Networking web server inaccessible from within cluster

[halex]

Hi,

I have a proxmox server with an additional IP address that I have configured (almost) correctly, on which I redirect traffic to a web server. This works when I try to reach the IP address from outside the cluster, however if I try to curl or just access the server on a browser when connected on the vpn or from a container/VM it times out. I am a bit lost ...

Here is my /etc/network/interfaces configuration:
auto lo iface lo inet loopback auto eno1 iface eno1 inet static address 51.***.***.93/24 gateway 51.***.***.254 auto eno1:0 iface eno1:0 inet static address 54.***.***.216/24 auto vmbr0 iface vmbr0 inet static address 10.10.10.1/24 bridge-ports none bridge-stp off bridge-fd 0 post-up echo 1 > /proc/sys/net/ipv4/ip_forward post-up iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o eno1 -j MASQUERADE post-up iptables -t nat -A PREROUTING -p udp --dport 1194 -j DNAT --to-destination 10.10.10.25:1194 post-down iptables -t nat -D PREROUTING -p udp --dport 1194 -j DNAT --to-destination 10.10.10.25:1194 post-up iptables -t nat -A PREROUTING -p tcp -d 54.***.***.216 -j DNAT --to-destination 10.10.10.50 #Web server post-down iptables -t nat -D PREROUTING -p tcp -d 54.***.***.216 -j DNAT --to-destination 10.10.10.50 #Web server post-up iptables -t nat -A PREROUTING -p udp -d 54.***.***.216 -j DNAT --to-destination 10.10.10.50 #Web server post-down iptables -t nat -D PREROUTING -p udp -d 54.***.***.216 -j DNAT --to-destination 10.10.10.50 #Web server post-up iptables -t raw -I PREROUTING -i fwbr+ -j CT --zone 1 post-down iptables -t raw -D PREROUTING -i fwbr+ -j CT --zone 1

 

[demon_mono]

Hy ,

it seems to be ( perhaps ) the same issue than mine ( https://forum.proxmox.com/threads/network-between-lxc-or-and-vm.116759/ )