Virtrualized BSD firewall issue

F

Fab

Guest
Dear Proxmox community,

My problem is quite complex, so I decided to make a schema instead of trying crazy not-understandable explanations :)

Tests made with the different devices configurations are explained in the frames of the devices + more detailed explanations in the red frame.

The problem seems to be related to the Proxmox virtual switch (see other interesting tests results in the red frame)

In addition to the schema, ntop did not show strange amount of broadcast and ifconfig and its BSD equivalent didn't show error/dropped/overruns on the physical / virtual NIC and virtual switches.

If someone has patience to look at this... I already thank them a lot :)

I already consulted 2 networks and linux specialist but only answer I had was "yeah, should work!" ... :(

Forgot one point: same results with Proxmox 1.8, 1.9 and 2.0

Picture1[1].png
 
Last edited by a moderator:
While continuing my investigation, I found through google the following post which seems to describe similar pronlem (I couldn't find it when I checked my problem was not existing through the forum search): => http://forum.proxmox.com/threads/6083-Proxmox-Router-FW-problem-with-sandy-bridge-hardware

What is interesting is the guy who posted the above issue did not use the same software like me. Other interesting point is I could reproduce the issue with a virtualbox (I installed the firewall in a virtualbox under ubuntu, result was same: all works for some time... then all goes worse and worse...)

As nobody seems to know what is being this issue, I have other questions:

- Is Proxmox using open vswitch? Proxmox is quoted in the homepage of open vswitch but... it seems some people are trying to implement it afterwards...
- Are Proxmox switches layer 3? this hint was given from the m0n0wall community, to check if it couldn't create the described issue.

- Did some network options in interfaces file changed since Proxmox 1.7 like

bridge_stp off bridge_fd 0? I am wondering if somehow some loops could be created in my configuration.

Thanks in advance for any hint or reply...
 
Fab said:
- Is Proxmox using open vswitch?
Click to expand...

no

Fab said:
- Are Proxmox switches layer 3?
Click to expand...

no

Fab said:
- Did some network options in interfaces file changed since Proxmox 1.7 like
bridge_stp off bridge_fd 0? I am wondering if somehow some loops could be created in my configuration.
Click to expand...

AFAIK there was no changes since that release. But it should be easy to test if 'bridge_stp on' helps.
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back