Just spent hours to debug a very strange behavior of the
firewall checkbox in the VM network device configuration.
When I check (enable) the firewall checkbox, the vm
has full network access (no port is blocked), everything works fine.
When I uncheck (disable) the firewall checkbox,
the vm has no network access at all.
From my point of view, the checkbox does the exact opposite of what it should do.
Can someone explain the exact function / behaviour of this checkbox?
I cannot find any difference in ebtables, iptables, bridge or tap configuration between
the box checked or not. Not even the kvm command line to start the vm is diffrent.
I could also not find any information in the documentation about the function of this checkbox.
For sample, the directory /etc/pve/firewall from the documentation does not exist on any node.
Non of the informations in the documentation seems to match the configuration, files or settings found
on the a installed system in any way.
firewall checkbox in the VM network device configuration.
When I check (enable) the firewall checkbox, the vm
has full network access (no port is blocked), everything works fine.
When I uncheck (disable) the firewall checkbox,
the vm has no network access at all.
From my point of view, the checkbox does the exact opposite of what it should do.
Can someone explain the exact function / behaviour of this checkbox?
I cannot find any difference in ebtables, iptables, bridge or tap configuration between
the box checked or not. Not even the kvm command line to start the vm is diffrent.
I could also not find any information in the documentation about the function of this checkbox.
For sample, the directory /etc/pve/firewall from the documentation does not exist on any node.
Non of the informations in the documentation seems to match the configuration, files or settings found
on the a installed system in any way.
