help : Proxmox OPNsense no DHCP IP address on NIC interface when connected to a device.

K

Klassbond

New Member
Jan 11, 2023
4
1
3
I am new to proxmox and OPNsense .
I have read all the documentation but cannot seem to find a solution to my problem:

I have Lenovo Thinkcentre with for NIC card running proxmox virtualised.
This is what my proxmox set-up is.

Code: 
auto lo
iface lo inet loopback

auto eno1
iface eno1 inet manual

auto enp1s0f0
iface enp1s0f0 inet manual

auto enp1s0f1
iface enp1s0f1 inet manual

auto enp1s0f2
iface enp1s0f2 inet manual

auto enp1s0f3
iface enp1s0f3 inet manual

iface wlp3s0 inet manual

auto vmbr0
iface vmbr0 inet static
        address 192.168.0.**/24
        gateway 192.168.0.1
        bridge-ports eno1
        bridge-stp off
        bridge-fd 0

auto vmbr1
iface vmbr1 inet manual
        bridge-ports enp1s0f0
        bridge-stp off
        bridge-fd 0
#LAN

auto vmbr2
iface vmbr2 inet manual
        bridge-ports enp1s0f1
        bridge-stp off
        bridge-fd 0
#LAN

Vmbr2 is my OPT1 network in OPNsense which has a network of 192.168.99.1/24 to be used as management network as below
OPT1 Lan assignment.PNG

which is linked to vlan 10 -50

OPT1 Lan assignment 2.PNG


I have enabled interface OPT1 and set-up DHCP as follows
OPT1- DHCP assignment.PNG

However i am not getting an ip address when i connect a machine to the NIC on the thinkcenre for em2. see again for validation on proxmox
1673472211900.png

see set-up in OPNsense VM for the OPT1 as Vmbr2 below.

1673472306502.png

I have also attempted plugging a pc to Vmbr1 which also does not get an IP address.

please help , not sure where i have gone wrong
 
Easy stuff first.

Use paravirtualized VirtIO and not e1000 for those opnsense network devices in Proxmox And turn off the Proxmox firewall for now on each as well.

first picture from OPNsense webgui - why are your lan and wan in the same 192.168.0.0 subnet? 192.168.0.100 and 192.168.0.111
 
Last edited:
vesalius said:
Easy stuff first.

Use paravirtualized VirtIO and not e1000 for those opnsense network devices in Proxmox And turn off the Proxmox firewall for now on each as well.

first picture from OPNsense webgui - why are your lan and wan in the same 192.168.0.0 subnet? 192.168.0.100 and 192.168.0.111
Click to expand...


Hi Vesalius,

Thank you, I have made the changes you recommend and I have made some progress on this. With your recommendation my OPT1 interface is now working. It is able to give out DHCP address to connected devices to the attached port on proxmox server. I also used this opportunity to test that all my NIC ports work by interchanging the ports linked to OPT1 and each time they all give out DHCP address . Also using e1000 instead of paravirtualised VirtIO worked with firewall removed, but i have stuck with your recommendation and used Paravirtualised VirtiO.

Here is the set-up now

Code: 
auto lo
iface lo inet loopback

auto eno1
iface eno1 inet manual

auto enp1s0f0
iface enp1s0f0 inet manual

auto enp1s0f1
iface enp1s0f1 inet manual

auto enp1s0f2
iface enp1s0f2 inet manual

auto enp1s0f3
iface enp1s0f3 inet manual

iface wlp3s0 inet manual

auto vmbr0
iface vmbr0 inet static
        address 192.168.0.11/24
        gateway 192.168.0.1
        bridge-ports eno1
        bridge-stp off
        bridge-fd 0

auto vmbr1
iface vmbr1 inet manual
        bridge-ports enp1s0f1
        bridge-stp off
        bridge-fd 0
#LAN

auto vmbr2
iface vmbr2 inet manual
        bridge-ports enp1s0f0
        bridge-stp off
        bridge-fd 0
#OPT1 LAN



OUTSTANDING ISSUE.
The Main LAN network (LAN) still does not work even after validating all NIC cards are working. I even changed the IP address on the LAN interface for OPNsense to 172.16.1.1/24 network and it still does not give out DHCP for this interface. Same outcome when I used IP address in the same range of my WAN interface.


Here is LAN interface
1673717604056.png

What I have found interesting since getting the OPT1 interface to give out DHCP, i am now able to connect and manage OPNsense webgui from the 192.168.99.** subnet even though management should be the LAN interface.


LAN Interface - with DHCP enabled similar to the OPT1 Lan

1673718438300.png


Any idea what could be the root cause? I have looked into unvound DNS being turned on the LAN and diabled this, That has not made any difference either. So I have just turned unbound back on again on the LAN interface.

Kind regards
 
Last edited:
Virtio uses less CPU and has a higher throughput ceiling than e1000, so the rule of thumb would be not to use e1000 ever unless some specific reason or incompatibility forces you.

Just so things are clear, WAN plugs into which interface [eno1, enp1s0f(0,1,2,3)] on the proxmox node?

Is WAN supplied from an ISP Router and is that is also doing DHCP?

The 2 images below suggest to me that LAN is using vmbr0, [vtnet0=Network Device (net0)=vmbr0] and WAN is using vmbr1, [vtnet1=Network Device (net1)=vmbr1], BUT your /etc/network/interfaces files comments (#LAN) describe vmbr1 as LAN.

1673717604056-png.45608
1673472306502-png.45490
 
Last edited:
vesalius said:
Virtio uses less CPU and has a higher throughput ceiling than e1000, so the rule of thumb would be not to use e1000 ever unless some specific reason or incompatibility forces you.

Just so things are clear, , enp1s0f(0,1,2,3)] on the proxmox node?

Is WAN supplied from an ISP Router and is that is also doing DHCP?

The 2 images below suggest to me that LAN is using vmbr0, [vtnet0=Network Device (net0)=vmbr0] and WAN is using vmbr1, [vtnet1=Network Device (net1)=vmbr1], BUT your /etc/network/interfaces files comments (#LAN) describe vmbr1 as LAN.

1673717604056-png.45608
1673472306502-png.45490
Click to expand...

I literally looked into this again. thanks for asking . I can confirm WAN plugs into which interface eno1 on proxmox node.
yes WAN has dhcp from my router however i have configured static IP for wan interface eno1

The 2 images below suggest to me that LAN is using vmbr0, [vtnet0=Network Device (net0)=vmbr0] and WAN is using vmbr1, [vtnet1=Network Device (net1)=vmbr1], BUT your /etc/network/interfaces files comments (#LAN) describe vmbr1 as LAN.
Click to expand...

The two images for WAN using vmbr0 and LAN vmbr1 is correct. The /etc/network/interface/ you are looking at is now outdated since i made changes afer your recommendation to use Virtio instead of E1000.

The GOOD NEWS is that after you flagged my inteface LAN and WAN using vmbr0 and vmbr1 respectively, I switched the configuration all over again and my LAN and OPT1 interface are now working as it should. I now get DHCP on connected devices to the LAN and OPT1 interface and can ping the internet ( haven't set-up firewall restrictions yet). So this turned out well. Thanks alot for your help. I believe the use of Virtio paravirtualised made the big difference since I had previously on numerous attempted switched LAN and WAN between vmbr0 and vmbr1 without getting DHCP to work earlier before opening a help request here.
 
  • Like
Reactions: vesalius
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back