proxmox firewall flow diagram

[Melanxolik]

Hello everyone,
Guys, I'm still trying to figure out what is the best way to configure proxmox firewall, I have been using iptables for long time, but I feel crazy when looking and trying to understand all relations in proxmox node firewall.
Do you have any diagram to get more clear view how chains connected with each other?

 

[LnxBil]

Guys, I'm still trying to figure out what is the best way to configure proxmox firewall, I have been using iptables for long time, but I feel crazy when looking and trying to understand all relations in proxmox node firewall.
Do you have any diagram to get more clear view how chains connected with each other?

First, don't try to add own rules via iptables directly, they may be overwritten or harm your setup. You can set most rules over the gui.

Each VM and LX(C) container have their own tables for input and output, which are built automatically and have the VM id in its name. The only tip I can give is to build a virtual PVE for testing and do exploratory testing of the firewall. It takes a little time to get into the logic, but it is very good and easy to roll out security groups for multiple VMs.