Hi all,
some hours ago I did upgrade my PVE5 to PVE6 following all steps in the official upgrade documentation. With PVE5 I used the following network configuration which was working flawlessly.
vmbr0 connects to my "real" LAN while vmbr1 creates a virtual network between a few VMs. Everything was working like expected.
Since the upgrade I am facing the following issue with this configuration:
to
while leaving the rest of the configuration file unchanged. Now the situation is as follows:
some hours ago I did upgrade my PVE5 to PVE6 following all steps in the official upgrade documentation. With PVE5 I used the following network configuration which was working flawlessly.
auto lo
iface lo inet loopback
iface eno1 inet manual
auto vmbr0
iface vmbr0 inet static
address 192.168.1.208
netmask 255.255.255.0
gateway 192.168.1.1
bridge_ports eno1
bridge_stp off
bridge_fd 0
iface vmbr0 inet6 static
address 2a02:2450:1021:9:96c6:91ff:fea9:62d7
netmask 64
gateway fe80::1
auto vmbr1
iface vmbr1 inet static
address 10.111.1.1
netmask 255.255.255.0
broadcast 10.111.1.255
bridge_ports none
bridge_stp off
bridge_fd 0
post-up echo 1 > /proc/sys/net/ipv4/ip_forward
post-up iptables -t nat -A POSTROUTING -s '10.111.1.0/24' -o vmbr0 -j MASQUERADE
post-down iptables -t nat -D POSTROUTING -s '10.111.1.0/24' -o vmbr0 -j MASQUERADE
vmbr0 connects to my "real" LAN while vmbr1 creates a virtual network between a few VMs. Everything was working like expected.
Since the upgrade I am facing the following issue with this configuration:
- the PVE server is not able to ping any other device in my 192.168.1.0 network, not even the gateway at 192.168.1.1
- none of my devices from the 192.168.1.0 network is able to ping the PVE server (so no access to SSH, Webfrontend etc.)
- the PVE server can ping itselfs at 192.168.1.208
bridge_ports eno1
to
bridge_ports none
while leaving the rest of the configuration file unchanged. Now the situation is as follows:
- PVE server is able to access my 192.168.1.0 network
- All devices from the 192.168.1.0 network are able to access the PVE server
- The VMs in vmbr1 can ping each other but none of them can access the internet via the NAT rules
- I have one VM what is directly connected to vmbr0/192.168.1.0: This VM is not able to ping any other device from this network nor to access the internet