Refers to Proxmox VE Firewall version 8.3.1 and above.
Can someone explain to me what is the point of the 'Input policy: DROP' firewall option in Dataceter level? Because it has never worked.
The rules at Host level take precedence over rules at Datacenter level, so if the Host has the firewall disabled, it will accept everything, and if the Host has the firewall enabled, it will also accept everything (with empty Host firewall), because the Host does not have the default policy and does not inherit it.
Can someone explain to me what is the point of the 'Input policy: DROP' firewall option in Dataceter level? Because it has never worked.
The rules at Host level take precedence over rules at Datacenter level, so if the Host has the firewall disabled, it will accept everything, and if the Host has the firewall enabled, it will also accept everything (with empty Host firewall), because the Host does not have the default policy and does not inherit it.
