Recent content by jeannotp

And then: # tcpdump -nSe -i vmbr0 host 10.10.10.103 19:05:42.491957 46:2c:c5:c4:27:53 > 5a:ab:95:29:4a:7a, ethertype IPv4 (0x0800), length 74: 10.10.10.106.42036 > 10.10.10.103.443: Flags [S], seq 3043812723, win 65535, options [mss 1460,nop,wscale 6,sackOK,TS val 494310551 ecr 0], length 0...

After that I changed the NAT rules but I don't know if it changes something. From: DNAT tcp -- eno3 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 /* HTTP nginx */ to:10.10.10.106:80 DNAT tcp -- eno3 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 /* HTTPS...

Some other details: # uname -a Linux pve1 5.13.19-1-pve #1 SMP PVE 5.13.19-3 (Tue, 23 Nov 2021 13:31:19 +0100) x86_64 GNU/Linux # cat /etc/pve/firewall/103.fw [OPTIONS] log_level_out: debug enable: 1 log_level_in: debug policy_out: DROP policy_in: DROP [RULES] OUT Web(ACCEPT) -log nolog IN...

I had a cron doing a curl every 10 minutes: $ grep HTTP debugwwwcurlv4|sort|uniq -c 42 HTTP/2 302 24 HTTP/2 502 More than sometimes, in fact...

Hello, I have a problem for many years, and I suddenly decided to resolve it... I have it with different hardware, and I had it also with PVE 4, I think. I have servers with only one IPv4 so I do NAT. I have for the main interface: auto vmbr0 iface vmbr0 inet static address...

Hello @FingerlessGloves. My OS don't seem to like SCSI. I'm not much used to change these settings. I just choose SATA and it's fine. I have FreeBSD VM which work well with VirtIO by the way.

Have issues too, "threads" doesn't help. Edit: even with VirtIO

I reopen this thread because I see some things I don't understand. At container's boot, maybe not all the time but often, the CT has no Internet access (I ping a reliable IP). 10.10.8.1 is vmbr0 gateway (4e:dd:39:00:39:2f) wiki is CT's name (tcpdump arp running on CT) 20:53:34.738665 ARP...

If your configuration is bridged, it's in the configuration of your router (192.168.1.1) that you must add a NAT rule.

Hello, I searched but didn't find the response to this question: Can built-in firewall be used with LXC CTs behind NAT? I run a fresh PVE/4.1-1/2f9650d4 (running kernel: 4.2.6-1-pve) and have the following config: # cat /etc/network/interfaces auto lo iface lo inet loopback auto eth0 iface...