Firewall rules not working

P

punjprateek

Active Member
Jul 26, 2021
71
1
28
31
India
Hi, I am trying to disable VMs' outbound access to the parent node on ports 22 and 8006. I could'nt get the Proxmox Firewall to work. Even when the rules are set to drop I am still able to access the WebUI through VMs'

What I did :
1. Enabled access to Proxmox WebUI and SSH at datacenter level firewall
2. Enabled Datacenter firewall
3. Disable VM firewall outbound to ports 8006 and 22

Ps:
I want to isolate vm from communicating to each other and unable to access proxmox gui and ssh
 
hi,

did you set up the rules on the right interface for the VMs?

please show us what you have
 
punjprateek said:
Even when the rules are set to drop I am still able to access the WebUI through VMs'
Click to expand...
you only have the rule for SSH so the webgui being accessible is normal :)

i'd also add a destination field for your rule (otherwise your VMs won't be able to SSH anywhere at all).
 
@oguz
Ok, So to clarify a bit more. I have two Bridges (vmbr0 and vmbr1). vmbr0 is default bridge for Proxmox and vmbr1 is what VMs will be using.

Below are the rules I set at the Data center level (so I am able to Access the SSH and WebUI)
1638791511129.png


Similarly These are the Rules set at the Node level. (Currently set to block all SSH traffic for testing purposes.)
1638791520341.png


I am out of Ideas really what is wrong. I just could not get the firewall rules to work. I still am able to connect to SSH or WebUI without any issues.
 
Last edited:
can you also show us your network config from /etc/network/interfaces ?

and are the vm-ips declared correctly?
 
You must log in or register to reply here.
Top Bottom