Hi Forum, hoping you can give me some pointers here.
I've already got two Proxmox hosts working with single nics and multiple sub interfaces - I am comfortable doing this. What I'm having trouble with is a third host. This host has 5 nics into. I'm hosting OPNSense on this host and would like to present each physical interface to the OPNSense guest.
I tried create a bridge for each physical nic and then create the appropriate sub interface vlan, but this didn't work. I then read that the best way to present the entire nic to the underlying guest is to create the bridge and not assign an IP address. Is this the correct approach?
This is my network config:
auto lo
iface lo inet loopback
auto enp5s0
iface enp5s0 inet manual
auto enp3s0f0
iface enp3s0f0 inet manual
auto enp3s0f1
iface enp3s0f1 inet manual
auto enp4s0f0
iface enp4s0f0 inet manual
auto enp4s0f1
iface enp4s0f1 inet manual
auto vmbr0
iface vmbr0 inet static
bridge-ports enp3s0f0
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4092
#host IP address
auto vmbr0.110
iface vmbr0.110 inet static
address 192.168.10.217/24
gateway 192.168.10.1
auto vmbr1
iface vmbr1 inet manual
bridge-ports enp3s0f1
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
auto vmbr1.111
iface vmbr1.111 inet manual
#VLAN111
auto vmbr2
iface vmbr2 inet manual
bridge-ports enp4s0f0
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
auto vmbr2.2
iface vmbr2.2 inet manual
#VLAN2
auto vmbr3
iface vmbr3 inet manual
bridge-ports none
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
auto vmbr4
iface vmbr4 inet manual
bridge-ports enp5s0
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
source /etc/network/interfaces.d/*
I've already got two Proxmox hosts working with single nics and multiple sub interfaces - I am comfortable doing this. What I'm having trouble with is a third host. This host has 5 nics into. I'm hosting OPNSense on this host and would like to present each physical interface to the OPNSense guest.
I tried create a bridge for each physical nic and then create the appropriate sub interface vlan, but this didn't work. I then read that the best way to present the entire nic to the underlying guest is to create the bridge and not assign an IP address. Is this the correct approach?
This is my network config:
auto lo
iface lo inet loopback
auto enp5s0
iface enp5s0 inet manual
auto enp3s0f0
iface enp3s0f0 inet manual
auto enp3s0f1
iface enp3s0f1 inet manual
auto enp4s0f0
iface enp4s0f0 inet manual
auto enp4s0f1
iface enp4s0f1 inet manual
auto vmbr0
iface vmbr0 inet static
bridge-ports enp3s0f0
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4092
#host IP address
auto vmbr0.110
iface vmbr0.110 inet static
address 192.168.10.217/24
gateway 192.168.10.1
auto vmbr1
iface vmbr1 inet manual
bridge-ports enp3s0f1
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
auto vmbr1.111
iface vmbr1.111 inet manual
#VLAN111
auto vmbr2
iface vmbr2 inet manual
bridge-ports enp4s0f0
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
auto vmbr2.2
iface vmbr2.2 inet manual
#VLAN2
auto vmbr3
iface vmbr3 inet manual
bridge-ports none
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
auto vmbr4
iface vmbr4 inet manual
bridge-ports enp5s0
bridge-stp off
bridge-fd 0
bridge-vlan-aware yes
bridge-vids 2-4094
source /etc/network/interfaces.d/*
