ProxMox Mixed Network Configuration, help needed in Understanding

W

wintermute

Guest
Hello all, sorry for posting here , but after reading different sources of documentation iam very confused :-(
Here's my wanted szenario:
1 physical machine with 2 NIC, eth0 and eth1
proxmox 1.8 is installed and runs as excpected (very nice software)
Now i want to configure the following setup:

1 VM with pfsense as firewall
2 VM with windows behind pfsense

n more VM with linux running bridged over eth1 (still running as expected)

All VM's at eth1 have public adresses and running directly connected

i only want to secure the windows machines , and try to run pfsense as VPN router, so the windows machines have an private network like 192.168.1.x and they are in teh same network like the pfsense LAN interface. The pfsense WAN interface have an public IP an have access to the internet. later there will be clients , they connect with VPN to the WAN Side of pfsense and all incoming traffic go to the 2 windows machines. The outgoing traffic of the windows machines should be NAT'ed through pfsense for accessing the internet. There is no need of DHCP cause the windos machines have static private adresses .

my question is now how to setup the interfaces on the physical host ?

a.b.c.d = public adress(es)
e.f.g.h = public gateway
i.j.k.l = public broadcast


auto lo
iface lo inet loopback

iface eth0 inet manual

auto vmbr0
iface vmbr0 inet static
address a.b.c.d
netmask 255.255.255.240
gateway e.f.g.h
bridge_ports eth0
bridge_stp off
bridge_fd 0


auto vmbr1
iface vmbr1 inet static
address 192.168.1.1
netmask 255.255.255.0
bridge_ports none
bridge_stp off
bridge_fd 0


auto vmbr2
iface vmbr2 inet static
address 192.168.1.2
netmask 255.255.255.0
gateway 192.168.1.1
bridge_ports none
bridge_stp off
bridge_fd 0


auto eth1
iface eth0 inet static
address a.b.c.d
broadcast i.j.k.l
netmask 255.255.255.240
pointtopoint 212.91.253.145
gateway e.f.g.h




auto vmbr3
iface vmbr3 inet static
address a.b.c.d
netmask 255.255.255.240
broadcast i.j.k.l
bridge_ports none
bridge_stp off
bridge_fd 0

the VM binded to vmbr3 have also public adresses, but they still running :)

Please help an confused old brain :)
 

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!