Proxmox
Proxmox VE is the homelab hypervisor. It runs a single VM: OPNsense, which handles routing and firewalling for the entire network.
Proxmox itself is managed with Ansible from the proxmox repo.
Ansible
The Ansible setup handles three things:
| Playbook | Purpose |
|---|---|
bootstrap_user.yml | One-time setup: creates the ansible user with passwordless sudo and SSH key |
update_proxmox.yml | Safe dist-upgrade with automatic reboot if the kernel changed |
install_node_exporter_community.yml | Installs Prometheus Node Exporter on port 9100 |
All playbooks are run from the ansible/ directory:
# Full system update
ansible-playbook update_proxmox.yml
# Install/update Node Exporter
ansible-playbook install_node_exporter_community.yml
Update safety
The update playbook guards against accidental major version upgrades. It checks whether next-release repositories (e.g. trixie on a bookworm system) are present in /etc/apt/ and aborts if so. A major upgrade requires explicitly setting allow_major_upgrade: true.