Hello,
On my Proxmox server, I have PfSense as a VM. A NIC is directly passed through as a PCIE device to PfSense, and is entirely invisible to Proxmox, which serves as "WAN". enp9s0 is the "LAN", and vmbr0 is using enp9s0 as the bridge port. vmbr0 is configured with ipv4 10.0.0.2/24, and gateway as 10.0.0.1, and is VLAN aware. Currently, it serves both Proxmox itself, and all connected VM's/Containers.
Let's take 2 VM's for example: VM 1 with VLAN tag 20, and VM 2, also with VLAN tag 20. In PfSense, I have networking rules to disable communication within the VLAN. However, Proxmox is currently routing VM 1 to VM 2 internally without going through the PfSense firewall, and allowing traffic. What is the best way to disable Proxmox from routing 2 devices within the same VLAN?
Thank you in advance for the help!
-Potato
On my Proxmox server, I have PfSense as a VM. A NIC is directly passed through as a PCIE device to PfSense, and is entirely invisible to Proxmox, which serves as "WAN". enp9s0 is the "LAN", and vmbr0 is using enp9s0 as the bridge port. vmbr0 is configured with ipv4 10.0.0.2/24, and gateway as 10.0.0.1, and is VLAN aware. Currently, it serves both Proxmox itself, and all connected VM's/Containers.
Let's take 2 VM's for example: VM 1 with VLAN tag 20, and VM 2, also with VLAN tag 20. In PfSense, I have networking rules to disable communication within the VLAN. However, Proxmox is currently routing VM 1 to VM 2 internally without going through the PfSense firewall, and allowing traffic. What is the best way to disable Proxmox from routing 2 devices within the same VLAN?
Thank you in advance for the help!
-Potato
