Hello,
are we stuck with cloud providers listed on the doc or we can use other bare metal servers like scaleway ?
thanks
It will work with any bare metal provider and any virtualized provider with nested KVM support. The only provider that has custom integration in the software is Oracle Cloud which supports creating VNICs for each instance. All the other providers have the same support and similar configuration process.
It’s best to run it on a RHEL 10 distribution. For providers with iPXE support Pritunl Boot can be used to install an updated RHEL 10 distribution with custom partitioning. Scaleway doesn’t have iPXE support and appears to only have RHEL 9 distributions available for automatic installation.
For private networking in multi-host clusters the provider needs to either have 1500 MTU layer 2 networking with unrestricted VLAN tagging or at least 1554 MTU to get standard MTU on the instance interface. The additional 54 MTU is needed for the VXLAN VPC overlay network in Pritunl Cloud. If it doesn’t have this the instance interface MTU will be below standard 1500 MTU for public traffic. This is less optimal but some providers including Google Cloud use overlay networks that result in below standard MTU. Scaleway appears to have a 1500 MTU layer 2 private network.
thanks for the reply !
what do you think of ovhcloud. their bare metal seem to support ipxe and have a network solution called vrack.
just looking for a french provider 
I’m not familiar with the European providers but the important features are IPv6 support with at least a full /64 to allow access to all instances, IPv4 address availability for public facing instances and a minimum of 1554 MTU private networking when using muti-host configurations.
Can we use ceph with pritunl cloud ?
off topic but will we ever gone get an openid connect implementation on any pritunl products ? or we are stuck with what provided for sso
It will be added in the future but it’s not currently under development. There’s no planned date for when it will be developed.
your answer is for both questions ? ceph and openid
Also, any chance of getting a private dns server on pritunl cloud so we can have a “route 53 like” for private vm resolution under vpn ? so we don’t have to install anything ourself
It has DNS integration with AWS, Cloudflare and Oracle Cloud. The DNS entries can be automatically controlled with a domain resource in the pod spec. This is generally better then private DNS servers which can cause outages. If the negative TTL is adjusted the average update time should be less then 10 seconds even if there was no existing domain record. AWS Route 53 provides about a 10 second update, Oracle Cloud is also 10 seconds and CloudFlare is 30-60 seconds. Only AWS Route 53 supports adjusting the negative TTL. By default instances use 8.8.8.8 and 8.8.4.4, this will be adjustable in the zone settings in a future update.
your answer is for public vm, i was asking for private dns. bare metal will not be with aws. would be cool to have private dns resolution inside pritunl cloud but ok.
also in instance setting processor count, just to clarify, are we talking about core or thread ? if i put 1 do that mean 1 core or 1vpcu ? Thanks
Even if the Pritunl Cloud servers are run on a different provider it can still use DNS services from those cloud providers.
The processors option maps to CPU cores in the QEMU configuration, this would run as one thread for each processor on the host system. The guest instance would see one CPU core for each processor.
i read the pod section in the doc ! can we get official terraform provider for pritunl cloud/zero/vpn in the near futur ?
The pods system in Pritunl Cloud is intended to be used in place of something like Terraform. There may be Terraform providers for Pritunl and Pritunl Zero in the future but currently it isn’t planned for development.
could pritunl cloud implement instance disk encryption in the futur ?
If the system is installed with Pritunl Boot on iPXE it allows reducing the size of the root file system. The remaining space can then be used for an encrypted XFS partition after the installation. That can then be mounted at /var/lib/pritunl-cloud the instance disks will be stored in there.
Blank instance disks can also be created and attached as secondary disks which can then be configured with encryption from the instance.
ssh console inside pritunl cloud gui coming ? also, it will not be a problem if your custom image do not run the agent ? thanks
The instance can run any operating system without the Pritunl Cloud agent or cloud-init including Windows 11. There is an option to enable a DHCP server in the instance settings to configure the network for instances without cloud-init. If cloud-init is configured it will package the Pritunl Cloud agent and start it.
There’s no plans on having a SSH console, there is a built in VNC.
can you further explain ssh certificate in authority and it’s potential integration with pritunl zero ?
also, advertissing route in pritunl cloud vpc could be possible with pritunl vpn ?
thanks
Pritunl Zero and Pritunl Cloud use a lot of the same codebase. Both have authorities but these are different. An authority in Pritunl Zero manages a certificate authority for SSH client certificates or client side certificates for HTTPS. An authority in Pritunl Cloud stores either a SSH public key or SSH certificate authority that is then added to the instances using cloud-init. There’s no plans on integrating Pritunl Zero and Pritunl Cloud other then what integration would be possible with any cloud provider.
The code on the Pritunl repository has support for cloud route advertisement on Pritunl Cloud, this will be included in the next release. It is also in Pritunl Link. This is mostly only for development because I do all the testing and development of Pritunl on Pritunl Cloud instances. The Pritunl Cloud API currently has no permission control and may change in the future.
would really like to see tang integrated to pritunl cloud for instances disks encryption so we don’t have to run a vm for it.
Would really like to see coredns integrated to pritunl cloud for instances dns discovery pritunl cloud dhcp would have a dns) also pritunl running on a vm could use it for clients to querry private dns.
please 
It’s possible the DNS system will be expanded but currently the plan is only to use public DNS providers. The current system will work with both DHCP and static instance addressing including IPv6.