Hi, I'm new to Proxmox and hoping someone can help me with a setup question. I have proxmox connected to my ISP router, and then within that proxmox OPNsense running in a VM within proxmox that handles the firewall and everything for my internal network. I am trying to setup an LXC on the internal network side through the same proxmox machine but I cannot get the lxc to connect to OPNsense so I was wondering if someone could look through my settings to see if I'm missing something.
Some notes
network setup
ISP router (192.168.3.1)
|
|
Proxmox (192.168.3.2)
---->OPNSense (192.168.3.100 <--> 192.168.1.2)
|
|
Switch + 192.168.1.1 subnet
Relevent Network Setup in Proxmox
enp88s0: Autostart
enp3s0f0v7: Autostart
vmbr0: Autostart
Some notes
- All of OPNsense's interfaces are passed through with IOMMU or SR-IOV so not shared with the proxmox host.
- I have two linux bridges (vmbr0 and vmbr1). Both have assigned IP addresses in proxmox (one on internal network, one on ISP router side) and they both are verified connected to the network as I can access the proxmox webui from either address
- I am creating the LXC with the proxmox helper scripts for unifi network from here. When I assign it the vmbr0 I can create the lxc without problem except its on the wrong side of my network. When I create it with vmbr1 I can create the lxc but it can't access the network (and it doesn't matter if I use dhcp or statically assign the IP when creating the LXC)
- It doesn't appear to be a firewall problem as I'm not seeing anything arriving in OPNSense at all (blocked or not).
network setup
ISP router (192.168.3.1)
|
|
Proxmox (192.168.3.2)
---->OPNSense (192.168.3.100 <--> 192.168.1.2)
|
|
Switch + 192.168.1.1 subnet
Relevent Network Setup in Proxmox
enp88s0: Autostart
enp3s0f0v7: Autostart
vmbr0: Autostart
VLAN Aware
Bridge=enp88s0
IPv4/CIDR: 192.168.3.2/24
Gateway: 192.168.3.1 (ISP router)
vmbr1: AutostartVLAN Aware
Bridge=enp3s0f0v7
IPv4/CIDR: 192.168.1.60/24
Last edited: