[SOLVED] Host unreachable with firewall

Laurent Minne · Nov 29, 2018

Hello all,
I am currently configuring my firewall and I have an issue when I activate it I can't reach my host...

So, my case :

I have add two rules in "Datacenter" to open 22/tcp & 8006/tcp, the source is set at 0.0.0.0 and the destination is set up at 149.202.X.X.

Content of /etc/pve/firewall/cluster.fw

Code:

[RULES]
IN ACCEPT -i vmbr0 -source 0.0.0.0 -dest 149.202.X.X -p tcp -dport 8006 -sport 8006 # Proxmox WebGUI
IN SSH(ACCEPT) -i vmbr0 -source 0.0.0.0 -dest 149.202.X.X # SSH Access

When I switch to enable the firewall on the "Datacenter" my proxmox become unreachable after few seconds...

I don't understand where is my misstake.

Someone have idea to help me ?

In advance thank you for your interest.

dcsapak · Nov 29, 2018

Laurent Minne said:
-sport 8006

this looks wrong, since the source port is (often) randomized by the client

Laurent Minne · Nov 29, 2018

dcsapak said:
this looks wrong, since the source port is (often) randomized by the client

Thanks for your return I do the modification immediately.

For SSH have you an idea ?

mira · Nov 29, 2018

If you remove the source address it should be any (0.0.0.0/0). If you specify one it is assumed to be /32.

Laurent Minne · Nov 29, 2018

Many thanks for your answer !

I'll test that soon as possible and I'll give a feedback ;-)

Laurent Minne · Dec 3, 2018

It is solved.

Thanks for your help !

Search

Search

[SOLVED] Host unreachable with firewall

Laurent Minne

New Member

dcsapak

Proxmox Staff Member

Laurent Minne

New Member

mira

Proxmox Staff Member

Laurent Minne

New Member

Laurent Minne

New Member

We value your privacy