I'm trying to set up proxmox so most my containers can be on a internal subnet and are nated out the host IP on my LAN, but also so I can set some with their own ips on my lan. I have nginx proxy on a host with its own IP and have both bridges attached and using nginx to proxy to the internal network.
auto lo
iface lo inet loopback
iface eno1 inet manual
auto vmbr0
iface vmbr0 inet static
address 192.168.1.40/24
gateway 192.168.1.1
bridge-ports eno1
bridge-stp off
bridge-fd 0
#NATed
auto vmbr1
iface vmbr1 inet static
address 10.10.10.1/24
bridge-ports none
bridge-stp off
bridge-fd 0
#Internal
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -t raw -I PREROUTING -i fwbr+ -j CT --zone 1
post-up iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o vmbr0 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o vmbr0 -j MASQUERADE
post-down iptables -t raw -D PREROUTING -i fwbr+ -j CT --zone 1
Now my logs are flooded with the following to the point its slowing everything down...
:28 saturn kernel: [13679.447036] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:29 saturn kernel: [13680.470824] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr200i0
Apr 3 09:43:29 saturn kernel: [13680.470833] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:29 saturn kernel: [13680.470859] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr100i1
Apr 3 09:43:29 saturn kernel: [13680.470860] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:30 saturn kernel: [13681.494784] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr200i0
Apr 3 09:43:30 saturn kernel: [13681.494787] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:30 saturn kernel: [13681.494795] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr100i1
Apr 3 09:43:30 saturn kernel: [13681.494796] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:52 saturn kernel: [13703.031291] IPv4: martian source 255.255.255.255 from 192.168.1.146, on dev fwbr100i0
Apr 3 09:43:52 saturn kernel: [13703.031312] ll header: 00000000: ff ff ff ff ff ff f0 ef 86 74 4f ec 08 00
anyone have any idea what i'm doing wrong?
auto lo
iface lo inet loopback
iface eno1 inet manual
auto vmbr0
iface vmbr0 inet static
address 192.168.1.40/24
gateway 192.168.1.1
bridge-ports eno1
bridge-stp off
bridge-fd 0
#NATed
auto vmbr1
iface vmbr1 inet static
address 10.10.10.1/24
bridge-ports none
bridge-stp off
bridge-fd 0
#Internal
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -t raw -I PREROUTING -i fwbr+ -j CT --zone 1
post-up iptables -t nat -A POSTROUTING -s '10.10.10.0/24' -o vmbr0 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.10.10.0/24' -o vmbr0 -j MASQUERADE
post-down iptables -t raw -D PREROUTING -i fwbr+ -j CT --zone 1
Now my logs are flooded with the following to the point its slowing everything down...
:28 saturn kernel: [13679.447036] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:29 saturn kernel: [13680.470824] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr200i0
Apr 3 09:43:29 saturn kernel: [13680.470833] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:29 saturn kernel: [13680.470859] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr100i1
Apr 3 09:43:29 saturn kernel: [13680.470860] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:30 saturn kernel: [13681.494784] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr200i0
Apr 3 09:43:30 saturn kernel: [13681.494787] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:30 saturn kernel: [13681.494795] IPv4: martian source 10.10.10.3 from 10.10.10.2, on dev fwbr100i1
Apr 3 09:43:30 saturn kernel: [13681.494796] ll header: 00000000: ff ff ff ff ff ff a2 03 53 7e 0a 45 08 06
Apr 3 09:43:52 saturn kernel: [13703.031291] IPv4: martian source 255.255.255.255 from 192.168.1.146, on dev fwbr100i0
Apr 3 09:43:52 saturn kernel: [13703.031312] ll header: 00000000: ff ff ff ff ff ff f0 ef 86 74 4f ec 08 00
anyone have any idea what i'm doing wrong?