Search results

Hi, token has PVEAdmin permission for "/" path with propogate, but always getting error: 403 Permission check failed (/sdn/zones/z100007, Permissions.Modify) Other API endpoint calls working fine. Any ideas what could be wrong? curl 'https://x.x.x.x:8006/api2/json/access/acl/' --insecure -v\...

Thank you spirit for your time, I really appreciate that. Can confirm "ip route add 10.0.0.0/8 via 10.0.20.1" works, I am able to reach private/public IPs within VNet from router. Had to set net.ipv4.conf.default.rp_filter = 0 and net.ipv4.conf.all.rp_filter = 0 as your mentioned in this...

I am sorry for my late response. Yes, I removed it from one zone only. Now I removed it from all zones and there is no more "default-originate ipv4" in frr.conf and ECMP routes in routing table. Yes, I know that from your post in other threads. I think I have found why I can't access (from...

/etc/frr/frr.conf of node 10.0.4.3: frr version 8.5.1 frr defaults datacenter hostname proxmox1-3 log syslog informational service integrated-vtysh-config ! ! vrf vrf_z100001 vni 100001 exit-vrf ! vrf vrf_z100002 vni 100002 ip route 10.0.20.0/24 null0 ip route 10.0.24.0/24...

Sorry for my mistype. tcp_l3mdev_accept is actually enabled (exit-nodes-local-routing disabled). Without it node (10.0.4.4) can't access local VM1 (10.0.20.10). It's not possible to remove it anymore via GUI after update to PVE v8.1.3. I have removed it from zones.cfg and applied changes, but...

Thanks spirit. Changed to 1 exit-node, updated PVE 8.0.4 to 8.1.3 (frr version is 8.5.1) but nothing changed. Node 10.0.4.4 can ping and SSH into VM (10.0.20.10), sysctl net.ipv4.tcp_l3mdev_accept=0. Link between router and nodes are in vlan 3 with MTU 1550, could it be a problem? zones.cfg...

Hello, I have been exploring SDN. Right now, I have an cluster with three nodes, VXLAN is working fine between nodes. My problem is routing from router (static route, router does not support SDN) to PVE node. I can ping PVE node from router but can't ping VM or VNet's subnet gateway. Firewall...

Tried to reuse 5.133.66.1 but it does not work. At the moment I don't have access to isp router, willing to contact them to add private network as you suggested. Thank you for your help spirit.

Hi spirit, I'm working on setting up SDN in a new cluster and looking the way to assign public IP to VM. My Proxmox exit-node connected with ISP via L2 bridge. Take a note IPS router, exit-node and vm1 has same /24 subnet IP. I would appreciate any help isp router...

Same problem here after upgrade to Proxmox 8. I would appreciate any help.