I'm starting to play around with the Proxmox firewall in the web GUI, and after enabling it with no rules which locked me out of the GUI and then disabling the firewall via my KVM, I have started adding rules at the datacenter level for all of the various Proxmox services before I enable it again. The macros save a decent amount of time and I was wondering why there are none for the majority of the PVE ports/services. Looking at the main Firewall page on the wiki there is a list of ports used so adding them is easy enough but having a set of macros would make the initial set up much faster.
Personally I would want to new macros, one each, for the web interface, the corosync ports, the live migration ports, and lastly the VNC web console ports. That, along with the existing SSH and SPICE macros, should cover most of the ports that are used on the hypervisors. Having an additional macro that includes all of those listed on the wiki could also be helpful as long as they are also available separately.
Personally I would want to new macros, one each, for the web interface, the corosync ports, the live migration ports, and lastly the VNC web console ports. That, along with the existing SSH and SPICE macros, should cover most of the ports that are used on the hypervisors. Having an additional macro that includes all of those listed on the wiki could also be helpful as long as they are also available separately.