firewall

Hello, I know this topic is already discussed thousens times here in the forum, but it seems that my issue is somehow different.. The moment I activate a firewall interface for any of my guests I start receiving so called "alarms" like this one: Oct 01 10:19:26 proxmox-node-1.home.lan kernel...

Hi, I have some problems getting the LXC firewalls managed by Proxmox to work. This is my pve setup: auto lo iface lo inet loopback iface enp9s0 inet manual auto vmbr0 iface vmbr0 inet static address xxx.xxx.xxx.227/32 gateway xxx.xxx.xxx.193 bridge-ports enp9s0...

Hi to all, we're experiencing a problem with firewall on a proxmox cluster and after few tests it seems it'a a linux bridge problem The packet capture show that fragmented packets passing through the bridge are reassembled and sent out. This is causing us some problems, even if proxmox cluster...

Installation and configuration of FireboxV , Watchguard Firewall appliance FireboxV. Download the virtual appliance from the Watchguard official site: https://software.watchguard.com Save the OVF version, checking the file with the checksum linux utility You can do it from the shell by going...

Hello, I am trying to find more information about Proxmox Cluster networking, and specially the use of ports 22, 5404 and 5405 for intra cluster communication. I feel like the PVE admin guide could be updated with more accurate information (some of which I am contributing in this thread). I...

I am not able to ssh into the proxmox server I have tried copying the RSA pub_key to the remote server using this command. ssh-copy-id -i ~/.ssh/id_ed25519.pub root@192.xxx.xx.2 It says timed out. the UFW is disabled on the destination proxmox server. The firewalls are empty in the Proxmox Web...

Idea: I currently have two machines at home with config below: Machine 1: Case: Lenovo ThinkstationC30 CPU:2 x E5-2640V2 Motherboard: Lenovo Proprietary Memory: 64GB ECC Ram Storage: 120GB MSata Drive for Proxmox OS 1TB 7200rpm Sratch Drive 2x 3.5 Seagate NAS IronWolf 2 TB ( Slow VM...

Hi, So I've tried to setup the Firewall to reject all requests except ones on certain ports - those being SSH, tcp 8080 + the ports for a Java Minecraft Server The Minecraft ports are setup as a Security Group at the Datacenter Level The VMs Firewall config looks like this At a VM level...

Loving PBS but it would great to see the following added as standard so that it's more inline with PVE. I wondered if the below was on the roadmap for the future and if anyone else might find these useful: Firewall management (like PVE) Whilst I know I can use IPTABLES for the firewall element...

I have installed proxmox through virtualbox on my window OS. The installation is done until i get the ip address for the server. I've tried to access the WEB GUI using the ip address given but it says "This site can't be reached" "ERR_CONNECTION_TIMED_OUT" but my internet connection is still...

Hello, I can´t figure out how to get this done. What i have: I have one public IP on a Rootserver connected to PVE via ens3 bridged to vmbr0 where Gateway and IP are set. I also created a new network to masquerade vmbr0 to vmbr1 for connection between Containers on Subnet 10.10.10.1/24 auto...

Hallo zusammen, ich habe aktuell das Problem, das er Agent im Gast nicht antwortet qm agent <id> ping Der Dienst ist im Windows als laufend angezeigt. Die VM ist auch mit Qemu Agent aktiviert Innerhalb des Gastes habe ich noch eine Firewall. Muss ich diese auch für den Agent freischalten, wenn...

Hello there, i got an error message i seem to unable to resolve myself: sylux pve-firewall[1416]: status update error: iptables_restore_cmdlist: Another app is currently holding the xtables lock. Perhaps you want to use the -w option? I found another thread here, where ip filtering should be...

Hey all, i am trying to create a watchdog that will listen to proxmox firewall files and will alert me when a fw rule was modified. I am using python watchdog package. when I modify the file (directly from shell) my watchdog is notice that and alert me. When editing the same firewall file...

This is a POLL thread in an attempt on covering all the models of firewall and Proxmox to help us better guage the future direction which we all collectively think that Proxmox should be supporting. Assumption must be made here for brevity of your reply: you make uses of Debian 10.6 and Proxmox...

Hello! I need to get the firewall options from all my VMs via an API call. I found out that the optional parameters are not sent at all when they are at the default values. But the API Viewer shows the default values just for dhcp, enable, macfilter, ndp as boolean 0. The other parameters have...

I finally managed to fully enable the firewall (Input+Output DROP) on all of my VMs, including a Samba AD DC and a Samba File Server. Since the firewall macro "SMB" is not sufficient in this case, and because I didn't find an answer in the forums, here are the necessary directives: Samba AD DC...

Goood evening, I have a question about the Firewall in Proxmox. I have the attach file. I want the IPs of this site https://www.countryipblocks.net/acl.php blocked for Internet Security. After a certain size, the IP addresses that I can insert per section become smaller and smaller. Is there...

Hello, I am not sure if I hit a bug so I try to check it before submitting the bug. I created firewall for VM and the outgoing filter in iptables looks like this: Chain tap101i1-OUT (1 references) pkts bytes target prot opt in out source destination 0...

Hello! I noticed a weird behaviour regarding firewall rules with my OPNsense VM, where i don't know what is causing it and wheter it's a problem or not. I'm trying to setup a DMZ (virtually, with a bridge) in addition to LAN and WAN interfaces (both physical; 3 in total but one for the proxmox...