PVE issuing TCP RST - Connection Issues


New Member
Aug 4, 2023
Hi, please move if required.

Running Proxmox VE on an HPE DL360 G9, with OPNsense in a VM.
I have eno3 on a bridge (vmbr0) as WAN in OPNsense, and eno4 bridged on vmbr1 as LAN. WAN addresses are on 192.168.100.xxx with our managed Sophos firewall upstream. I have my own LAN interface on this, unmonitored, as I live on site (family business). The OPNsense is intended to be my own firewall for personal use.
I initially configured this with PfSense. Worked fine for a few hours, until my devices began to be disconnected within a minute or so of connecting.
Unable to solve, I reinstalled PfSense in a new VM. Same issue immediately. Switched to OPNsense, same issue immediately. Firewall GUI rejects connections, no internet access despite WAN being up.

I can however still access the Proxmox GUI. Pinging through the console the firewall is unable to contact any LAN addresses including PVE unless I disconnect and reconnect them. Can ping fine.
Looking at the syslog for the node I found a few cases of TCP RST being issued. I am absolutely stumped. Firewall in PVE is off at datacentre level.
If anyone could even begin to point me in the right direction here I'd be grateful.


The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!