firewall

  1. [TUTORIAL] Firewall rules for a Samba AD DC

    I finally managed to fully enable the firewall (Input+Output DROP) on all of my VMs, including a Samba AD DC and a Samba File Server. Since the firewall macro "SMB" is not sufficient in this case, and because I didn't find an answer in the forums, here are the necessary directives: Samba AD DC...
  2. Question to Firewall IP Rule

    Goood evening, I have a question about the Firewall in Proxmox. I have the attach file. I want the IPs of this site https://www.countryipblocks.net/acl.php blocked for Internet Security. After a certain size, the IP addresses that I can insert per section become smaller and smaller. Is there...
  3. VM filters outgoing traffic using non existent ipset

    Hello, I am not sure if I hit a bug so I try to check it before submitting the bug. I created firewall for VM and the outgoing filter in iptables looks like this: Chain tap101i1-OUT (1 references) pkts bytes target prot opt in out source destination 0...
  4. OPNsense - weird behaviour

    Hello! I noticed a weird behaviour regarding firewall rules with my OPNsense VM, where i don't know what is causing it and wheter it's a problem or not. I'm trying to setup a DMZ (virtually, with a bridge) in addition to LAN and WAN interfaces (both physical; 3 in total but one for the proxmox...
  5. [SOLVED] Firewall ignores traffic vlan

    Hi, PVE - 6.3-3 Guest OS - Ubuntu 20.04.2 LTS netplan config: --- network: version: 2 ethernets: ens19: dhcp-identifier: mac dhcp4: true vlans: vlan5: accept-ra: false addresses: - 192.168.100.125/24 id: 5 link: ens19 For...
  6. pfSense VM - VLAN vergibt keine DHCP IP

    Hallo, ich habe das Problem das ich bei einem VLAN Netz, welches ich erstellt habe, keine IP zugewiesen bekomme. Ich nutzte eine pfSense Firewall die auf meinem Proxmox läuft. Ich habe ein VLAN 10 auf der pfSense und auf dem Cisco Switch erstellt. Das VLAN 10 soll für Gäste sein. Auf einer...
  7. Firewall for VMs

    Hey guys, I'm a little confused by the firewall settings in the Proxmox VE 6 GUI. I only have the role PVEVMAdmin, therefore I can only manage my VMs. My goal is to have 3 VMs on an "internal" network with all outgoing traffic block/drop expect SSH to VM1. Currently, the firewall is enabled on...
  8. Redirect a few ports via Firewall in HV

    Hello, I will need to redirect a few ports from the public subnet to the private one and of course restrict to specific ip. I use a docker on a virtual machine. Is it possible via using the Firewall available on HV? 172.30.10.100:3000 172.30.10.100:12003 Regards,
  9. All ports seems to be closed even after adding in firewall

    Hi All, I recently just installed Proxmox and it is working great except for the firewall part. I set up a vm and installed Unifi Controller in it. The necessary ports however are seemed to be blocked - I've added the ports in the OS layer as well as in Proxmox, from Datacenter all the way down...
  10. Pve Firewall droppt traffic

    Hallo, habe eine VM, die ein Interface hat und mit nem Vlan tag versieht. Bridge ist Vlan aware, alles funktioniert. Wenn ich die Firewall für das Interface aktiviere wird jeglicher Traffic gedroppt obwohl alle Policies auf ACCEPT gestellt sind und die Firewall durchgängig sowohl für den...
  11. [SOLVED] PVE Firewall ignores traffic from public IP

    Hello, I use the firewall built into Proxmox which is great. On the private network (172.16.10.x ) the firewall works and blocks what is not explicitly opened (Input Policy: DROP, OUTPUT Policy: ACCEPT), but when I use a public IP, the firewall totally ignores the rules and all traffic on the...
  12. se4n_1

    Default Proxmox Firewall Settings

    Morning, So I would like to compartmentalize my containers in proxmox with the proxmox firewall. Currently in datacenter options I have: firewall=no If I modify this to firewall=yes with firewall options out ACCEPT and in ACCEPT in the firewall tab in the datacenter, is this the same rules as...
  13. Proxmox NAT on GUI for everyone!

    Hi everyone. I want to share with everyone my development that simplifies working with NAT in Proxmox. This development allows you to create NAT rules directly from the proxmox WebGUI. I think that you will appreciate my development, because I once faced such a problem and went through this...
  14. pve firewall

    I am completely lost with the firewall configuration on two Hetzner nodes, each with proxmox 6.3-1 and pve-firewall 4.1-3. Let's call them node1 and node2. On both nodes Datacenter Firewall is enabled with ebtables=yes, input policy=DROP, Output policy=ACCEPT and no rules. On node 2 there is a...
  15. nftables interface not available at boot?

    I'm using nftables to implement firewall rules. I have some rules which I need to apply to vmbr1 and the fwbr interfaces. I create my test config file thus: #!/usr/sbin/nft -f flush ruleset table netdev filterearly { chain ingress { type filter hook ingress device...
  16. [SOLVED] Fans ramp up on bridge network

    I am using proxmox 6.3-3 as main vm host. I am hosting my firewall in it. The problem is when I am doing network bonding on my nas server (bsd) the proxmox host fans ramp up and it is roaring until I shutdown/restart the nas box. So my current desktop I tried same network bonding and same thing...
  17. Root Server with Proxmox behind virtualized FW

    Hello everyone, I know there are already many threads on this topic, but so far nobody has helped me. My structure looks as follows: Rented root server at Hetner with fixed ipv4 and an additionally booked ipv4. On the Proxmox runs an OPNsense firewall. All VMs hang in the LAN behind the...
  18. [TUTORIAL] Aussperrschutz, wenn man an der Proxmox Firewall (iptables) rumschraubt

    Wer kennt das nicht, man will die PVE Kiste securen und erstellt Rules in den iptables. Plötzlich hat man sich selber ausgesperrt. Ärgerlich und kann dann nur noch mittels Rescuemodus behoben werden. Bei grossen Kisten mit vielen VMs ist das nicht sonderlich toll. Habe mir ein Script...
  19. [SOLVED] Firewall GUI rule activation

    When adding firewall rules via die GUI, does one have to activate the rules from the command line? How are the rules loaded/activated otherwise?
  20. Firewall rules number column not wide enough and cannot be resized

    When 10 or more rules are created, the column width for the rule number is not wide enough to display the full number and it cannot be resized the way other columns can. Can this be remedied please?

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE and Proxmox Mail Gateway. We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!