firewall

Hi Proxmox team, I’d like to suggest an improvement for the Proxmox Firewall: the ability to define firewall rules not only based on static IP addresses, but directly on VM objects. The idea is to create rules that reference virtual machines by their name, ID, or tags — similar to how it’s...

Hello, I am having trouble configuring the Vnet Firewall. I have set up a PoC with two hosts. There is one VM on each host, each of which has a service interface and another interface for the NAS. Two VLANs are configured, one for the service and another for the NAS. The intention is that the...

Hello everyone, I'm a beginner when it comes to networks and servers, so I decided to buy an old server and install Proxmox to improve, I got an HP ProLiant DL160 g6 to which I added an additional NIC, leaving me with a total of 4 ports. After configuring Proxmox I decided to install a Sophos...

Hello everyone, I reinstalled my proxmox server, which is hosted on herunter, yesterday. I noticed that when I create my VMs, I can't get an internet connection, and therefore can't use them properly. As I said, the problem only started occurring after I reinstalled everything. The entire...

Environment Proxmox VE version: 9.x (nftables backend enabled) Firewall backend: nftables Affected components: proxmox-firewall, nftables chain evaluation order Description When using the Proxmox VE firewall with nftables, multiple base chains per hook (input, forward, output) are created at...

Hello everyone, I have just setup a fresh Proxmox 9 install, added a Container and started firewalling the system. I enabled the firewall for the datacenter, the host and the container. Everything works fine except for the container firewall. I can see from the "nft list ruleset" output that the...

Hallo. Nach langer Zeit, ich mal wieder mit einem Problem. Seit drei Tagen versuche ich mein Problem in den Griff zu bekommen. Ich stelle grade mein Heimnetz um, mit einer Hardware Firewall vor meinem Proxmox-Server. Dazwischen kommt später noch ein Switch. Da ich den Server neu einrichte...

I’m trying to integrate OpenID Connect (OIDC) on my Proxmox server using Microsoft Entra ID (Azure AD). However, by default, internet access is blocked on the Proxmox host via the firewall. To allow OIDC to work properly, which specific URLs or domains should I whitelist to enable authentication...

Hello guys, My proxmox firewall is not working what I have now: Datacenter: yes and input/output/forward policy = drop Node: firewall=yes NIC: firewall=1 VM: firewall =yes and input and output policy = drop With these settings you think you would not have a internet connection but I have...

I use a cloud on internet running proxmox and want to filter some connections for connecting and others for not connecting vms. Typical plan for firewall. Now I got some rules running including nat from inside to outside, pre-nat for vpn outside to inside and some others for dhcp function. But...

I’m working on a home lab setup where I have my Proxmox server on a separate VLAN from my main home network. The Proxmox box used to live on a different network and worked perfectly fine there, but I’ve since moved it into a segmented VLAN behind a Cisco router. Now, I’m trying to access the...

This is a weird one, as I'm honestly not sure if it's a firewall thing, some kind of out-of-the box security thing or an Ansible thing but here goes: I've got a fresh LXC container that I'm planning to use Ansible to configure. I have setup some firewall rules so that SSH into it just fine...

Hallo zusammen. Wir bekommen demnächst einen neuen Internet Anbieter (Glasfaser 1 Gbit) und in dem Zuge möchte ich statt auf einen Hardware router auf opnsense setzen. Spricht aus Eurer Perspektive irgendwas dagegen diesen auf proxmox VM laufen zu lassen oder würdet ihr aus Gründen...

Hi everyone, I'm encountering an issue where my host-level iptables NAT rule (for VMs on a private bridge to access the internet) stops working when I enable the Proxmox VE firewall on the VM's network interface. Setup: Proxmox VE Host - Dedicated server VMs are on a private bridge vmbr1...

Hi All, Fairly new to home lab/pfsense, and below is my current setup I have pfsense running on proxmox. Proxmox is installed on a Dell Wyse 5070. It has one inbuilt NIC, that I use for WAN and another 2.5 Gig NIC that I use for my LAN. Proxmox has a bridge (vmbr0) that connects to my 2.5 Gig...

1.I find that I can capture the IPV6 Neighbor solicitation packet on my virtual machine but on the pve vmbr1 I can not caputre the packet.. My topology is vmbr1 is the linux bridge of enp2s0, and my virtual machine's eth1 is bridge the vmbr1.. please see the attachment of the capture...

Hi all, I've set up a VM for Minecraft and it appears to be running correctly (from the cli - I don't play). The correct port, however, isn't open. I have a Verizon FIOS router and behind that I have an OpenWRT router and then the ProxMox machine. The FIOS router holds my public IP. The VM...

Hello, I am using Proxmox 8.3.3. and after a reboot I cannot access GUI, cannot ping proxmox or any VM (VMs are not online as well). I can reach proxmox server over SSH anr Winscp. There are no errors (I went through previous threads on this subject and all rights to folder and certificates...

I have an internal vnet with systems that needed access to the Internet. With the newer proxmox-firewall I was able to create a new table with the necessary rules and save the changes to /etc/nftables.conf but the rules are not loaded at boot. The documentation says this on custom rules: "If you...

Hello everyone, Let me explain the situation to see if you can help me: I have configured the firewall in Proxmox to access a container running Proxmox Backup Server. The rules I’ve applied to the PBS container are the following: Block any request and protocol from any IP. Allow TCP...