OpenSense LANs vs VLANs

[user_001]

All,

I am getting extremely confused on what is the correct setup.

I have a 3 nodes cluster with only 1 NIC on each.
There is no switch involved as the NIC connects to the router.

I need to have 2 LANs: 1 DMZ and 1 LAN.
I have created 3 bridges: vmbr0 for WAN, vmbr1 for LAN and vmbr2 for DMZ.

Shall they be VLAN aware?
Once you setup OpenSense with the bridges, shall you recreate another VLAN inside OpenSense?

The difference between LAN and VLAN is very confusing as there seem to be not only 1 possible setup.

Thanks

 

[Johannes S]

I have a 3 nodes cluster with only 1 NIC on each.

This is problematic since the cluster communication network is quite sensible to latency. For that reason it's recommended to have a dedicated network for the cluster communication see https://pve.proxmox.com/wiki/Cluster_Manager#pvecm_cluster_network
What's the reason for the cluster? If you just want to be able to migrate between the nodes this is also possible with the new Proxmxo Datacenter Manager
Otherwise I would recommend to add NICs to your nodes, even USB NICS should work if your nodes don't have the room for another NIC (Mini-PCs are often quite limited in terms of expandability but people like to use them for their homeservers due to their low energy consumption).

There is no switch involved as the NIC connects to the router.

I'm not sure I understood you correct: Do you have a OPNsense router or do you want to run OPNsense on your ProxmoxVE? I never did this myself but maybe this tutorial is of use to you: https://forum.opnsense.org/index.php?topic=44159.0

 

[user_001]

Thanks for your reply.

I wanted to separate a DMZ to expose a service to some of my users (very small company but in many different regions).

I wanted to keep the additional NIC for Ceph RGW.

So I guess I will have to go wihtout separation it seems