2 nodes, 1 VM on each node. Cannot ping each other.

[c24]

Hello everybody,

I have two dedi's at Hetzner, on each Proxmox.
One VM runs on each Proxmox node (Debian 10)

The VMs can ping each of the following:
- oneself
- the own host node
- the other host node

BUT they cannot ping the other VM on the other host node.
(Destination Host Unreachable)

See picture of the setup.

All green arrows point from where to where, the ping works.
All red arrows point from where to where the ping does not work.

There is a VMBR on both host nodes which uses a Hetzner vswitch (vlan-id 4000).
(There is no proxmox vlan, only the vswitch of Hetzner is being used)
(All Firewall are "correct", every has the same effect even if all firewalls are off)

See the configs below the picture.

View attachment 24007
Proxmox HOST-NODE Config:
auto lo iface lo inet loopback iface eno1 inet manual auto vmbr0 iface vmbr0 inet static address 195.201.x.x/26 gateway 195.201.x.x bridge-ports eno1 bridge-stp off bridge-fd 0 pointopoint 195.201.x.x up ip route add 195.201.x.x/32 dev vmbr0 auto vmbr4000 iface vmbr4000 inet static address 10.12.0.2/24 bridge-ports eno1.4000 bridge-stp off bridge-fd 0 mtu 1400 post-up echo 1 > /proc/sys/net/ipv4/ip_forward post-up iptables -t nat -A POSTROUTING -s '10.12.0.0/24' -o vmbr4000 -j MASQUERADE post-down iptables -t nat -D POSTROUTING -s '10.12.0.0/24' -o vmbr4000 -j MASQUERADE

VM config (Debian 10):
auto lo iface lo inet loopback allow-hotplug ens18 iface ens18 inet dhcp auto ens19 iface ens19 inet static address 10.12.0.11 netmask 255.255.255.0 mtu 1400

Hope someone can help me please, because I do not get it.

Maybe someone has an Idea how to create a route which makes it work.

THANKS A LOT!

 

[aaron]

Please don't cross post

Most people who read the German forum, also read the English one. So you could just use the english forum. I already posted an answer to the german thread.