Tried it, but does not seem to work. Can't ping any wepage anymore when using following rule with output policy DROP and IPSet set as screenshot above.
What I am missing?
@shrdlicka Oh thanks, missed that tickbox!
the "nomatch" is shown as exclamation mark in the IP set, so they might have allowed this sign in the string as well :D
Hello,
with iptables it is possible to invert an ip range by using an exclamtion mark in front of the IP. Is there a way to get this behaviour on proxmox firewall / GUI? Using "!" is not allowed and results in error below.
The intend is to allow web traffic, but block local address range. I...
Did not do that on first hand.
Did a reboot, did not work. Removed all USB, works. Now did a reboot again, then added all USB again, now it is working. Very strange :/
Thanks for your help and sorry bothering you.
Sorry for confusion, seems to be my mistake reading the numbers. In the first column it says 5.13.19-4, second column shows 5.13.19-9. So it seems to be fine.
But unfortunatelly I still have the issue with USB.
root@pve:~# dpkg -l | grep pve-kernel
ii pve-firmware 3.3-5...
Upgraded today, kernel is now on 5.13.19-4. One VM does not start anymore, of course the only one with USB assigned.
How to get 5.13.19-9, or a newwer one as this seems to fix the issue?
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.