Maybe it’s helpful if you attach these screenshots to the re-opened GitHub issue 
And btw — can you post your file subnets.csv?
Here it is, there’s not much in it, but it looks good, the network, the gateway and the dhcp range.
I don’t know if it should contain anything else?
, looks right
have you tried to use the regular fqdn for the server and start the setup like that
server.eltetrefort.lan instead of trefortserver.eltretrefort.lan
i would stick here to server, since this is kind of a naming convention, that probably most pepole use…
also the fqdn usually has another schoolname or entitity in the name…
my internal fqdn back then was server.myschool.linuxmuster.lan
at the moment, you don’t need the subnetting script since u dont use a different subnet for every pc room… that is more a advanced setup for later…
So hostname should be server, can I rename this afterwards on the Ubuntu server or should I start from scratch? The same question applies to the domain name, in opnsense you can change it without any problem (say to trefort.linuxmuster.lan), but it’s no problem for the Ubuntu server, or should I start from scratch?
probably it is better to start from scratch…
renaming the AD is not recommended… but u can also wait for other opinions.
Now u have snapshots. if u start over i would do snapshots before u run any scripts. so u still have the clean ubuntu server and firewall to work with.
have u read the article about naming the server. it is a long webpage… so the naming of is real big choice u do once you set the server up
Opinions seem to differ somewhat on this point. I also suggested the hostname „server“ but @arnaud said in #32 that this is not necessary. If you want to be sure whether this plays a role you can re-install with the defaults „server.linuxmuster.lan“ and see if it works then
I also wondered why @Fenyo used the linuxmuster-import-subnets command … but I’m not sure if this commands is used during the first setup. That’s why I asked for the subnets.csv file … normally you need this command when you use subnets. In such a huge network /16 it can be useful. But one step at a time …
Wow and you really can’t have anything else as a hostname than server, so everything works without any post hammering. 
It took a long time, but looking on the bright side, at least I got to know the system a lot more deeply (thanks to you guys), now I can install it almost anytime by head.
Thanks to everyone who has contributed here and provided helpful advice. 
However, I’m sure I’ll still have questions about the day-to-day running of the system… 
Great! Our persistence has finally paid off 
I’m still not sure if this is a bug?
@arnaud Arnaud may be able to add a good point?!
And @Fenyo – can you add this insight to your github-issue? It may be useful for others, too.
I think your next steps will be: boot a client via PXE and login a user from students.csv. Afterwards try to create your first LINBO-Image and upload it to the server. But that’s worth a new thread. 
Wow cool that makes me happy and relieved.
I think a differnet hostname is supposed to work to, but evidently it doesnt.
I assume the developpers use the hostname server for the most part and then it easily happens to forget that in the code…?
it kinda gave it away that u had to certs created with server and trefortserver… that is not supposed to happen…
i also think that those things are tedious to bugfix… so sticking to the convention is probably better also when u connect more stuff to the system like edulution and such
Yes, I have indicated the current solution to github, from now on it is their decision whether to allow you to choose another hostname or not.
Since then I have familiarised myself a bit with the interface, the import of users and clients seems straightforward. I also put a client into a domain as a trial and it worked without any problems, what doesn’t is the proxy still blocks internet access, so it doesn’t seem to be automatic after domaining but something still needs to be adjusted. If I set the proxy in manual proxy settings, it asks for authentication.
The network drive is also (homes) mounted nicely, but I have a question about the shares, because at first glance I couldn’t find where to create shares for individual groups.
On Proxmox I don’t know how much resources to set up for virtual servers, I gave 4 cores and 12gb to opnsense and 6 cores and 20 Gb ram to lmn in a hash. The server is 8core/16thread, I wonder if Proxomox is splitting real and ht cores in half and half? Also, question about Poxomox, as I see it saves snapshots incrementally by default, I don’t know if it’s possible to create fixed backups that are independent of increments?
I’ll have a question about Linbo, but it’s a bit too early for now.
And I don’t know if there is such a general beginner’s topic or should I find a topic for all my questions?
i think now we are at the point where you should really open a new topic…
the idea is that other people can look up solutions to problems. in a thread with 191 posts that goes about everything, this is not possible…
eveb in your most recent reply you talk about several different things…
make little topics out of those questions
Ok. It’s the best place there for an issue that comes from a thread with nearly 200 posts 
I cannot help you with proxy problems as we don’t use this feature. But I think that the client (firefox) has to set the correct proxy-settings to work properly.
Shares: You can create „projects“ with individual persons in it. They will get a shared folder then. Easy to create in the WebUI but also possible via ssh/bash:
sophomorix-project --help
or
sophomorix-project -i
Ressources: I would see how good it works now … with proxmox it’s very easy to increase ressources for the VMs. The minimal recommendations can be found here:
(-> Hinweis)
https://docs.linuxmuster.net/de/latest/installation/install-from-scratch/basis_opnsense.html
https://docs.linuxmuster.net/de/latest/installation/install-from-scratch/basis_server.html
LINBO: Yes – one problem – one thread. Then it is clearer.
Of course it’s possible. You can mount any NFS- or $whatever share as „storage“ and create a backup that uses this storage. We copy our backups of the VMs at night to a Synology Diskstation. But these are all full backups. Not neccessary if you use the proxmox backup server (PBS).
the proxy settings in firefox have to be
server.eltrefort.linuxmuster.lan:3128
or is it firewall.etrefort.linuxmuster.lan:3128
one of them should be working… the otherone is wrong 
i think
there shouldnt be any login form coming… since it works with kerboreros keytabs
Yes, I’ve entered this for the global proxy settings; firewall.trefort.linuxmuster.lan:3128, but it asks for authentication (and it shouldn’t be for a domain clients, as far as I know, at least it was for the distros I’ve tried so far). But I’ll really try to find a topic where this fits or open one if I can’t find one. That would be the first step (getting the proxy to work) that I should solve.
well now… you have to check opnsense…
doublecheck squid configuration, the green marks…
and check if ldap authentication works in opnsense for this service
check if u get keytabs in opnsense when u put in the user credentials
you just create a new forum post
„inital configuration of firefox proxy“ as headline.
and u can add a category like „Server“ or „Firewall“ or sth like that.
if u dont find a thread with the topic covered, you can create new threads.
Ok, but I’ll have to wait until next week, then I’ll be able to get back to it, so far I’ve found that the kerberos keytab works, and eventually the proxy works, but not with global-admin user, but with a test student. Of course, you have to manually set proxy here too, it would be nice to have an automatic setup script for that, I guess there is such a thing. The other problem is that the deafult 172.16.x.x internal domain name server translates some Elte things outwards, this is not a problem with fixed ip address no-proxy client, because there I can fix the Elte dns server as primary, but if I rewrite it in dhcp.conf it is not good because I think in case of proxy the internal should be primary, otherwise it will not resolve. Alternatively, you could edit the hosts file, although not very elegant.
Maybe you can solve your DNS-Problem here?
OPNSense → Unbound DNS → Overrides
And yes … it’s correct: global-admin is not meant as a „normal user“ … have a look at #100 again ( → Holger (@baumhof) wrote about it )
it would be nice to have an automatic setup script for that
I think the magic buzz word for this is:
„proxy wpad“
i wouldn’t tackle that problem right this moment…
I regard this problem with the firefox proxy more a client based problem as a server problem. So the questions is then more how you configure your clients…
For now you should be happy that your server is running
there are multiple ways to do this for the client and u ll find what fits you best once you know how to configure a client
For a windows client you could use gpos for instance.
but i think if you use linbo, you can include this configuration also in your default user profile…
for linux clients there are probably also different routes to go whether you use linbo or ansible or other ways to setup clients
but yeah wpad is possible too