can't connect to WebUI through second bridge

kingofkeks

New Member
Jun 7, 2022
6
1
3
Hi folks,

I setup Proxmox on a server with 4 network ports (+management port). On Port 1 I have my Production network with bridge0 in a 192.168/16 Network. On Port 2 I have my Test network with bridge1 on a 10.0/16 Network.
I did the initial setup on Port 1. Because I have a vServer on Bridge1, that would interfere with a server in my production network, I disconnected Port 1. To be able to still connect to my Test Network i have a VPN setup, that works great. I can access all the other 10.0/16 Adressess I need, except for the IP i set on bridge1 for Proxmox.

Do i have to change a setting on my Proxmox host, so that it listens on bridge 1?
 
Hi,

can you ping the Proxmox server on the second interface? Just to make sure you are using https://<host>:8006 the "s" is important :).
 
Hi,

I can't ping to the second interface either. What's also strange is i can't even ping the VMs from the Proxmox host. When I try to I get "destination host unreachable". I'm aware of the essential "s" :p
 
Proxmox listens to all interfaces per default. How do your routes look can you take a look at ip route?
 
This is the output of ip route:

default via 192.168.0.1 dev vmbr0 proto kernel onlink
10.0.0.0/16 dev vmbr1 proto kernel scope link src 10.0.0.9
192.168.0.0/16 dev vmbr0 proto kernel scope link src 192.168.200.5

vmbr0 is on interface 1, vmbr1 is on interface 2
 
This is my interfaces file:

auto lo
iface lo inet loopback

iface eno1 inet manual

iface enp102s0f0np0 inet manual

iface enp102s0f1np1 inet manual

iface eno2 inet manual

auto vmbr0
iface vmbr0 inet static
address 192.168.200.5/16
gateway 192.168.0.1
bridge-ports eno1
bridge-stp off
bridge-fd 0
#Lan

auto vmbr1
iface vmbr1 inet static
address 10.0.0.9/16
bridge-ports eno2
bridge-stp off
bridge-fd 0
#Wan

-------------------------------------------------
I thought maybe it might have something to do with the gateway, so I set it on vmbr1 and commented out the one on vmbr0, but doing that i got no connection whatsoever and had to log in locally to revert the changes
 
The config looks pretty normal to me ;). Since you can't reach it and it looks like it is up (you could check ip a if it really is). Is there some kind of VLAN defined on the switch it is connected to? Or maybe is the firewall active?
 
ip a Looks normal. The entries for eno1 and eno2 (the interfaces) are identical and the entries for vmbr0 and 1 are identical (except for the ip/net of course) and both interfaces show state UP. The firewall was active on the host, but after disabling it I still can't connect using the 10 address. I even did a reboot. nada. vlan is not active on my network.
 
hm .... you could try to use something like tcpdump --interface eno2 to see which traffic going over the interface.

One other thing, just to make sure the /16 netmask is configured on the other hosts as well?
 
  • Like
Reactions: kingofkeks
I think I know what's wrong. The Firewall I'm running is establishing a connection between vmbr1(Wan-side) and vmbr0(Lan-side) and the IP Adress 10.0.0.9/16 is on the wan side of my testnetwork. Not on the Lan side. So I have to change my "main" IP Address to be able to Access my Proxmox host I think. Going to Test. brb

Edit: Yes! That was it! I just had to view the problem from a different angle. Thank you shrdlicka. That tcpdump tip gave me the right idea!
 
Last edited:
  • Like
Reactions: shrdlicka

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!