Using a Proxmox role to restrict VMs to a specific network?


Active Member
May 26, 2019
Got some summer interns incoming and they will have access to a Proxmox cluster.

Is there a Proxmox role to restrict VMs to a specific network?

Obviously they will need access to the management network but VMs will be on a different network for Internet access.

If no such option is available, guess I will have to use a NAT box.
there is work going on to make bridges (and SDN vnets) ACL entities covered by the permission system - that would then allow to say "user X can only configure guests to use bridge foo" (for example). whether that will be ready in time for your summer interns I cannot promise ;)


The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!