This is a summary of steps to install Proxmox.
# nano /etc/chrony/chrony.conf
Add 'server 139.169.206.5 iburst' and 'server 198.122.144.26 iburst'
# systemctl restart chronyd
# journalctl --since -1h -u chrony
Checklist
Install an approved release of Ubuntu from an ISO file
> sudo nano /etc/ssh/sshd_config
change "PermitRootLogin without-password" to "PermitRootLogin yes"
> sudo apt install network-manager
> sudo nano /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg
Add the line
network: {config: disabled}
> sudo nano /etc/netplan/50-cloud-init.yaml
Edit the file with static IP settings:
network:
version: 2
ethernets:
ens18:
dhcp4: false
dhcp6: false
addresses:
- 139.169.156.11/24
routes:
- to: default
via: 139.169.156.1
nameservers:
addresses:
- 139.169.16.150
- 139.169.31.2
> sudo nano /etc/sysctl.conf
Insert the following lines at the bottom of the file:
# Disable IPv6
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
> sudo sysctl -p
> sudo apt install nano > sudo apt install nfs-common > sudo apt install net-tools > sudo apt install nmap
> sudo curl -o setup-repos.sh https://raw.githubusercontent.com/webmin/webmin/master/setup-repos.sh > sudo sh setup-repos.sh > sudo apt install --install-recommends webmin > systemctl status webmin.service
>
> sudo apt install ntp > sudo nano /etc/ntpsec/ntp.conf server 139.169.206.5 prefer (Remove other server & pool sources) > ntpq -p
> sudo apt install qemu-guest-agent > sudo systemctl enable qemu-guest-agent Shutdown the VM Under VM options, enable 'QEMU Guest Agent' Start the VM > systemctl status qemu-guest-agent.service
>
>
Create a CSR: >
Do NOT install Nagios using repositories. It's unsupported!
> su
>
>
> sudo apt install mumble-server
> sudo dpkg-reconfigure mumble-server
> sudo nano /etc/mumble-server.ini
users=100
welcometext="<br />Welcome to the CTSD <b>Murmur</b> server.<br /><br />By accessing and using this information system, you acknowledge and consent to the following:<br /> You are accessing a <b>U.S. Government information system</b>, which includes:<br /> (1) this computer<br /> (2) this computer network<br /> (3) all computers connected to this network including end user systems<br /> (4) all devices and storage media attached to this network or to any computer on this network<br /> (5) cloud and remote information services.<br /><br />This information system is provided for U.S. Government-authorized use only.<br />You have no reasonable expectation of privacy regarding any communication transmitted through or data stored on this information system.<br />At any time, and for any lawful purpose, the U.S. Government may monitor, intercept, search, and seize any communication or data transiting, stored on, or traveling to or from this information system.<br />You are NOT authorized to process classified information on this information system.<br />Unauthorized or improper use of this system may result in suspension or loss of access privileges, disciplinary action, and civil and/or criminal penalties.<br />"
>
REG ADD HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\system /v LocalAccountTokenFilterPolicy /t REG_DWORD /d 1 /f
Install Debian 12 from an ISO file
> sudo nano /etc/ssh/sshd_config
change "PermitRootLogin without-password" to "PermitRootLogin yes"
> sudo nano /etc/network/interfaces
# The primary network interface
allow-hotplug ens18
auto ens18
iface ens18 inet static
address 192.168.10.103
netmask 255.255.255.0
gateway 192.168.10.1
dns-nameservers 192.168.10.107 192.168.10.1
> mkdir /home/username/noip > cd /home/username/noip > wget http://www.no-ip.com/client/linux/noip-duc-linux.tar.gz > tar vzxf noip-duc-linux.tar.gz > cd noip-xxx > sudo make > sudo make install > sudo noip2 -S To reconfigure the client: /usr/local/bin/noip2 -C