Some notes on setting up a new Proxmox server:

• Install on ZFS root (set advanced options ashift to either 9 for 512-byte sector ssds, or 12 for 4k sectors)
  • (Check what sector sizes an SSD supports with nvme id-ns -H /dev/nvme0n1 | grep “Relative Performance”
• Run community post-pve-install to enable open-source repos, update and disable nag screen
• Join node into cluster (datacenter→clusters grab join info from existing cluster, join cluster on new node)

https://pve.proxmox.com/wiki/HTTPSCertificateConfiguration

• Copy the tsig key to /usr/local/share/nsupdate.key
• Navigate to ACME plugins and create a new one:
  • ID: FreeIPA
  • Type: RFC2136
  • Key: /usr/local/share/nsupdate.key
  • Server: ares.jellybean.sihnon.net
• Create the ACME account via webui
• Create the certificate request using DNS type and FreeIPA plugin
• Order the new certificate

https://forum.proxmox.com/threads/proxmox-3-0-web-ui-on-port-443-instead-of-8006.13964/

apt-get install openvswitch-switch

apt install frr-pythontools
systemctl enable --now frr.service

• Edit vmbr0, remove physical nic and IP address
• Create OVSBridge ovsbr0
• Create OVSIntPort mgmt attached to ovsbr0 and add the management IP back onto this
• Create OVSBond bond0 attached to ovsbr0 and add all physical nics to this, with mode balance-tcp
• Apply changes
• Update switch configuration to enable LACP
• Confirm connectivity
• Datacenter→SDN→Apply to setup vlans