Networking for web proxy + clients on Proxmox?

[victorhooi]

Hi,

I'd like to setup a web proxy on Proxmox, and some Windows clients behind it, to do some testing.

What is the best way of hooking up this networking setup in Proxmox?

Essentially, I'm confused about 1. how to setup two interfaces on the web proxy, one that's bridged, and one in it's own private network, and 2. how to connect the clients only to this private network. Do I need to look into openvSwitch for this, or does the inbuilt networking do this?

Thanks,
Victor

 

[wolfgang]

Hi,

1. how to setup two interfaces on the web proxy, one that's bridged, and one in it's own private network, and

Yes this is a possible way.

how to connect the clients only to this private network.

Create a new Linux bridge without any settings and connect the clients/webproxy on this bridge.

 

[victorhooi]

What about if I have a 3-node Proxmox cluster?

How do I go about creating a bridge that spans all the nodes?

 

[zarlo5899]

that same way for any bridge there is a snip from my net work config

vmbr0 is public
vmbr10 is my clusters LAN

i just have all the ports hocked up to the same switch

iface eno1 inet manual

iface eno2 inet manual

auto vmbr0
iface vmbr0 inet static
        address  64.XXX.XXX.230
        netmask  255.255.255.0
        gateway  64.XXX.XXX.1
        bridge-ports eno1
        bridge-stp off
        bridge-fd 0

iface vmbr0 inet6 static
        address  26XX:XXXX:0:2:5::1
        netmask  64
        gateway  26XX:XXXX::1

auto vmbr10
iface vmbr10 inet static
        address  10.255.255.1
        netmask  255.0.0.0
        bridge-ports eno2
        bridge-stp off
        bridge-fd 0
        bridge-vlan-aware yes
        bridge-vids 2-4094

 

[wolfgang]

How do I go about creating a bridge that spans all the nodes?

You must use tunnels.
for unencrypted traffic, I would use GRE Tunnel
then you must use the tun dev as bridge-port