I have access to VM without opening firewall ports!?

P

poing

New Member
May 31, 2022
4
1
3
I have a standard / simple setup:
  • 1 Proxmox server (latest update) with 1 network card
  • 2 virtual machines in bridge mode
  • simple network, router with DHCP & DNS.
The firewall is enabled on datacenter level, the node and each VM.

I could not RDP from a PC on the network to 1 of the VM's, so I had to allow it on that specific VM (=logic).

The 2nd VM with Home Assistant uses port 8123, here I'm confused: it just works without allowing port 8123. What am I missing, I don't understand...
 
hi,

there should be a macro to allow RDP access for this VM, don't forget to click the enable checkbox and set the IP of your VM :)
1654853496863.png

Did you change anything in your Firewall options? How are your input/output policies set?
 
Hi,

yes RDP works fine after setting the macro. My concern was (still is) that home assistant web page on another VM is accessible without opening anything.

Firewall is the default setting (except for opening RDP on 1 VM).

I have the idea that the firewall is very "open" by default?
 
please double check
- that the firewall service is running (pve-firewall status
- that the firewall is really enabled (at least on the cluster and the guest level)
- that all NICs involved have the firewall active
- that the INPUT policy is set to DROP or REJECT
 
  • Like
Reactions: poing and shrdlicka
fabian said:
please double check
- that the firewall service is running (pve-firewall status
- that the firewall is really enabled (at least on the cluster and the guest level)
- that all NICs involved have the firewall active
- that the INPUT policy is set to DROP or REJECT
Click to expand...
Ah yes off course Firewall flag on virtual NIC was not selected on the one VM.

Thanks a lot!
 
  • Like
Reactions: fabian
You must log in or register to reply here.
Top Bottom