Hi,
I have 2 node datacenter, nodes have public IPs and are also connected with each other through VRACK.
Datacenter:
Node 1: PRIVATE IP: 192.168.0.2, PUBLIC IP: 1.2.3.4
Node 2: IP 192.168.0.3, , PUBLIC IP: 2.3.4.5
When I enable firewall cluster wide, following things happen:
- I cannot use GUI of 2nd node through 1st server - I get "communication failure"
I have added firewall rules accepting IN/OUT traffic in both machines for 182.168.0.0/28 subnet, no success.
One thing is that, when I type
So machines does detect public IP address as an local one. How can I fix this to enable .
Additionally, quorum responds as "OK" despite connection problems between nodes.
Situations seems to happen, when I set Firewall INPUT policy to drop on cluster.
How can I fix this?
I have 2 node datacenter, nodes have public IPs and are also connected with each other through VRACK.
Datacenter:
Node 1: PRIVATE IP: 192.168.0.2, PUBLIC IP: 1.2.3.4
Node 2: IP 192.168.0.3, , PUBLIC IP: 2.3.4.5
When I enable firewall cluster wide, following things happen:
- I cannot use GUI of 2nd node through 1st server - I get "communication failure"
I have added firewall rules accepting IN/OUT traffic in both machines for 182.168.0.0/28 subnet, no success.
One thing is that, when I type
pve-firewall localnet in my ssh terminal of both nodes I get:
Code:
local hostname: hostname_1
local IP address: 1.2.3.4
network auto detect: PUBLIC NETWORK/24
using user defined local_network: 192.168.0.0
accepting corosync traffic from/to:
- hostname_2: 192.168.0.3 (link: 0)So machines does detect public IP address as an local one. How can I fix this to enable .
Additionally, quorum responds as "OK" despite connection problems between nodes.
Situations seems to happen, when I set Firewall INPUT policy to drop on cluster.
How can I fix this?
