I own a server at Online.net which now runs VMware ESXi free edition. The thing is VMs have to access the Wild Wild Web and provide public services while still being protected. So let’s configure OpenBSD to do so. Continue reading “Protect the ESXi virtual machines with OpenBSD”
On my new OpenBSD servers, I decided to use memory filesystem for /tmp. After looking at old servers usage, I decided that 64M of memory space would be enough.
# grep mfs /etc/fstab swap /tmp mfs rw,nodev,nosuid,-s=64m 0 0
And that seemed well sized. Until I ran syspatch(8) and got a whole bunch of errors:
I had difficulties running Linux as a virtual machine using OpenBSD vmd(8). Ubuntu LTS crashed during installation wizard, Debian 9 does not seem to ship with virtio drivers, Alpine randomly freezes the console and Slackware … well slack has not been updated in years. Arch Linux seems to run well. And as I didn’t find a complete guide to install and run it using OpenBSD vmd(8), here are my notes.
Now that I have an OpenBSD server hosted in the Wild and capable of doing virtualization, I’ll migrate all my VM hosted on Synology Virtual Machine Manager. But even if the OpenBSD installer is straight forward, deploying tens of VM takes some time. So I set up an automated environment that provides fast and (nearly) finger-less deployment.
Online by Scaleway provides dedicated servers in France. The start-2-L reference is a “small” server that ships with KVM over IP. It is based on SuperMicro X11SSE-F. So far, the hardware seems to be supported pretty well and it is possible to run OpenBSD with Full Disk Encryption.