Why use HCP Terraform instead of running Terraform locally for home infrastructure?

HCP Terraform provides remote state management, execution history, and the ability to trigger infrastructure changes from anywhere without local CLI access. It also enables VCS-driven workflows where GitHub pushes automatically trigger plans and applies, ensuring code and infrastructure stay synchronized.

How do HCP Terraform agents work with local Proxmox infrastructure?

Agents are installed on a local server (which can be a Proxmox VM) and pull execution requests from HCP Terraform over outbound connections. When you trigger a plan or apply in HCP Terraform, the agent receives the request and executes Terraform locally, where it can access the Proxmox API directly without requiring inbound firewall rules.

Building a Home Private Cloud with Proxmox & HCP Terraform

Name: Building a Home Private Cloud with Proxmox & HCP Terraform
Uploaded: 2026-04-02T22:07:06-04:00
Duration: 16 min 13 s
Description: TL;DR Proxmox home labs suffer from configuration drift, lost documentation, and manual operation errors that can be solved by applying Infrastructure as Code principles used in cloud environments. HCP Terraform agents enable remote management of local...

HashiCorp

04/02/2026

0 (0%)

Report Like Favorite

TL;DR

Proxmox home labs suffer from configuration drift, lost documentation, and manual operation errors that can be solved by applying Infrastructure as Code principles used in cloud environments.
HCP Terraform agents enable remote management of local Proxmox infrastructure without inbound firewall rules by pulling execution requests over outbound connections and running Terraform operations locally.
VCS integration with GitHub creates a complete CI/CD pipeline where code pushes automatically trigger infrastructure changes through HCP Terraform, ensuring repository and deployed state remain synchronized.
The BPG Proxmox community provider supports comprehensive resource management including VMs, LXC containers, networks, and firewalls, making it suitable for full infrastructure-as-code implementations.

Managing Proxmox Infrastructure with Terraform

This session demonstrates how to transform a home Proxmox virtualization environment into a code-managed private cloud using HCP Terraform and CI/CD pipelines. The speaker addresses common challenges in manual infrastructure management — forgotten configurations, lack of reproducibility, and operational inefficiencies — and shows how Infrastructure as Code principles solve these problems. Using community Terraform providers (specifically the BPG Proxmox provider), administrators can declaratively manage VMs, containers, networks, and firewalls. The approach enables configuration versioning, change tracking, and consistent environment reproduction, bringing enterprise cloud practices to on-premises and home lab environments.

Remote Execution with HCP Terraform Agents

A key technical challenge addressed is enabling HCP Terraform to manage local Proxmox infrastructure without exposing inbound network access. The solution uses HCP Terraform agents — lightweight services installed on a local server that pull execution requests from HCP Terraform over outbound connections. This architecture allows remote plan and apply operations while maintaining security, as the agent communicates with the local Proxmox API directly. The setup requires creating an agent pool in HCP Terraform, installing the agent service on a local server (which can itself be a Proxmox VM), and configuring the workspace to use agent-based execution mode.

CI/CD Integration with Version Control

The final layer integrates GitHub with HCP Terraform through VCS-driven workflows, eliminating manual Terraform CLI operations and ensuring code repository state matches deployed infrastructure. When code is pushed to GitHub, HCP Terraform automatically triggers plan and apply operations through the configured agent. This setup supports tag-based triggers for controlled deployments and can be configured for automatic or approval-required apply operations. The speaker emphasizes starting small and iterating rather than attempting perfect implementation immediately, recommending gradual expansion of Terraform-managed resources over time.

Chapters

0:00 - Introduction and Speaker Background
2:10 - Target Audience and Session Goals
3:02 - What is Proxmox?
4:26 - Problems with Manual Proxmox Management
6:47 - Managing Configuration with Terraform
8:40 - Remote Execution with HCP Terraform
13:13 - Incorporating CI/CD with VCS
14:53 - Key Takeaways and Recommendations

Key Quotes

3:47 "I personally think that it will become the standard for home servers."
4:54 "You can't remember what you did in the past. You've completely forgotten how to make VMs."
6:26 "There are a lot of servers that I don't know the purpose of. To be honest, I don't remember when I made it, and I can't remember it."
10:14 "Another advantage is that you don't need to make a hole in the inbound. Because it's like pulling from the agent to the HTTP Terraform side, if you can communicate from home to the Internet outbound, you can basically communicate."
15:02 "It is better to take control of the configuration early. If you do it later, you can't manage it manually and you can't remember how to make it."

Categories:

Tags:

Show more Show less

Browse videos

Upcoming Webinar Calendar

05/19/2026

01:00 PM

05/19/2026

How to Build an AI Governance Foundation for GenAI - Before, Duration and After Deployment

https://www.truthinit.com/index.php/channel/1936/how-to-build-an-ai-governance-foundation-for-genai-before-duration-and-after-deployment/
05/20/2026

08:00 AM

05/20/2026

Establishing a Robust AI Governance Framework for GenAI Throughout the Deployment Lifecycle

https://www.truthinit.com/index.php/channel/1937/establishing-a-robust-ai-governance-framework-for-genai-throughout-the-deployment-lifecycle/
05/20/2026

10:00 PM

05/20/2026

Establishing a Robust AI Governance Framework for GenAI Throughout Its Lifecycle

https://www.truthinit.com/index.php/channel/1953/establishing-a-robust-ai-governance-framework-for-genai-throughout-its-lifecycle/
05/21/2026

11:00 AM

05/21/2026

Risk in Real Time Demo Series: The Autonomous Era - Orchestrating a Resilient Enterprise

https://www.truthinit.com/index.php/channel/1372/risk-in-real-time-demo-series-the-autonomous-era-orchestrating-a-resilient-enterprise/
05/27/2026

04:00 AM

05/27/2026

Rivoluziona i rischi dell'AI in opportunità con Netskope AI Security

https://www.truthinit.com/index.php/channel/1925/rivoluziona-i-rischi-dellai-in-opportunità-con-netskope-ai-security/
05/27/2026

10:00 AM

05/27/2026

Adopting AI: From Illusion to Intentional Control

https://www.truthinit.com/index.php/channel/1924/harnessing-ai-transitioning-from-illusion-to-purposeful-mastery/
05/28/2026

01:00 PM

05/28/2026

Harnessing AI for Smaller Teams: Strategies for Secure Implementation

https://www.truthinit.com/index.php/channel/1951/harnessing-ai-for-smaller-teams-strategies-for-secure-implementation/
06/02/2026

01:00 PM

06/02/2026

Spring of Satori: Delving into Recent Findings and 2026's Threat Landscape

https://www.truthinit.com/index.php/channel/1930/spring-of-satori-delving-into-recent-findings-and-2026s-threat-landscape/
06/16/2026

07:00 AM

06/16/2026

Establishing Clear Priorities: Addressing Data Risks Effectively

https://www.truthinit.com/index.php/channel/1952/establishing-clear-priorities-addressing-data-risks-effectively/