VLAN's PROBLEM

[giuliolinuz]

Hi to all,

this is my first post an previously I would like to thank all the Proxmox staff for their excellent software.

No I go straightly to my problem. I have install PfSense (version 1.2.3) like a router for my data-center, and I have Proxmox Ve 1.5 installed on 2 servers in cluster (1xMasterNode+1xNode).
We use many vlan to separete broadcast traffic and, obiovsly, for security reasons on PfSense.

On the first Proxmox Ve server I have two interfaces (eth0, eth1), and I use the first one for the manage, but I have tought to use the second interface in tagged mode (eth1.107 and eth1.108), for separate the vms of my customers, routing when it's necessary to other net/vlans.

Well, everything seems working, because on the two vlans I can:

* ping the other net/vlans (if allowed by the PfSense's policies)
* all the policies setted about this vlans are working


... but the very strange thing is that I can't exit to Internet. I can' t understand why because the vlan107
and 108 can reach other nets, so they pass trough the gateway and be routed, but no way to reach Internet.


Here it is my confs

# network interface settings
auto lo
iface lo inet loopback

iface eth0 inet manual

iface eth1 inet manual

auto vmbr0
iface vmbr0 inet static
address 10.0.1.3
netmask 255.255.255.240
gateway 10.0.1.1
bridge_ports eth0
bridge_stp off
bridge_fd 0

auto vmbr1
iface vmbr1 inet manual
bridge_ports eth1
bridge_stp off
bridge_fd 0

auto vmbr2
iface vmbr2 inet manual
bridge_ports eth1.107
bridge_stp off
bridge_fd 0

auto vmbr3
iface vmbr3 inet manual
bridge_ports eth1.108
bridge_stp off
bridge_fd 0

Does someone have got the same problem?

 

[giuliolinuz]

Re: VLAN's PROBLEM - (SOLVED)

Hi and sorry to all,

was clear that it was a misunderstanding about routing rules ... I simply have forgot to assign one of my 64 ip addresses for the outbound ( so a PfSense forgetted rule).


Sorry to all.