PVE issuing TCP RST - Connection Issues

nspr

New Member
Aug 4, 2023
1
0
1
Hi, please move if required.

Running Proxmox VE on an HPE DL360 G9, with OPNsense in a VM.
I have eno3 on a bridge (vmbr0) as WAN in OPNsense, and eno4 bridged on vmbr1 as LAN. WAN addresses are on 192.168.100.xxx with our managed Sophos firewall upstream. I have my own LAN interface on this, unmonitored, as I live on site (family business). The OPNsense is intended to be my own firewall for personal use.
I initially configured this with PfSense. Worked fine for a few hours, until my devices began to be disconnected within a minute or so of connecting.
Unable to solve, I reinstalled PfSense in a new VM. Same issue immediately. Switched to OPNsense, same issue immediately. Firewall GUI rejects connections, no internet access despite WAN being up.

I can however still access the Proxmox GUI. Pinging through the console the firewall is unable to contact any LAN addresses including PVE unless I disconnect and reconnect them. Can ping 8.8.8.8 fine.
Looking at the syslog for the node I found a few cases of TCP RST being issued. I am absolutely stumped. Firewall in PVE is off at datacentre level.
If anyone could even begin to point me in the right direction here I'd be grateful.