Hey,
i got the basic setup running with one external IP and a internal proxmox net:
Basically 3 Nets with:
10.1.10.1 Pfsense <-> 10.1.10.0 Proxmox Host
192.168.55.1/24 for virtual Machines
The Proxmox Host is on a Hetzner Dedicated Server and is able to connect through the Hetzner VLAN to the Hetzner Cloud services i have.
10.0.0.X is cloud
10.0.1.X is dedicated world
but what do i have to configure on the Host and Pfsense to get the Proxmox VM to talk to e.g. 10.0.0.3 or 10.0.1.3 on the VLAN? tried a lot of various static routes, but so far no luck.
Thanks for the help
Host Config:
i got the basic setup running with one external IP and a internal proxmox net:
Basically 3 Nets with:
10.1.10.1 Pfsense <-> 10.1.10.0 Proxmox Host
192.168.55.1/24 for virtual Machines
The Proxmox Host is on a Hetzner Dedicated Server and is able to connect through the Hetzner VLAN to the Hetzner Cloud services i have.
10.0.0.X is cloud
10.0.1.X is dedicated world
but what do i have to configure on the Host and Pfsense to get the Proxmox VM to talk to e.g. 10.0.0.3 or 10.0.1.3 on the VLAN? tried a lot of various static routes, but so far no luck.
Thanks for the help
Host Config:
Code:
#Loopbacks
auto lo
iface lo inet loopback
iface lo inet6 loopback
iface eth0 inet manual
#Physical Intefaces
auto eno1
iface eno1 inet static
address XXX.XXX.XXX.218/26
gateway XXX.XXX.XXX.193
up route add -net XXX.XXX.XXX.192 netmask 255.255.255.192 gw XXX.XXX.XXX.193 dev eno1
# route XXX.XXX.XXX.192/26 via XXX.XXX.XXX.193
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -t nat -A PREROUTING -i eno1 -p tcp -m multiport ! --dport 22,8006 -j DNAT --to 10.1.10.1
post-up iptables -t nat -A PREROUTING -i eno1 -p udp -j DNAT --to 10.1.10.1
auto eno1.4000
iface eno1.4000 inet static
address 10.0.1.4
netmask 255.255.255.0
vlan-raw-device eno1
mtu 1400
up ip route add 10.0.0.0/16 via 10.0.1.1 dev eno1.4000
down ip route del 10.0.0.0/16 via 10.0.1.1 dev eno1.4000
#vSwitchHetzner
auto vmbr1
iface vmbr1 inet static
address 10.1.10.0/30
bridge-ports none
bridge-stp pff
bridge-fd 0
post-up iptables -t nat -A POSTROUTING -s '10.1.10.1/30' -o eno1 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.1.10.1/30' -o eno1 -j MASQUERADE
#pfSense WAN - PROXMOX VMLAN
auto vmbr3
iface vmbr3 inet static
address 192.168.55.2/24
bridge-ports none
bridge-stp off
bridge-fd 0
#PROXMOX VMLAN
Last edited: