[SOLVED] fwbr/fwpr/fwln interfaces although firewall is disabled

gobindalberto · Dec 16, 2024

Hello,

I have tap/fwbr/fwpr/fwln interfaces for each VM interface although I have Proxmox firewall disabled on cluster, node and all vms. I have enabled the firewall once, but disabled it again.

Example:

Code:

# ip a|grep 104
22: tap104i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr104i0 state UNKNOWN group default qlen 1000
23: fwbr104i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
24: fwpr104p0@fwln104i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr0 state UP group default qlen 1000
25: fwln104i0@fwpr104p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr104i0 state UP group default qlen 1000

Is this intended behaviour, or leftover from the once enabled, now disabled firewall?

shanreich · Dec 16, 2024

gobindalberto said:
Is this intended behaviour, or leftover from the once enabled, now disabled firewall?

Firewall interfaces always get created, even if the firewall isn't active - if you want to disable generating firewall bridges, then you need to disable the firewall at the network device level.

gobindalberto · Dec 16, 2024

Yes, I was missing the firewall setting on the interface. After deactivating it the bridges are gone. Solved! Thank you!

Search

Search

[SOLVED] fwbr/fwpr/fwln interfaces although firewall is disabled

gobindalberto

New Member

shanreich

Proxmox Staff Member

gobindalberto

New Member

We value your privacy