Proxmox LXC Deployment
Intent
Plan and document Proxmox LXC deployments for Mick's homelab with practical container setup, networking, and maintenance steps.
Use When
- The user explicitly asks for
proxmox-lxc. - The request matches the triggers or workflow described below.
- The task benefits from a reusable, structured output instead of a one-off answer.
Do Not Use When
- Do not use for VM-only designs, Kubernetes, cloud deployments, or destructive production changes without explicit confirmation.
- Required context is missing and cannot be reasonably inferred.
- A more specific skill in this repo is a better match.
Workflow
- Identify the exact task and available source material.
- Apply the domain rules and output format in this skill.
- State assumptions, uncertainty, and missing inputs clearly.
- Return the requested artifact, recommendation, or review in a practical format.
- Check the result against the validation checklist before finishing.
Constraints
- Do not fabricate missing facts, measurements, dates, sources, or user context.
- Keep output aligned with Mick's direct, practical communication style unless the skill says otherwise.
- Preserve safety, legal, medical, financial, and operational boundaries stated in this file.
- Prefer concise, usable output over broad explanation.
Validation Checklist
- The output matches the skill's intended task and platform.
- Required inputs, assumptions, and uncertainty are explicit.
- Safety, scope, and source limits are respected.
- The response follows the requested format or the skill's default output format.
- The result is practical enough to use without another cleanup pass.
Deploy and configure Proxmox LXC containers for self-hosted services on Mick's homelab stack.
Infrastructure Reference
| Item | Value |
|---|---|
| Proxmox host | Local network |
| UniFi controller | Static IP assignment via MAC |
| Cloudflare Tunnel | HTTPS exposure with no port forwarding |
| Existing containers | CT 104 = n8n at 192.168.0.81 |
| Template | Ubuntu 22.04 standard |
| Next available CT ID | Ask Mick or check with pvesh get /nodes/{node}/lxc |
Full Deployment Sequence
When asked to deploy a new service, generate all five of these pieces.
1. pct create command
pct create {CT_ID} local:vztmpl/ubuntu-22.04-standard_22.04-1_amd64.tar.zst \
--hostname {service-name} \
--memory 512 \
--cores 1 \
--rootfs local-lvm:8 \
--net0 name=eth0,bridge=vmbr0,ip={IP}/24,gw=192.168.0.1 \
--nameserver 1.1.1.1 \
--unprivileged 1 \
--start 1
Adjust memory based on workload:
- Light: MCP server or small API,
512MB - Medium: Python app or n8n-like workload,
1024MB - Heavy: database or ML workload,
2048MB+
2. Initial container setup
# Enter container
pct enter {CT_ID}
# Update and install basics
apt update && apt upgrade -y
apt install -y curl wget git python3 python3-pip
# For Python services
pip install {packages} --break-system-packages
# For Node services
curl -fsSL https://deb.nodesource.com/setup_20.x | bash -
apt install -y nodejs
3. Application install and config
# Create app directory
mkdir -p /opt/{service-name}
cd /opt/{service-name}
# Install app
pip install {package} --break-system-packages
# Create .env file for secrets
cat > /opt/{service-name}/.env << EOF
API_KEY=your_key_here
API_BASE_URL=https://api.example.com
PORT=8000
EOF
chmod 600 /opt/{service-name}/.env
4. systemd service unit
# /etc/systemd/system/{service-name}.service
[Unit]
Description={Service Display Name}
After=network.target
[Service]
Type=simple
User=root
WorkingDirectory=/opt/{service-name}
EnvironmentFile=/opt/{service-name}/.env
ExecStart=/usr/bin/python3 /opt/{service-name}/server.py http
Restart=always
RestartSec=10
StandardOutput=journal
StandardError=journal
[Install]
WantedBy=multi-user.target
systemctl daemon-reload
systemctl enable --now {service-name}
systemctl status {service-name}
journalctl -u {service-name} -f
5. Cloudflare Tunnel config entry
ingress:
- hostname: {service-name}.yourdomain.com
service: http://{IP}:{PORT}
- service: http_status:404
systemctl restart cloudflared
curl https://{service-name}.yourdomain.com/health
UniFi Static IP Assignment
- Open UniFi controller and go to
Clients - Find the container by hostname or MAC
- Open settings and assign the fixed IP
- Apply and reprovision if needed
You can also set the IP at creation time with --net0 ... ip={IP}/24.
Common Service Port Reference
| Service | Default Port |
|---|---|
| n8n | 5678 |
| FastMCP or FastAPI | 8000 |
| Home Assistant | 8123 |
| Grafana | 3000 |
| Portainer | 9000 |
| Ollama | 11434 |
Maintenance Commands
# List all containers
pct list
# Start, stop, restart
pct start {CT_ID}
pct stop {CT_ID}
pct restart {CT_ID}
# Enter container shell
pct enter {CT_ID}
# Check status
pct status {CT_ID}
# Snapshot before major changes
pct snapshot {CT_ID} pre-update-$(date +%Y%m%d)
# Restore snapshot
pct rollback {CT_ID} pre-update-YYYYMMDD
Quick Deploy Checklist
- CT ID chosen without conflict
- Static IP chosen outside the DHCP conflict range
pct createcommand completed successfully- Packages installed inside the container
- App files placed in
/opt/{service-name}/ .envfile created withchmod 600systemdunit file created and enabled- Service starts cleanly
- Cloudflare Tunnel config updated and restarted
- External URL responds correctly
Help And Examples
If the user is not sure how to use this skill, asks what it needs, or asks for examples:
- Explain in plain language what this skill can do.
- Tell the user the minimum input needed for a useful first pass.
- Show the example prompts below.
- Offer the fastest next prompt the user can send.
Minimum useful input:
- The service you want to host plus any network, storage, or security constraints.
Example prompts:
Use proxmox-lxc to plan a new LXC container for an internal automation service.Help me deploy and harden an LXC on Proxmox for self hosted tooling.Show me the best example prompt for asking this skill for an LXC setup plan.