Hello, I have tried to configure the Proxmox Firewall in a Virtual Machine with Ubuntu 18.04 for blocking the MongoDB external access and ping external access. I follow these steps:
1- Activate Proxmox main machine Firewall
2-Activate VM firewall and Network firewall
When I execute the following commands I have this result:
systemctl status pve-firewall
● pve-firewall.service - Proxmox VE firewall
Loaded: loaded (/lib/systemd/system/pve-firewall.service; enabled; vendor pre
Active: active (running) since Wed 2019-10-30 16:05:13 CET; 5 months 5 days a
Process: 1302 ExecStart=/usr/sbin/pve-firewall start (code=exited, status=0/SU
Main PID: 1344 (pve-firewall)
Tasks: 1 (limit: 9830)
Memory: 26.0M
CPU: 6h 41min 3.176s
CGroup: /system.slice/pve-firewall.service
└─1344 pve-firewall
root@pvpavapark:~# cat /etc/pve/firewall/100.fw
[OPTIONS]
enable: 1
[RULES]
|IN DROP -p tcp -dport 27017 -log nolog
IN Ping(DROP) -log nolog
In the secondary MV the default status of Proxmox is
INPUT POLICY DROP
OUTPUT POLICY ACCEPT
I restart the Virtual Machine and no rules are applicated. Any Idea ?
Thanks
Gorka
1- Activate Proxmox main machine Firewall
2-Activate VM firewall and Network firewall
When I execute the following commands I have this result:
systemctl status pve-firewall
● pve-firewall.service - Proxmox VE firewall
Loaded: loaded (/lib/systemd/system/pve-firewall.service; enabled; vendor pre
Active: active (running) since Wed 2019-10-30 16:05:13 CET; 5 months 5 days a
Process: 1302 ExecStart=/usr/sbin/pve-firewall start (code=exited, status=0/SU
Main PID: 1344 (pve-firewall)
Tasks: 1 (limit: 9830)
Memory: 26.0M
CPU: 6h 41min 3.176s
CGroup: /system.slice/pve-firewall.service
└─1344 pve-firewall
root@pvpavapark:~# cat /etc/pve/firewall/100.fw
[OPTIONS]
enable: 1
[RULES]
|IN DROP -p tcp -dport 27017 -log nolog
IN Ping(DROP) -log nolog
In the secondary MV the default status of Proxmox is
INPUT POLICY DROP
OUTPUT POLICY ACCEPT
I restart the Virtual Machine and no rules are applicated. Any Idea ?
Thanks
Gorka
