Hi all,
I've a 3 nodes cluster running in PX 8.1.4 (ent repository, full upgrade) only 1 VM use firewall (to block RDP access from specific source in subnet level).
The whole thing has always worked correctly, we haven't changed that firewall rule (in Proxmox) in years.
Today we noticed a problem.
On a VM, connected to a specific VMBR, the firewall is active, it allows access to port 3389 are to specific sources, otherwise it does a drop.
On the same host and on the same VMBR, if I try to connect in RDP to another machine, even if that machine has the firewall DISABLED, the above rules continue to apply.
Until a few weeks ago we had no problems and the behavior was correct.
One (perhaps important) note, the vmbr in question is configured in promiscuous mode (I don't know if that has anything to do with it or not, but full disclosure).
I've a 3 nodes cluster running in PX 8.1.4 (ent repository, full upgrade) only 1 VM use firewall (to block RDP access from specific source in subnet level).
The whole thing has always worked correctly, we haven't changed that firewall rule (in Proxmox) in years.
Today we noticed a problem.
On a VM, connected to a specific VMBR, the firewall is active, it allows access to port 3389 are to specific sources, otherwise it does a drop.
On the same host and on the same VMBR, if I try to connect in RDP to another machine, even if that machine has the firewall DISABLED, the above rules continue to apply.
Until a few weeks ago we had no problems and the behavior was correct.
One (perhaps important) note, the vmbr in question is configured in promiscuous mode (I don't know if that has anything to do with it or not, but full disclosure).