
# Check prerequisites
./scripts/utils/prerequisites-check.sh
```
**Verify Configuration:**
```bash
# Check .env file
cat .env | grep -v "^#" | grep -v "^$"
# Verify Azure connection
az account show
# Check Proxmox cluster (from Proxmox host)
pvecm status
```
**Load Environment Variables:**
```bash
# Source .env file
source <(grep -v '^#' .env | grep -v '^$' | sed 's/#.*$//' | sed 's/^[[:space:]]*//;s/[[:space:]]*$//' | grep '=')
```
## 🚨 Troubleshooting
**If Proxmox connection fails:**
- Verify internal IPs are correct in `.env`
- Check firewall rules for port 8006
- Verify Proxmox services are running
- Test web UI access in browser
**If Azure Arc onboarding fails:**
- Verify Azure CLI is authenticated: `az login`
- Check network connectivity (outbound HTTPS 443)
- Verify resource group exists
- Review agent logs: `journalctl -u azcmagent`
**If scripts fail:**
- Ensure `.env` file is properly configured
- Check script permissions: `chmod +x scripts/**/*.sh`
- Verify all prerequisites are installed
## 📚 Documentation Reference
- [Complete Architecture](docs/complete-architecture.md)
- [Network Topology](docs/network-topology.md)
- [Hardware BOM](docs/hardware-bom.md)
- [PCIe Allocation](docs/pcie-allocation.md)
- [Runbooks](docs/runbooks/)
## 🎯 Success Criteria
You'll know you're ready for the next phase when:
- [x] Both Proxmox servers are accessible and tested
- [ ] Azure credentials configured and verified
- [ ] Cloudflare credentials configured
- [ ] Azure resource group created
- [ ] Proxmox cluster configured (if applicable)
- [ ] Azure Arc agents installed on Proxmox hosts
- [ ] Service VMs created
- [ ] Cloudflare Tunnel configured
- [ ] Kubernetes cluster deployed
- [ ] GitOps repository configured
---
**Current Status**: Environment configuration complete, ready for Azure Arc onboarding and service deployment.
**Recommended Next Action**: Complete Azure and Cloudflare credential configuration, then proceed with Azure Arc onboarding.

101
docs/temporary/PROGRESS_REPORT.md Normal file
View File

@@ -0,0 +1,101 @@
# Deployment Progress Report
Generated: $(date)
## Overall Status
### VM Infrastructure
- ✅ All 4 VMs created via Proxmox API
- ✅ VMs configured with network, disk, ISO
- ✅ Boot order fixed (CD-ROM first)
- ⏳ VMs running (Ubuntu installation in progress)
### Automation Scripts
- ✅ Complete task automation script created
- ✅ VM readiness checker created
- ✅ Monitoring script created
- ⏳ Waiting for VMs to be SSH-ready
## VM Status
| VM ID | Name | IP Address | Status | SSH Ready | Services |
|-------|------|------------|--------|-----------|----------|
| 100 | cloudflare-tunnel | 192.168.1.60 | Running | ⏳ | ⏳ |
| 101 | k3s-master | 192.168.1.188 | Running | ⏳ | ⏳ |
| 102 | git-server | 192.168.1.121 | Running | ⏳ | ⏳ |
| 103 | observability | 192.168.1.82 | Running | ⏳ | ⏳ |
## Completed Tasks
### Infrastructure Setup
- ✅ Environment configuration (.env files)
- ✅ Documentation updated
- ✅ VM creation scripts
- ✅ Boot configuration fixes
- ✅ Guest agent setup scripts
- ✅ Service installation scripts
### VM Creation
- ✅ VM 100: cloudflare-tunnel (40GB disk)
- ✅ VM 101: k3s-master (80GB disk)
- ✅ VM 102: git-server (100GB disk)
- ✅ VM 103: observability (200GB disk)
## Pending Tasks
### Service Installation (Automated - Waiting for SSH)
- ⏳ Install QEMU Guest Agent on all VMs
- ⏳ Install Cloudflare Tunnel (VM 100)
- ⏳ Install K3s (VM 101)
- ⏳ Install Gitea (VM 102)
- ⏳ Install Prometheus + Grafana (VM 103)
### Manual Configuration (After Installation)
- ⏸️ Configure Cloudflare Tunnel authentication
- ⏸️ Complete Gitea initial setup
- ⏸️ Change Grafana default password
- ⏸️ Deploy K3s namespaces and services
## Next Steps
1. **Wait for Ubuntu installation to complete** on all VMs
2. **Check VM readiness:**
```bash
./scripts/check-vm-readiness.sh
```
3. **Run complete automation** (or let monitoring script do it):
```bash
./scripts/complete-all-vm-tasks.sh
```
4. **Verify services** are running
5. **Complete manual configuration** steps
## Monitoring
The monitoring script (`scripts/monitor-and-complete.sh`) is set up to:
- Check VM readiness every 30 seconds
- Automatically run complete tasks when VMs are ready
- Wait up to 1 hour for VMs to become ready
## Estimated Timeline
- **VM Installation**: 15-30 minutes (in progress)
- **Task Automation**: 10-20 minutes (once SSH ready)
- **Manual Configuration**: 30-60 minutes (after automation)
## Troubleshooting
If VMs are not becoming ready:
1. Check Proxmox console for installation progress
2. Verify network connectivity
3. Check if Ubuntu installation completed
4. Verify SSH service is running on VMs
## Scripts Available
- `scripts/check-vm-readiness.sh` - Check if VMs are ready
- `scripts/complete-all-vm-tasks.sh` - Complete all tasks
- `scripts/monitor-and-complete.sh` - Auto-monitor and complete
- `scripts/setup-guest-agent.sh` - Install guest agents
- `scripts/apply-install-scripts.sh` - Apply service scripts

55
docs/temporary/PROXMOX_SUBSCRIPTION_INFO.md Normal file
View File

@@ -0,0 +1,55 @@
# Proxmox Subscription Notice - Information
## What You're Seeing
The message "You do not have a valid subscription for this server" is a standard informational notice in Proxmox VE.
## Important: This Does NOT Block Functionality
**Proxmox VE Community Edition is FREE and fully functional**
**All features work normally**
**No limitations on functionality**
## What Works Without Subscription
- ✅ Create and manage VMs
- ✅ Create templates
- ✅ Use all storage features
- ✅ Network configuration
- ✅ Clustering (with limitations)
- ✅ All API access
- ✅ Everything you need for this project
## What Subscription Provides (Optional)
- Enterprise support
- Access to enterprise repository (with latest updates)
- Priority technical support
- Commercial license
## For This Project
**You don't need a subscription.** The free Community Edition is perfect for:
- Home labs
- Development environments
- Learning
- Small to medium deployments
## Action Required
**None!** Just:
1. Dismiss/close the subscription notice
2. Continue with your work
3. All features work normally
## Continue With Template Creation
The subscription notice doesn't affect:
- Adding disks
- Creating VMs
- Converting to templates
- Any functionality
Proceed normally with the template creation process!

133
docs/temporary/QUICK_DEPLOY.md Normal file
View File

@@ -0,0 +1,133 @@
# Quick Deploy - Without Azure
## Immediate Next Steps (In Order)
### Step 1: Verify Proxmox Cluster (5 minutes)
```bash
# Test connections
./scripts/utils/test-proxmox-connection.sh
# Check cluster status (on Proxmox hosts)
ssh root@192.168.1.206 "pvecm status"
ssh root@192.168.1.49 "pvecm status"
```
### Step 2: Create First VM - Cloudflare Tunnel (15 minutes)
**Using Proxmox Web UI:**
1. Access: `https://192.168.1.206:8006`
2. Create VM:
- Name: `cloudflare-tunnel`
- OS: Ubuntu 22.04 LTS
- CPU: 2 cores
- RAM: 4GB
- Disk: 40GB
- Network: vmbr0 (or VLAN 99 if configured)
- IP: 192.168.1.60
**Or using Terraform:**
```bash
cd terraform/proxmox
# Edit terraform.tfvars with your values
terraform init
terraform plan
terraform apply
```
### Step 3: Configure Cloudflare Tunnel (10 minutes)
**On Cloudflare Tunnel VM:**
```bash
# SSH to VM
ssh ubuntu@192.168.1.60
# Install cloudflared
curl -L https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-amd64 -o /usr/local/bin/cloudflared
chmod +x /usr/local/bin/cloudflared
# Load tunnel token from .env (copy from your local machine)
# Or set manually:
export TUNNEL_TOKEN="sRwHkwQO5HfD6aK0ZzdV8XHsAyG_DLe_KCjv2bRP"
# Quick start with tunnel token (simplest method)
sudo cloudflared service install $TUNNEL_TOKEN
# Or configure manually (see DEPLOYMENT_WITHOUT_AZURE.md)
```
### Step 4: Create K3s VM (10 minutes)
**Using Proxmox Web UI:**
1. Create VM:
- Name: `k3s-master`
- OS: Ubuntu 22.04 LTS
- CPU: 4 cores
- RAM: 8GB
- Disk: 80GB
- IP: 192.168.1.188
**Install K3s:**
```bash
ssh ubuntu@192.168.1.188
curl -sfL https://get.k3s.io | sh -
sudo k3s kubectl get nodes
```
### Step 5: Create Git Server VM (10 minutes)
**Using Proxmox Web UI:**
1. Create VM:
- Name: `git-server`
- OS: Ubuntu 22.04 LTS
- CPU: 4 cores
- RAM: 8GB
- Disk: 100GB
- IP: 192.168.1.121
**Deploy Gitea:**
```bash
ssh ubuntu@192.168.1.121
docker run -d --name=gitea \
-p 3000:3000 \
-p 2222:22 \
-v gitea_data:/data \
gitea/gitea:latest
```
## Quick Commands Reference
**Test Connections:**
```bash
./scripts/utils/test-proxmox-connection.sh
./scripts/utils/test-cloudflare-connection.sh
```
**Create VMs with Terraform:**
```bash
cd terraform/proxmox
terraform init
terraform plan
terraform apply
```
**Deploy Services:**
```bash
# Kubernetes services
kubectl apply -f gitops/infrastructure/
# Blockchain services
helm install besu ./gitops/apps/besu -n blockchain
```
## Estimated Timeline
- **Day 1**: Proxmox cluster, Cloudflare Tunnel, K3s
- **Day 2**: Git server, observability, base services
- **Day 3**: HC Stack services, monitoring, testing
## Full Guide
See [DEPLOYMENT_WITHOUT_AZURE.md](DEPLOYMENT_WITHOUT_AZURE.md) for complete step-by-step instructions.

125
docs/temporary/QUICK_START.md Normal file
View File

@@ -0,0 +1,125 @@
# Quick Start Guide
## Current Status
**Ready to Deploy**
- Proxmox connections verified (both servers)
- Environment variables configured
- Setup scripts created
- Terraform configuration ready
## Immediate Next Steps
### 1. Create Service VMs
**Option A: Proxmox Web UI (Recommended)**
- Access: https://192.168.1.206:8006 or https://192.168.1.49:8006
- See `CREATE_VMS.md` for detailed instructions
**Option B: Terraform**
```bash
cd terraform/proxmox
terraform init
terraform plan
terraform apply
```
### 2. Install OS on VMs
For each VM:
1. Boot from Ubuntu 22.04 LTS ISO
2. Complete installation
3. Configure static IP addresses:
- Cloudflare Tunnel: 192.168.1.60
- K3s Master: 192.168.1.188
- Git Server: 192.168.1.121
- Observability: 192.168.1.82
### 3. Run Setup Scripts
**On Cloudflare Tunnel VM:**
```bash
# Copy script to VM
scp scripts/setup-cloudflare-tunnel.sh user@192.168.1.60:/tmp/
# SSH to VM and run
ssh user@192.168.1.60
sudo bash /tmp/setup-cloudflare-tunnel.sh
```
**On K3s VM:**
```bash
# Copy script to VM
scp scripts/setup-k3s.sh user@192.168.1.188:/tmp/
# SSH to VM and run
ssh user@192.168.1.188
sudo bash /tmp/setup-k3s.sh
```
## Service VM Specifications
| VM Name | VM ID | IP Address | CPU | RAM | Disk | Purpose |
|---------|-------|------------|-----|-----|------|---------|
| cloudflare-tunnel | 100 | 192.168.1.60 | 2 | 4GB | 40GB | Cloudflare Tunnel |
| k3s-master | 101 | 192.168.1.188 | 4 | 8GB | 80GB | Kubernetes |
| git-server | 102 | 192.168.1.121 | 4 | 8GB | 100GB | Git Server |
| observability | 103 | 192.168.1.82 | 4 | 8GB | 200GB | Monitoring |
## Connection Information
### Proxmox
- **ML110**: https://192.168.1.206:8006
- **R630**: https://192.168.1.49:8006
- **Username**: root@pam
- **Password**: (from `.env` file: `PVE_ROOT_PASS`)
### Cloudflare
- **Dashboard**: https://dash.cloudflare.com
- **Zero Trust**: https://one.dash.cloudflare.com
- **Tunnel Token**: (from `.env` file: `CLOUDFLARE_TUNNEL_TOKEN`)
## Testing Connections
```bash
# Test Proxmox
./scripts/utils/test-proxmox-connection.sh
# Test Cloudflare (if API key configured)
./scripts/utils/test-cloudflare-connection.sh
```
## Documentation
- **CREATE_VMS.md** - Detailed VM creation guide
- **DEPLOYMENT_WITHOUT_AZURE.md** - Complete deployment plan
- **docs/cloudflare-integration.md** - Cloudflare setup details
- **docs/deployment-guide.md** - General deployment guide
## Troubleshooting
### Proxmox Connection Issues
- Verify IP addresses in `.env` file
- Check network connectivity: `ping 192.168.1.206`
- Accept self-signed certificate in browser
### VM Creation Issues
- Ensure sufficient storage on Proxmox host
- Check VM ID availability (use `./scripts/proxmox/create-service-vms.sh`)
- Verify network bridge configuration
### Cloudflare Tunnel Issues
- Verify tunnel token in `.env`
- Check DNS records in Cloudflare Dashboard
- Review tunnel logs: `journalctl -u cloudflared -f`
## Next Steps After VM Creation
1. ✅ Create VMs (this step)
2. ⏭️ Install OS and configure networking
3. ⏭️ Run setup scripts
4. ⏭️ Configure Cloudflare Tunnel
5. ⏭️ Deploy Kubernetes services
6. ⏭️ Set up GitOps
See `DEPLOYMENT_WITHOUT_AZURE.md` for complete workflow.

105
docs/temporary/QUICK_TEMPLATE_GUIDE.md Normal file
View File

@@ -0,0 +1,105 @@
# Quick Template Creation Guide
## ✅ Step 1: Cloud Image Downloaded
- Location: `./downloads/ubuntu-24.04-server-cloudimg-amd64.img`
- Size: 597 MB
- Status: Ready for upload
## 📤 Step 2: Upload to Proxmox (2-3 minutes)
1. **Open Proxmox Web UI:**
- https://192.168.1.206:8006
- Login with root credentials
2. **Go to Storage:**
- Click: **Datacenter****pve****Storage****local**
- Click **"Upload"** button (top right)
3. **Upload Image:**
- Click **"Select File"**
- Navigate to: `/home/intlc/projects/loc_az_hci/downloads/ubuntu-24.04-server-cloudimg-amd64.img`
- Click **"Upload"**
- Wait for completion (progress bar will show)
## 🖥️ Step 3: Create VM from Image (5 minutes)
1. **Click "Create VM"** (top right, purple button)
2. **General:**
- VM ID: **9000**
- Name: **ubuntu-24.04-cloudinit**
- Click **"Next"**
3. **OS:**
- Select: **"Do not use any media"**
- Click **"Next"**
4. **System:**
- Keep defaults
- Click **"Next"**
5. **Disks:**
- **Delete the default disk** (click X)
- Click **"Add"** → **"Hard Disk"**
- Storage: **local**
- **Import from:** Select `ubuntu-24.04-server-cloudimg-amd64.img` from dropdown
- Disk size: **20GB**
- Click **"Add"**
- Click **"Next"**
6. **CPU:**
- Cores: **2**
- Click **"Next"**
7. **Memory:**
- Memory: **2048** MB
- Click **"Next"**
8. **Network:**
- Bridge: **vmbr0**
- Model: **VirtIO**
- Click **"Next"**
9. **Confirm:**
- Review settings
- Click **"Finish"**
## ⚙️ Step 4: Configure Cloud-Init (1 minute)
1. **Select VM 9000** in left panel
2. **Go to "Options" tab**
3. **Click "Cloud-Init"**
4. **Configure:**
- **User:** `ubuntu`
- **Password:** (leave empty)
- **SSH Public Keys:** Paste this key:
```
ssh-rsa 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 defi@defi-oracle.io
```
- Click **"OK"**
## 🔄 Step 5: Convert to Template (1 minute)
1. **Right-click VM 9000** in left panel
2. **Select "Convert to Template"**
3. **Confirm**
4. **Wait** for conversion (1-2 minutes)
## ✅ Done!
Template is ready. Now run:
```bash
./scripts/recreate-vms-from-template.sh
```
This will:
- Destroy existing VMs (100, 101, 102, 103)
- Recreate them from template
- Auto-configure network and Cloud-Init
- Start all VMs
**Total time:** ~10-15 minutes for template creation, then automated VM recreation!

44
docs/temporary/README.md Normal file
View File

@@ -0,0 +1,44 @@
# Temporary Files Archive
This directory contains temporary files, status reports, and debug instructions that were moved from the project root during cleanup.
## Contents
### Status Reports
- `AZURE_SUBSCRIPTION_STATUS.md` - Azure subscription status information
- `COMPLETE_STATUS.md` - Deployment completion status
- `COMPLETE_TASKS_STATUS.md` - Task completion status
- `DEPLOYMENT_BLOCKERS.md` - Deployment blockers documentation
- `DEPLOYMENT_COMPLETE.md` - Deployment completion report
- `DEPLOYMENT_PROGRESS.md` - Deployment progress tracking
- `DEPLOYMENT_STATUS.md` - Deployment status report
- `PROGRESS_REPORT.md` - General progress report
- `VM_STATUS_REPORT.md` - VM status report
### Temporary Instructions
- `ADD_DISK_FROM_IMAGE.md` - Temporary instruction for adding disk
- `ATTACH_ISO_FIRST.md` - Temporary instruction for ISO attachment
- `FINAL_INSTRUCTIONS.md` - Final instructions (temporary)
- `NEXT_STEPS.md` - Next steps notes (temporary)
### Troubleshooting Guides
- `BOOT_FIX_INSTRUCTIONS.md` - Boot fix instructions
- `BOOT_ORDER_ALTERNATIVE.md` - Boot order alternative solution
- `BOOT_ORDER_WORKAROUND.md` - Boot order workaround
- `FIX_BOOT_NOW.md` - Boot fix guide
- `FIX_FLOPPY_BOOT.md` - Floppy boot fix guide
- `FIX_VM_9000_NOW.md` - VM 9000 fix guide
- `MANUAL_FLOPPY_FIX.md` - Manual floppy fix guide
### Test Results
- `CONNECTION_TEST_RESULTS.md` - Connection test results
### Information Files
- `PROXMOX_SUBSCRIPTION_INFO.md` - Proxmox subscription information
- `COMPLETE_DEPLOYMENT.md` - Deployment completion documentation
- `COMPLETE_DISK_ADD.md` - Disk addition completion
## Note
These files are kept for historical reference. Some may contain useful troubleshooting information that could be consolidated into main documentation in the future.

108
docs/temporary/TEMPLATE_CREATION_STEPS.md Normal file
View File

@@ -0,0 +1,108 @@
# Quick Template Creation - Follow These Steps
## Step 1: Download Cloud Image (Already Done)
✅ Cloud image download script is ready
## Step 2: Upload to Proxmox
1. **Open Proxmox Web UI:**
- URL: https://192.168.1.206:8006
- Login with root credentials
2. **Navigate to Storage:**
- Click: **Datacenter****pve****Storage****local**
- Click **"Upload"** button (top right)
3. **Upload Image:**
- Click **"Select File"**
- Navigate to: `/tmp/ubuntu-24.04-server-cloudimg-amd64.img`
- Or if downloaded to project: `./downloads/ubuntu-24.04-server-cloudimg-amd64.img`
- Click **"Upload"**
- Wait for upload to complete (2-3 minutes for ~2GB file)
## Step 3: Create VM from Image
1. **Click "Create VM"** (top right, purple button)
2. **General Tab:**
- VM ID: **9000**
- Name: **ubuntu-24.04-cloudinit**
- Click **"Next"**
3. **OS Tab:**
- Select: **"Do not use any media"**
- Click **"Next"**
4. **System Tab:**
- Keep defaults (Q35, UEFI is fine)
- Click **"Next"**
5. **Disks Tab:**
- **Delete the default disk** (click X on the disk)
- Click **"Add"** → **"Hard Disk"**
- Storage: **local**
- **Import from:** Select the uploaded `.img` file from dropdown
- Disk size: **20GB** (minimum, will be resized per VM later)
- Click **"Add"**
- Click **"Next"**
6. **CPU Tab:**
- Cores: **2**
- Click **"Next"**
7. **Memory Tab:**
- Memory: **2048** MB
- Click **"Next"**
8. **Network Tab:**
- Bridge: **vmbr0**
- Model: **VirtIO**
- Click **"Next"**
9. **Confirm Tab:**
- Review settings
- Click **"Finish"**
## Step 4: Configure Cloud-Init
1. **Select VM 9000** in the left panel
2. **Go to "Options" tab**
3. **Click "Cloud-Init"** (or "QEMU Guest Agent" if Cloud-Init not shown)
4. **Configure:**
- **User:** `ubuntu`
- **Password:** (leave empty - we'll use SSH keys)
- **SSH Public Keys:** Paste your public key:
```bash
cat ~/.ssh/id_rsa.pub
```
Copy the output and paste into the SSH Public Keys field
- Click **"OK"**
## Step 5: Convert to Template
1. **Right-click on VM 9000** in the left panel
2. **Select "Convert to Template"**
3. **Confirm** the conversion
4. **Wait** for conversion to complete (1-2 minutes)
## Done!
Template is now ready. You can proceed with:
```bash
./scripts/recreate-vms-from-template.sh
```
## Quick Reference
- **Template ID:** 9000
- **Template Name:** ubuntu-24.04-cloudinit
- **Cloud Image:** ubuntu-24.04-server-cloudimg-amd64.img
- **Storage:** local
- **Network:** vmbr0

210
docs/temporary/TROUBLESHOOTING_VM_9000.md Normal file
View File

@@ -0,0 +1,210 @@
# Troubleshooting VM 9000 Creation - I/O Errors
## Error Summary
The VM creation failed with multiple I/O errors when reading from the source image:
- `qemu-img: error while reading at byte 130023424: Input/output error`
- Transfer stopped at ~23% (138.0 MiB of 597.2 MiB)
## Root Causes
1. **Corrupted source image file** - The uploaded image may be damaged
2. **Disk I/O issues on Proxmox host** - Storage problems on the Proxmox node
3. **File location mismatch** - File may be in wrong location or format
4. **Incomplete upload** - File transfer may have been interrupted
## Diagnostic Steps
### 1. Check File Integrity on Proxmox Host
SSH into your Proxmox host and run:
```bash
# Check if file exists and its size
ls -lh /var/lib/vz/import/ubuntu-24.04-server-cloudimg-amd64.img.raw
ls -lh /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
# Check file integrity (if file is readable)
file /var/lib/vz/import/ubuntu-24.04-server-cloudimg-amd64.img.raw
file /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
# Try to read file metadata
qemu-img info /var/lib/vz/import/ubuntu-24.04-server-cloudimg-amd64.img.raw 2>&1
qemu-img info /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img 2>&1
```
### 2. Check Disk Health
```bash
# Check disk space
df -h /var/lib/vz
# Check for disk errors
dmesg | grep -i error | tail -20
dmesg | grep -i "i/o error" | tail -20
# Check storage pool health
pvesm status
lvdisplay | grep -A 10 "pve"
```
### 3. Verify File Checksum (if original available)
If you have the original file, compare checksums:
```bash
# On your local machine (if you have the original)
sha256sum ubuntu-24.04-server-cloudimg-amd64.img
# On Proxmox host
sha256sum /var/lib/vz/import/ubuntu-24.04-server-cloudimg-amd64.img.raw
sha256sum /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
```
## Quick Fix Script
**Automated fix (recommended):**
```bash
./scripts/fix-corrupted-image.sh
```
This script will:
1. Verify your local image (or download if missing)
2. Remove corrupted files on Proxmox host
3. Upload a fresh copy via SCP
4. Verify the uploaded image
## Solutions
### Solution 1: Re-upload the Image (Recommended)
1. **Delete the corrupted file** (on Proxmox host):
```bash
rm -f /var/lib/vz/import/ubuntu-24.04-server-cloudimg-amd64.img.raw
rm -f /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
```
2. **Re-download the image** (on your local machine):
```bash
cd /home/intlc/projects/loc_az_hci
./scripts/download-ubuntu-cloud-image.sh 24.04
```
3. **Upload via Proxmox Web UI**:
- Go to: **Datacenter****local****Content****Upload**
- Select: `downloads/ubuntu-24.04-server-cloudimg-amd64.img`
- Wait for upload to complete
- Verify file appears in storage
4. **Verify upload** (on Proxmox host):
```bash
qemu-img info /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
```
5. **Retry VM creation** using the steps in `CREATE_VM_9000_STEPS.md`
### Solution 2: Use API/CLI to Upload (Alternative)
If Web UI upload fails, use command line:
```bash
# On Proxmox host, copy file to correct location
scp ubuntu-24.04-server-cloudimg-amd64.img root@<proxmox-ip>:/var/lib/vz/template/iso/
# Or use Proxmox API (from local machine with API access)
# See scripts/create-template-via-api.sh
```
### Solution 3: Download Directly on Proxmox Host
```bash
# SSH into Proxmox host
cd /var/lib/vz/template/iso
# Download directly
wget https://cloud-images.ubuntu.com/releases/24.04/release/ubuntu-24.04-server-cloudimg-amd64.img
# Verify
qemu-img info ubuntu-24.04-server-cloudimg-amd64.img
```
### Solution 4: Use Different Storage Location
If `local` storage has issues, try a different storage:
1. **Check available storage**:
```bash
pvesm status
```
2. **Upload to different storage** (e.g., `local-lvm` or NFS)
3. **Create VM using different storage** in the Disks tab
### Solution 5: Check and Fix Storage Issues
If disk I/O errors persist:
```bash
# Check LVM status
vgdisplay
lvdisplay
# Check for filesystem errors
fsck -n /dev/pve/root # Dry run, don't fix yet
# If errors found, schedule filesystem check on next reboot
touch /forcefsck
reboot
```
## Prevention
1. **Always verify uploads**: Check file size and integrity after upload
2. **Use checksums**: Compare SHA256 checksums before and after upload
3. **Monitor disk health**: Regularly check `dmesg` for I/O errors
4. **Use reliable storage**: Prefer local-lvm or NFS over local if available
## Alternative: Create VM from ISO Instead
If cloud image continues to fail, use ISO installation method:
1. Download Ubuntu Server ISO
2. Upload ISO to Proxmox
3. Create VM with ISO attached
4. Install Ubuntu manually
5. Configure Cloud-Init
6. Convert to template
See `scripts/create-vms-from-iso.sh` for automation.
## Next Steps After Fix
Once the image is successfully uploaded and verified:
1. Follow `CREATE_VM_9000_STEPS.md` to create VM 9000
2. Configure Cloud-Init settings
3. Convert to template
4. Verify template works by cloning a test VM
## Verification Scripts
After fixing the issue, verify everything is working:
```bash
# Verify image integrity on Proxmox host
./scripts/verify-proxmox-image.sh
# Or manually check (SSH into Proxmox)
qemu-img info /var/lib/vz/template/iso/ubuntu-24.04-server-cloudimg-amd64.img
```
## Related Files
- `CREATE_VM_9000_STEPS.md` - Main creation steps
- `scripts/fix-corrupted-image.sh` - **Automated fix script (use this first!)**
- `scripts/verify-proxmox-image.sh` - Image verification script
- `scripts/download-ubuntu-cloud-image.sh` - Download script
- `scripts/create-proxmox-template.sh` - Template creation script
- `docs/runbooks/proxmox-operations.md` - General Proxmox operations

105
docs/temporary/UBUNTU_INSTALL_DISK_SELECTION.md Normal file
View File

@@ -0,0 +1,105 @@
# Ubuntu Installation: Disk Selection Guide
## Problem
Ubuntu installer is trying to use more disk space than the VM's allocated disk, or showing multiple storage devices.
## Solution: Select Only the Correct Disk
During Ubuntu installation, you need to **manually select only the VM's hard disk** and ignore the CD-ROM/ISO.
### Step-by-Step: Disk Selection
1. **During Ubuntu Installation:**
- When you reach **"Storage configuration"** or **"Installation type"**
- Select **"Custom storage layout"** or **"Manual"**
2. **Identify the Correct Disk:**
- Look for disk with size matching your VM:
- **VM 100 (cloudflare-tunnel)**: ~40GB disk
- **VM 101 (k3s-master)**: ~80GB disk
- **VM 102 (git-server)**: ~100GB disk
- **VM 103 (observability)**: ~200GB disk
- **Ignore the CD-ROM/ISO** (usually shows as ~3GB or "CD/DVD")
3. **Select Only the Hard Disk:**
- Click on the **hard disk** (not the CD-ROM)
- The disk should show as:
- **Device**: `/dev/sda` or `/dev/vda` (SCSI/VirtIO)
- **Size**: Matches your VM's disk size
- **Type**: "SCSI disk" or "VirtIO Block Device"
4. **Partition the Disk:**
- Select the hard disk
- Click **"Add partition"** or **"Use entire disk"**
- Recommended: **"Use entire disk"** for simplicity
- Or create partitions:
- **EFI Boot**: 512MB (if UEFI)
- **Root (/)**: Rest of disk
- **Swap**: Optional (2-4GB)
5. **Continue Installation:**
- Review the partition layout
- Ensure only the hard disk is selected
- Click **"Done"** or **"Continue"**
### What to Ignore
-**CD/DVD drive** (ide2) - This is the Ubuntu ISO, NOT a disk
-**Any device showing ~3GB** - This is likely the ISO
-**Floppy drive** (if shown) - Ignore this
### Expected Disk Sizes
| VM | Disk Size | Device Name |
|----|-----------|-------------|
| VM 100 | 40GB | `/dev/sda` or `/dev/vda` |
| VM 101 | 80GB | `/dev/sda` or `/dev/vda` |
| VM 102 | 100GB | `/dev/sda` or `/dev/vda` |
| VM 103 | 200GB | `/dev/sda` or `/dev/vda` |
### Troubleshooting
**Installer shows "Not enough space":**
- You might have selected the CD-ROM instead of the hard disk
- Go back and select the larger disk (matches your VM size)
**Multiple disks shown:**
- Select only the disk matching your VM's size
- Ignore the CD-ROM (smaller, ~3GB)
**Can't find the correct disk:**
- Look for the largest disk (matches your VM size)
- Check device names: `/dev/sda` or `/dev/vda` for SCSI/VirtIO
### Quick Reference
**During Installation:**
1. **Storage Configuration****Custom/Manual**
2. **Select disk** matching your VM size (40GB, 80GB, 100GB, or 200GB)
3. **Ignore CD-ROM** (smaller, ~3GB)
4. **Use entire disk** or create partitions
5. **Continue** installation
### Visual Guide
```
Ubuntu Installer Storage Selection:
┌─────────────────────────────────────┐
│ Storage Devices │
├─────────────────────────────────────┤
│ ☐ CD/DVD Drive (ide2) │ ← IGNORE THIS
│ 3.2 GB - ubuntu-24.04.iso │
├─────────────────────────────────────┤
│ ☑ SCSI Disk (scsi0) │ ← SELECT THIS
│ 40 GB - local-lvm:vm-100-disk-0 │
└─────────────────────────────────────┘
```
## Summary
-**Select only the hard disk** (matches your VM size)
-**Ignore the CD-ROM** (ISO image, ~3GB)
-**Use entire disk** for simplicity
-**Continue** with installation

155
docs/temporary/VM_STATUS_REPORT.md Normal file
View File

@@ -0,0 +1,155 @@
# VM Status Report
## Current Status
### VM Creation: ✅ COMPLETED
All 4 VMs have been created and are running:
- ✅ cloudflare-tunnel (ID: 100) - Running
- ✅ k3s-master (ID: 101) - Running
- ✅ git-server (ID: 102) - Running
- ✅ observability (ID: 103) - Running
### Configuration Status: ⚠️ PARTIAL
**Issues Identified:**
- Network interfaces (net0) may need manual configuration
- Disk storage (scsi0) configured but may need verification
- ISO/CD-ROM (ide2) may need manual attachment
- Boot order needs verification
**Note:** Some Proxmox API parameter format issues prevent full automation. Manual verification via Proxmox Web UI is recommended.
### OS Installation: ❌ NOT STARTED
- VMs are created but Ubuntu 24.04 has not been installed yet
- VMs are not reachable via network (expected until OS is installed)
## Next Steps (In Order)
### Step 1: Verify VM Configuration via Proxmox Web UI
**Status:** ⏳ PENDING
1. Access Proxmox: https://192.168.1.206:8006
2. For each VM (100, 101, 102, 103):
- Open VM → Hardware
- Verify:
- Network device exists and is connected to vmbr0
- Hard disk exists with correct size
- CD/DVD drive has Ubuntu ISO attached
- Boot order is set to CD-ROM first
- Fix any missing configurations manually
### Step 2: Install Ubuntu 24.04 on Each VM
**Status:** ⏳ PENDING
1. For each VM:
- Open VM → Console
- Boot from Ubuntu ISO
- Complete installation:
- Use static IP addresses:
- VM 100: 192.168.1.60/24, gateway 192.168.1.254
- VM 101: 192.168.1.188/24, gateway 192.168.1.254
- VM 102: 192.168.1.121/24, gateway 192.168.1.254
- VM 103: 192.168.1.82/24, gateway 192.168.1.254
- Create user account (remember credentials for SSH)
- Complete installation
### Step 3: Verify OS Installation
**Status:** ⏳ PENDING
Run verification script:
```bash
./scripts/check-vm-status.sh
```
This will check:
- Network connectivity
- SSH availability
- Ubuntu installation verification
### Step 4: Run Setup Scripts (After OS Installation)
**Status:** ⏳ PENDING
Only proceed after Step 3 shows all VMs are ready.
For each VM:
1. Copy setup script to VM
2. SSH to VM
3. Run setup script with sudo
**Cloudflare Tunnel VM (192.168.1.60):**
```bash
scp scripts/setup-cloudflare-tunnel.sh user@192.168.1.60:/tmp/
ssh user@192.168.1.60
sudo bash /tmp/setup-cloudflare-tunnel.sh
```
**K3s VM (192.168.1.188):**
```bash
scp scripts/setup-k3s.sh user@192.168.1.188:/tmp/
ssh user@192.168.1.188
sudo bash /tmp/setup-k3s.sh
```
**Git Server VM (192.168.1.121):**
```bash
scp scripts/setup-git-server.sh user@192.168.1.121:/tmp/
ssh user@192.168.1.121
sudo bash /tmp/setup-git-server.sh
```
**Observability VM (192.168.1.82):**
```bash
scp scripts/setup-observability.sh user@192.168.1.82:/tmp/
ssh user@192.168.1.82
sudo bash /tmp/setup-observability.sh
```
## Verification Commands
### Check VM Status in Proxmox:
```bash
./scripts/check-vm-status.sh
```
### Check VM Configurations:
```bash
# Via Proxmox Web UI or API
# Access: https://192.168.1.206:8006
```
### Test VM Connectivity:
```bash
for ip in 192.168.1.60 192.168.1.188 192.168.1.121 192.168.1.82; do
ping -c 1 -W 2 $ip && echo "$ip: ✓ Reachable" || echo "$ip: ✗ Not reachable"
done
```
## Troubleshooting
### If VMs don't boot:
1. Check VM hardware configuration in Proxmox Web UI
2. Verify ISO is attached to CD/DVD drive
3. Check boot order (should be CD-ROM first)
4. Verify VM has sufficient resources
### If network configuration fails:
1. Manually configure network in Proxmox Web UI
2. Ensure network bridge (vmbr0) exists
3. Check VLAN configuration if needed
### If setup scripts fail:
1. Verify Ubuntu is fully installed
2. Check network connectivity
3. Ensure user has sudo privileges
4. Review script logs for specific errors
## Progress Tracking
- [x] VMs created
- [x] Configuration fixes attempted
- [ ] VM configurations verified manually
- [ ] Ubuntu installed on all VMs
- [ ] OS installation verified
- [ ] Setup scripts executed
- [ ] Services configured and running

261
docs/temporary/VM_TEMPLATE_SETUP_GUIDE.md Normal file
View File

@@ -0,0 +1,261 @@
# VM Template & Install Script Setup Guide
## Overview
This guide explains how to use Cloud-Init templates and automated install scripts for each VM.
## Architecture
### VM Configuration
| VM ID | Name | IP Address | Install Script | Purpose |
|-------|------|------------|-----------------|---------|
| 100 | cloudflare-tunnel | 192.168.1.60 | `setup-cloudflare-tunnel.sh` | Cloudflare Zero Trust Tunnel |
| 101 | k3s-master | 192.168.1.188 | `setup-k3s.sh` | Kubernetes (K3s) cluster |
| 102 | git-server | 192.168.1.121 | `setup-git-server.sh` | Gitea Git server |
| 103 | observability | 192.168.1.82 | `setup-observability.sh` | Prometheus + Grafana |
## Prerequisites
1. **Cloud-Init Template**: Ubuntu 24.04 Cloud-Init template in Proxmox
2. **SSH Key**: SSH key pair for accessing VMs
3. **Network**: VMs must be reachable on their assigned IPs
## Step 1: Create Cloud-Init Template
### Option A: Download Official Ubuntu Cloud Image
```bash
# Download Ubuntu 24.04 Cloud Image
./scripts/download-ubuntu-cloud-image.sh 24.04
# Upload to Proxmox and convert to template
# See: docs/proxmox-ubuntu-images.md
```
### Option B: Create Template from Installed VM
1. Install Ubuntu 24.04 from ISO on a VM
2. Install Cloud-Init: `sudo apt install cloud-init`
3. Configure Cloud-Init
4. Convert VM to template in Proxmox Web UI
## Step 2: Create VMs from Template
### Automated Method
```bash
# Set template name (if different from default)
export TEMPLATE_NAME="ubuntu-24.04-cloudinit"
# Create all VMs from template
./scripts/create-vms-from-template.sh
```
### Manual Method (Proxmox Web UI)
1. **Clone Template:**
- Proxmox Web UI → Template → Clone
- Set VM ID (100, 101, 102, 103)
- Set name (cloudflare-tunnel, k3s-master, etc.)
2. **Configure Cloud-Init:**
- Options tab → Cloud-Init
- Set IP address
- Set gateway
- Set DNS servers
- Set SSH keys
3. **Start VM:**
- VM will boot and configure automatically
## Step 3: Apply Install Scripts
### Automated Method
```bash
# Set SSH key path (if different)
export SSH_KEY="~/.ssh/id_rsa"
export SSH_USER="ubuntu"
# Apply install scripts to all VMs
./scripts/apply-install-scripts.sh
```
### Manual Method
For each VM:
1. **SSH to VM:**
```bash
ssh ubuntu@<VM_IP>
```
2. **Copy install script:**
```bash
scp scripts/setup-<service>.sh ubuntu@<VM_IP>:/tmp/
```
3. **Run install script:**
```bash
ssh ubuntu@<VM_IP>
sudo chmod +x /tmp/setup-<service>.sh
sudo /tmp/setup-<service>.sh
```
## Complete Automated Setup
Run the complete setup script:
```bash
./scripts/setup-vms-complete.sh
```
This script will:
1. Check for template
2. Create VMs from template
3. Wait for VMs to boot
4. Apply install scripts
## Install Scripts Details
### VM 100: Cloudflare Tunnel
**Script:** `scripts/setup-cloudflare-tunnel.sh`
**What it does:**
- Installs cloudflared
- Creates cloudflared user
- Sets up systemd service
- Creates configuration template
**Manual steps required:**
- Authenticate cloudflared: `cloudflared tunnel login`
- Create tunnel: `cloudflared tunnel create azure-stack-hci`
- Update config.yml with your domain
- Configure DNS records in Cloudflare
### VM 101: K3s Master
**Script:** `scripts/setup-k3s.sh`
**What it does:**
- Installs K3s Kubernetes
- Configures kubectl
- Sets up kubeconfig
**Next steps:**
- Create namespaces
- Deploy ingress controller
- Deploy cert-manager
- Deploy HC Stack services
### VM 102: Git Server (Gitea)
**Script:** `scripts/setup-git-server.sh`
**What it does:**
- Installs Gitea
- Creates Gitea user
- Sets up systemd service
- Creates initial configuration
**Next steps:**
- Complete initial setup via web UI
- Create GitOps repository
- Configure SSH keys
- Set up Flux GitOps
### VM 103: Observability
**Script:** `scripts/setup-observability.sh`
**What it does:**
- Installs Prometheus
- Installs Node Exporter
- Installs Grafana
- Creates systemd services
**Next steps:**
- Access Grafana (http://192.168.1.82:3000)
- Change default password
- Add Prometheus as data source
- Import dashboards
## Troubleshooting
### Template Not Found
**Error:** `Template not found`
**Solution:**
- Create template first (see Step 1)
- Verify template name matches `TEMPLATE_NAME` variable
### VM Not Reachable
**Error:** `VM not reachable`
**Solution:**
- Check VM is started
- Verify IP address configuration
- Check network connectivity
- Verify Cloud-Init completed
### SSH Connection Failed
**Error:** `SSH not available`
**Solution:**
- Wait longer for VM to boot (5-10 minutes)
- Check SSH service is running
- Verify SSH key is correct
- Check firewall rules
### Install Script Failed
**Error:** `Install script failed`
**Solution:**
- SSH to VM and check logs
- Run script manually to see errors
- Check script has execute permissions
- Verify network connectivity for downloads
## Verification
After setup, verify each service:
```bash
# VM 100: Cloudflare Tunnel
ssh ubuntu@192.168.1.60
sudo systemctl status cloudflared
# VM 101: K3s
ssh ubuntu@192.168.1.188
kubectl get nodes
# VM 102: Gitea
curl http://192.168.1.121:3000
# VM 103: Observability
curl http://192.168.1.82:9090 # Prometheus
curl http://192.168.1.82:3000 # Grafana
```
## Summary
1. **Create Cloud-Init template** (one-time)
2. **Create VMs from template** (automated or manual)
3. **Apply install scripts** (automated or manual)
4. **Verify services** are running
5. **Complete manual configuration** as needed
## Scripts Reference
- `scripts/create-vms-from-template.sh` - Create VMs with Cloud-Init
- `scripts/apply-install-scripts.sh` - Apply install scripts via SSH
- `scripts/setup-vms-complete.sh` - Complete automated setup
- `scripts/download-ubuntu-cloud-image.sh` - Download Cloud Image
- `scripts/create-proxmox-template.sh` - Template creation guide