Firewall issue on 2nd nic

F

Fran66

Member
May 25, 2020
6
0
21
48
Hello,

Our nodes block ip traffic of VM via firewall on 2nd, 3rd, and so on but not on eth0 (1st main ip) if we disable the firewall everything works this only happens on "RHEL" flavors like Centos, Almalinux, Rocky, etc

On Debian flavors like Ubuntu and Debian all work.

Firewall is enabled on Datacenter, Nodes, VM, and ethernet card. In/out policy: accept.

Any insight?

regards,
Fran
 
Fixed:

All cloud-init images based on rhel, (rocky, almalinux, redhat, centos) had rp_filter=1 by default which is strict mode and needs to be changed to 2, (loose mode) edit them via virt and add the following:

Example:
virt-edit CentOS-7-x86_64-GenericCloud.qcow2 /etc/sysctl.conf

and add the following inside the file:

net.ipv4.conf.all.rp_filter=2
net.ipv4.conf.default.rp_filter=2
net.ipv4.ip_forward = 1
 
Last edited:
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom