Hello,
I tried to configure my ProxMox but unfortunately I couldn't. I have try to make a bridge off wg0 but it's not working.
I would like to make a configuration so that the LXC containers have a public IPv4 address which is connected on the WireGuard client of the ProxMox server.
I have an OVH server with additional IPs with a WireGuard server configured. With an IP range of /30. (46.105.XXX.116/30). I have configured the WireGuard server for forwading IP in sysctl.conf:
net.ipv4.ip_forward=1
net.ipv4.conf.all.proxy_arp=1
Configuration off the WireGuard client on the ProxMox server:
[Interface]
PrivateKey = [private key]
Address = 46.105.XXX.116/32, 46.105.XXX.117/32, 46.105.XXX.118/32, 46.105.XXX.119/32
DNS = 1.1.1.1,8.8.8.8
[Peer]
PublicKey = [public key]
PresharedKey = [preshared key]
Endpoint = 37.187.XXX.171:52490
AllowedIPs = 0.0.0.0/0,::/0
So far everything is working fine, checking via "ip a" on the ProxMox server I have this:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr0 state UP group default qlen 1000
link/ether 38:22:e2:1a:dc:fb brd ff:ff:ff:ff:ff:ff
altname enp6s0
3: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 38:22:e2:1a:dc:fb brd ff:ff:ff:ff:ff:ff
inet 192.168.0.22/24 scope global vmbr0
valid_lft forever preferred_lft forever
inet6 fe80::3a22:e2ff:fe1a:dcfb/64 scope link
valid_lft forever preferred_lft forever
4: wg0: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1420 qdisc noqueue state UNKNOWN group default qlen 1000
link/none
inet 46.105.XXX.116/32 scope global wg0
valid_lft forever preferred_lft forever
inet 46.105.XXX.117/32 scope global wg0
valid_lft forever preferred_lft forever
inet 46.105.XXX.118/32 scope global wg0
valid_lft forever preferred_lft forever
inet 46.105.XXX.119/32 scope global wg0
valid_lft forever preferred_lft forever
And I can access ProxMox interface through any of the IPS. The IPs therefore work correctly on the ProxMox server:
https://46.105.XXX.116:8006/, https://46.105.XXX.117:8006/, https://46.105.XXX.118:8006/, https://46.105.XXX.119:8006/ and https://192.168.0.22:8006/
But the question is: How can I assign one of the WireGuard client IPs to a container?
If someone can explain to me the configuration to be done to create a bridge or configure the routed network, I would be very grateful because it has been bothering me for several days.
Happy Holidays to all and thank you very much in advance!
I tried to configure my ProxMox but unfortunately I couldn't. I have try to make a bridge off wg0 but it's not working.
I would like to make a configuration so that the LXC containers have a public IPv4 address which is connected on the WireGuard client of the ProxMox server.
I have an OVH server with additional IPs with a WireGuard server configured. With an IP range of /30. (46.105.XXX.116/30). I have configured the WireGuard server for forwading IP in sysctl.conf:
net.ipv4.ip_forward=1
net.ipv4.conf.all.proxy_arp=1
Configuration off the WireGuard client on the ProxMox server:
[Interface]
PrivateKey = [private key]
Address = 46.105.XXX.116/32, 46.105.XXX.117/32, 46.105.XXX.118/32, 46.105.XXX.119/32
DNS = 1.1.1.1,8.8.8.8
[Peer]
PublicKey = [public key]
PresharedKey = [preshared key]
Endpoint = 37.187.XXX.171:52490
AllowedIPs = 0.0.0.0/0,::/0
So far everything is working fine, checking via "ip a" on the ProxMox server I have this:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master vmbr0 state UP group default qlen 1000
link/ether 38:22:e2:1a:dc:fb brd ff:ff:ff:ff:ff:ff
altname enp6s0
3: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
link/ether 38:22:e2:1a:dc:fb brd ff:ff:ff:ff:ff:ff
inet 192.168.0.22/24 scope global vmbr0
valid_lft forever preferred_lft forever
inet6 fe80::3a22:e2ff:fe1a:dcfb/64 scope link
valid_lft forever preferred_lft forever
4: wg0: <POINTOPOINT,NOARP,UP,LOWER_UP> mtu 1420 qdisc noqueue state UNKNOWN group default qlen 1000
link/none
inet 46.105.XXX.116/32 scope global wg0
valid_lft forever preferred_lft forever
inet 46.105.XXX.117/32 scope global wg0
valid_lft forever preferred_lft forever
inet 46.105.XXX.118/32 scope global wg0
valid_lft forever preferred_lft forever
inet 46.105.XXX.119/32 scope global wg0
valid_lft forever preferred_lft forever
And I can access ProxMox interface through any of the IPS. The IPs therefore work correctly on the ProxMox server:
https://46.105.XXX.116:8006/, https://46.105.XXX.117:8006/, https://46.105.XXX.118:8006/, https://46.105.XXX.119:8006/ and https://192.168.0.22:8006/
But the question is: How can I assign one of the WireGuard client IPs to a container?
If someone can explain to me the configuration to be done to create a bridge or configure the routed network, I would be very grateful because it has been bothering me for several days.
Happy Holidays to all and thank you very much in advance!
Last edited: