Firewall VM with single IP?

K

kameleon

Member
Oct 19, 2022
5
1
8
Mississippi, USA
I have an OVH dedicated server that only has a single IP. I would like to secure this host by running a firewall VM but all the howtos I see use two IP's. How would I go about setting this up so that all traffic is routed through the firewall VM?

I am running Virtual Environment 7.2-7. I did find a nice writeup on using shorewall but that was from 2009 and did not apply to anything modern.
 
kameleon said:
I would like to secure this host by running a firewall VM
Click to expand...
You could use the built-in FW directly: https://pve.proxmox.com/pve-docs/chapter-pve-firewall.html

kameleon said:
How would I go about setting this up so that all traffic is routed through the firewall VM?
Click to expand...
It can be done by giving the single IP address the firewall VM directly and let the PVE webinterface and SSH get NAT'd through, but it's IMO a brittle setup that will make your host inaccessible if the FW VM fails to start - as long as you have an out of band access (IMPI/iKVM/...) to the server that may be fine, but I'd rather handle this on the PVE host directly or get another IP address.
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom