sdn

Built a Terraform module for managing Proxmox SDN declaratively: zone, VNets, subnets, host gateway IPs on the `vnet*` bridges, SNAT/masquerade rules, and dnsmasq DHCP from a single `vnets` map. The two modes that ended up being most useful in practice: Host-routed: Proxmox owns L3, NAT, and...

Dear all, i have a couple of EJBCA appliances to setup on proxmox for a PKI infrastructure. They are on different subnets and SDNs. I'm following this exact procedure: https://docs.keyfactor.com/software-appliance/latest/ejbca/configure-static-ipv4-and-or-ipv6-addresses but for some reasons...

Hi everyone, I would like to propose an enhancement for Proxmox VE: Resource Pool Quotas and Scoped Self-Service VM Provisioning. Proxmox VE already provides users, groups, roles, ACLs, resource pools, templates, Cloud-Init, SDN and a powerful API. This works well for granting access to...

Hey everyone, I am setting up Proxmox to use EVPN Zones, and then advertise routes to these zones to my core router with FRR and BGP, with the goal being a highly available/ECMP routing setup so that I can take cluster members down and etc, but still be able to route into the SDN. I also want...

Hello Team I'm running a mix of point to point and and point to multipoint networking in the cluster which I'd love to configure from the Fabric SDN configuration. I see some patches being made ready however these do not seem ready to be release, perhaps in the test apt repo? [PATCH...

Built a Terraform module for managing Proxmox SDN declaratively: zone, VNets, subnets, host gateway IPs on the `vnet*` bridges, SNAT/masquerade rules, and dnsmasq DHCP from a single `vnets` map. The two modes that ended up being most useful in practice: Host-routed: Proxmox owns L3, NAT, and...

Hopefully this is useful. I believe I can submit a patch if this is acceptable. Background: I have a pfSense firewall that separates my current network environment. I wanted to deploy multiple new segments for some workloads I wanted to run. I didn't want to have to keep creating interfaces...

Hello ! Setup : 3 nodes cluster (important, nodes are on DIFFERENT physical sites, and I'm assuming no private network between them, to be extra cautious), added all nodes in a SDN vxlan zone + created a VNet (subnet 10.6.6.0/24 with gateway = 10.6.6.1) installed OPNSense in a VM on node 1...

I'm using Virtual Environment 9.1.6 with an EVPN network at Hetzner. I've noticed that the number of errors and dropped packets on the vrf_evpn interface keeps growing, but the network is working fine or at least that's how it seems to me. There are no errors on other interfaces. I reduced the...

The idea is to handle cases where multiple SDN applies are triggered back-to-back (like from automation) while a reload is already ongoing at Time X. Instead of just failing with a "Task Locked" error, the plugin would queue the request. If even newer requests come in while it's still busy, it...

Hello, Can i use Isolated ports in SDN-VNets and make only OPNsense interface with no isolation? pve-manager/9.1.1

Hello, I have a three-node cluster with two rings. 1. One full ring between the three nodes. Similar to the configuration shown here: https://pve.proxmox.com/wiki/Full_Mesh_Network_for_Ceph_Server#Example 2. And one "uplink" ring of the "e0np0" interfaces as shown here (derived picture from...

Hello everyone, I am currently testing the Proxmox SDN features (Proxmox VE 9.1.5) and trying to get automatic DNS registration with PowerDNS working within an EVPN Zone. My Goal: I want VMs to automatically register their hostname and IP in my PowerDNS server when started. My Setup: SDN...

Hi, I'm trying to configure a Proxmox SDN. We have two sites connected via Layer 2 switching and over that a Layer 3 EVPN I've configured a controller with two peers which are two VyOS routers. One is in site A and one is in site B Ideally, I'd like site A traffic to route via the Site A...

Hello everyone, I have a question about the SDN stack in Proxmox. Currently, traffic in the EVPN/VXLAN networks breaks out via the host interface that has the default route. Is there an officially supported way to change or define which interface is used without manually editing route maps in...

Hi, It would be nice if there was an option to prevent IPv6 Link-Local happening on the bridges that get created, in my setup I've created a VNET for each VLAN I need but I noticed each bridge has a IPv6 Link-Local, which means the host is listening on that network, ideally the host shouldn't...

Hello, I'm trying to deploy multiple isolated instances of the same VM scenario in Proxmox using SDN zones, but I'm running into a problem when enabling SNAT for internet access. What works: Multiple SDN Simple zones, each containing identical VMs With snat=0: Perfect isolation - VMs in...

Current implementation of EVPN stack explicitly generates blackhole (null0) routes for each VRFs' each subnet that prevents zones to communicate with each other on exit nodes. This behavior is undesired in setups where all nodes are also exit nodes: this happens when the nodes have dedicated...

Hallo zusammen, ich arbeite mich gerade in Proxmox ein und habe zu diesem Zweck einen kleinen 3-node Testcluster als Spielwiese aufgebaut. Nun würde ich gern dafür sorgen, dass für jede VM, die ich erstelle, automatisch ein passender DNS-Eintrag angelegt wird. Dazu würe ich gern die native...

we miss the checkbox to enable vlan-aware in SDN/VNet configuration. Te checkbox is available in GUI vmbr config but not in SDN/vnet configuration. I can set is manually in sdn config file: iface vnet0 hwaddress XX:XX:XX:XX:XX:XX bridge_ports vxlan_vnet0 bridge_stp off...