Open V Switch Mirror being deleted when Proxmox Network Cfg changes applied

I

intro

New Member
Proxmox Subscriber
Sep 15, 2025
2
0
1
Howdy...

Latest version of proxmox 9.

The mirror created by the long winded manual ovs-vsctl -- cmd appears to be cleared when any network update is applied via the proxmox gui.

The config is around 10 OVS bridges and a couple linux bridges, very basic stuff. Mirror is for security onion feed.

To make the monitor port usable via the gui the mon0 is added to a linux bridge under proxmox gui control.

tcpdump on mon0 shows pkts
tcpdump on the bridge shows pkts

everything looks good with the various ovs-vsctl and networking commands.

make any change to the proxmox networking via gui, hit apply changes and the mirror stops

the tcpdump sessions stop and the syslog shows the monitor has been deleted.

Anyone got this working with version 9?

Never tested with prior version but presume it did work based on what is out and about on the subject.

Thanks
 
Hi,

did you edit /etc/network/interfaces directly or create a separate file under /etc/network/interfaces.d/?
Can you provide the full contents of the former and/or both in the latter case, before and after applying via the GUI?

How does the network tab look in the GUI before applying changes?
 
I have tried a few different approaches, this was a general method of execution, with alternate step 3.

1 created the mon port manually via ssh

---> ovs-vsctl add-port ovbrxxx mon0 -- set Interface mon0 type=internal

2 added the ovs monitor setup command manually via ssh

----> ovs-vsctl -- set Bridge ovbrxxx mirrors=@m -- --id=@mon0 get Port mon0 -- --id=@m create Mirror name=m0 select-all=true output-port=@mon0

3a add mon0 to linux bridge via ssh

----> ip link set mon0 master monbryyy
----> turn off stp on br

3b edit /etc/network/interfaces via ssh
create new entry linux bridge config for monbryyy

Either 3a or 3b used.

Get it working with both approaches, tcpdump on mon0 and linux bridge. Also traffic into security onion, linux monitor bridge applied to network adapter.

May have had to recreate monitor instance once linux bridge added to sec onion vm.

The monitor disappears when checking with ovs-vsctl list Mirror. Narrowing it down, it appears to be when any network change is made via the gui and applied.

Thanks
 
You must log in or register to reply here.
Top Bottom