Unable to reach Proxmox IP, but VMs have network

[percy_thrillington]

i was mucking about with my proxmox install and I have managed to create a situation where my proxmox box is not reachable (doesn't respond on any ports), but all the VMs are still running and have no trouble reaching the network. When I login to the box via KVM I can reach out to other machines on the network and wget the webui via both localhost:8006 and the expected IP.

I'm pretty much at a loss for how to proceed. My best guess (which is not a very informed guess) is that I have somehow setup a firewall rule that is dropping packets to or from other hosts? I'm also not sure how to inspect or manage networking/firewall configuration via the command line.

I've pulled the following info off the box, please let me know if there's any other command outputs that would be helpful for debugging this issue.

ip a

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host noprefixroute
       valid_lft forever preferred_lft forever
6: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master vmbr0 state UP group default qlen 1000
    link/ether ac:1f:6b:05:b3:8e brd ff:ff:ff:ff:ff:ff
    altname enp5s0f0
7: enp5s0f1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
    link/ether ac:1f:6b:05:b3:8f brd ff:ff:ff:ff:ff:ff
8: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether ac:1f:6b:05:b3:8e brd ff:ff:ff:ff:ff:ff
    inet 192.168.133.2/24 scope global vmbr0
       valid_lft forever preferred_lft forever
    inet6 fe80::ae1f:6bff:fe05:b38e/64 scope link
       valid_lft forever preferred_lft forever
9: vmbr40: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000
    link/ether 22:68:bc:a8:0b:b6 brd ff:ff:ff:ff:ff:ff
    inet 10.99.88.0/24 scope global vmbr40
       valid_lft forever preferred_lft forever
10: ztk4jg6e2o: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 2800 qdisc pfifo_fast state UNKNOWN group default qlen 1000
    link/ether ce:f7:ab:e0:da:0b brd ff:ff:ff:ff:ff:ff
    inet 10.243.74.179/16 brd 10.243.255.255 scope global ztk4jg6e2o
       valid_lft forever preferred_lft forever
    inet6 fe80::ccf7:abff:fee0:da0b/64 scope link
       valid_lft forever preferred_lft forever
11: tap100i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr100i0 state UNKNOWN group default qlen 1000
    link/ether 6e:e5:e9:43:3a:ca brd ff:ff:ff:ff:ff:ff
12: fwbr100i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 4e:98:09:ed:a0:40 brd ff:ff:ff:ff:ff:ff
13: fwpr100p0@fwln100i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr0 state UP group default qlen 1000
    link/ether 4a:5c:a2:32:cc:2b brd ff:ff:ff:ff:ff:ff
14: fwln100i0@fwpr100p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr100i0 state UP group default qlen 1000
    link/ether fe:43:3b:ec:f3:2a brd ff:ff:ff:ff:ff:ff
15: tap101i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr101i0 state UNKNOWN group default qlen 1000
    link/ether 2a:29:0c:3d:97:a0 brd ff:ff:ff:ff:ff:ff
16: fwbr101i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 76:ea:54:36:68:00 brd ff:ff:ff:ff:ff:ff
17: fwpr101p0@fwln101i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr0 state UP group default qlen 1000
    link/ether fa:ac:da:8b:21:de brd ff:ff:ff:ff:ff:ff
18: fwln101i0@fwpr101p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr101i0 state UP group default qlen 1000
    link/ether 76:cc:3f:42:3b:15 brd ff:ff:ff:ff:ff:ff
19: tap200i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr200i0 state UNKNOWN group default qlen 1000
    link/ether 92:3a:d4:d5:19:57 brd ff:ff:ff:ff:ff:ff
20: fwbr200i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 12:b6:1b:1a:73:6c brd ff:ff:ff:ff:ff:ff
21: fwpr200p0@fwln200i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr0 state UP group default qlen 1000
    link/ether 2e:d5:df:52:14:90 brd ff:ff:ff:ff:ff:ff
22: fwln200i0@fwpr200p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr200i0 state UP group default qlen 1000
    link/ether 52:a8:7a:e6:6e:9f brd ff:ff:ff:ff:ff:ff
23: tap301i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr301i0 state UNKNOWN group default qlen 1000
    link/ether 32:84:29:38:2a:ff brd ff:ff:ff:ff:ff:ff
24: fwbr301i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 16:01:73:a8:62:24 brd ff:ff:ff:ff:ff:ff
25: fwpr301p0@fwln301i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr0 state UP group default qlen 1000
    link/ether 8e:ea:6d:03:de:25 brd ff:ff:ff:ff:ff:ff
26: fwln301i0@fwpr301p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr301i0 state UP group default qlen 1000
    link/ether 5e:90:aa:f9:ba:3d brd ff:ff:ff:ff:ff:ff
27: tap302i0: <BROADCAST,MULTICAST,PROMISC,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast master fwbr302i0 state UNKNOWN group default qlen 1000
    link/ether 62:f9:e9:39:d2:80 brd ff:ff:ff:ff:ff:ff
28: fwbr302i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether c2:8b:4c:b7:6f:e3 brd ff:ff:ff:ff:ff:ff
29: fwpr302p0@fwln302i0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vmbr0 state UP group default qlen 1000
    link/ether be:10:4e:25:48:f2 brd ff:ff:ff:ff:ff:ff
30: fwln302i0@fwpr302p0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master fwbr302i0 state UP group default qlen 1000
    link/ether 66:9b:8f:cf:41:38 brd ff:ff:ff:ff:ff:ff

cat /etc/network/interfaces

# network interface settings; autogenerated
# Please do NOT modify this file directly, unless you know what
# you're doing.
#
# If you want to manage parts of the network configuration manually,
# please utilize the 'source' or 'source-directory' directives to do
# so.
# PVE will preserve these directives, but will NOT read its network
# configuration from sourced files, so do not attempt to move any of
# the PVE managed interfaces into external files!

auto lo
iface lo inet loopback

iface enp3s0f1 inet manual

iface eno1 inet manual

iface enp5s0f1 inet manual

auto vmbr0
iface vmbr0 inet static
    address 192.168.133.2/24
    gateway 192.168.133.1
    bridge-ports eno1
    bridge-stp off
    bridge-fd 0

auto vmbr40
iface vmbr40 inet static
    address 10.99.88.0/24
    bridge-ports none
    bridge-stp off
    bridge-fd 0
#This is a test isolated network

nmap -p 8006 localhost

Starting Nmap 7.93 ( https://nmap.org ) at 2023-11-14 22:04 PST
Nmap scan report for localhost (127.0.0.1)
Host is up (0.000059s latency).
rDNS record for 127.0.0.1: localhost.localdomain

PORT     STATE SERVICE
8006/tcp open  wpl-analytics

Nmap done: 1 IP address (1 host up) scanned in 0.09 second

nmap -p 8006 192.168.133.2

Starting Nmap 7.93 ( https://nmap.org ) at 2023-11-14 22:05 PST
Nmap scan report for pve.local (192.168.133.2)
Host is up (0.000056s latency).

PORT     STATE SERVICE
8006/tcp open  wpl-analytics

Nmap done: 1 IP address (1 host up) scanned in 0.15 seconds

 

[percy_thrillington]

Nevermind, I've just figured out that I'm able to access the GUI when I'm on the same VLAN, so this looks like a misconfiguration somwhere in my network other than proxmox. I can't figure out how to delete the thread though?