vm's with public ip's

[GunCool]

hay im new to proxmox but im trying to set up 3 vm's with different public ip's i have tried using linux bridge but i cant seem to get any packets in or out, i have also tried bonding all the interfaces and then bridge off it and even that wasn't working

 

[Chris]

Hi,
please have a look at the basic routed setup example in the documentation [0]. This might be a good starting point for your network configuration.

[0] https://pve.proxmox.com/pve-docs/pve-admin-guide.html#sysadmin_network_routed

 

[GunCool]

Hi,
please have a look at the basic routed setup example in the documentation [0]. This might be a good starting point for your network configuration.

[0] https://pve.proxmox.com/pve-docs/pve-admin-guide.html#sysadmin_network_routed

i have looked and tried it i have also tried putting it on both the enos and on the bond and still nothing

        post-up echo 1 > /proc/sys/net/ipv4/ip_forward
        post-up echo 1 > /proc/sys/net/ipv4/conf/eno0/proxy_arp

 

[Chris]

i have looked and tried it i have also tried putting it on both the enos and on the bond and still nothing

        post-up echo 1 > /proc/sys/net/ipv4/ip_forward
        post-up echo 1 > /proc/sys/net/ipv4/conf/eno0/proxy_arp

Please share your network configuration cat /etc/network/interfaces, the output of ip a as well as the VM configs qm config <VMID>.

A few basic things you can test are:

• can the VM ping the host?
• can the VM ping the gateway?
• is there a firewall interfering with the traffic?
• do you have the neccessary routes for traffic being forwarded, check the output of ip r?
• do you get the packets being send by using tcpdump for the respective interfaces?

 

[GunCool]

/etc/network/interfaces

auto lo
iface lo inet loopback
#       post-up echo 1 > /proc/sys/net/ipv4/ip_forward
#       post-up echo 1 > /proc/sys/net/ipv4/conf/lo/proxy_arp

auto eno2
iface eno2 inet manual

auto eno3
iface eno3 inet manual

auto eno1
iface eno1 inet manual
        ovs_type OVSPort
        ovs_bridge vmbr0

auto eno4
iface eno4 inet manual

auto node
iface node inet static
        address 154.16.200.65/30
        ovs_type OVSIntPort
        ovs_bridge vmbr0
        ovs_options tag=2 vlan_mode=native-untagged

auto vmbr64
iface vmbr64 inet static
        address 154.16.200.68/30
        ovs_type OVSIntPort
        ovs_bridge vmbr0
        ovs_options tag=2

auto vmbr0
iface vmbr0 inet static
        address 154.16.200.64/31
        gateway 154.16.200.1
        ovs_type OVSBridge
        ovs_ports eno1 node vmbr64

ip a

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host noprefixroute
       valid_lft forever preferred_lft forever
2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master ovs-system state UP group default qlen 1000
    link/ether 44:a8:42:2f:d4:6b brd ff:ff:ff:ff:ff:ff
    altname enp1s0f0
    inet6 fe80::46a8:42ff:fe2f:d46b/64 scope link
       valid_lft forever preferred_lft forever
3: eno2: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc mq state DOWN group default qlen 1000
    link/ether 44:a8:42:2f:d4:6d brd ff:ff:ff:ff:ff:ff
    altname enp1s0f1
4: eno3: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc mq state DOWN group default qlen 1000
    link/ether 44:a8:42:2f:d4:6f brd ff:ff:ff:ff:ff:ff
    altname enp1s0f2
5: eno4: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc mq state DOWN group default qlen 1000
    link/ether 44:a8:42:2f:d4:71 brd ff:ff:ff:ff:ff:ff
    altname enp1s0f3
6: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000
    link/ether 5a:5c:79:60:c4:37 brd ff:ff:ff:ff:ff:ff
7: vmbr0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
    link/ether 44:a8:42:2f:d4:6b brd ff:ff:ff:ff:ff:ff
    inet 154.16.200.64/31 scope global vmbr0
       valid_lft forever preferred_lft forever
    inet6 fe80::ec06:b5ff:fe1d:8f4e/64 scope link
       valid_lft forever preferred_lft forever
8: node: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
    link/ether 0e:aa:71:90:b1:aa brd ff:ff:ff:ff:ff:ff
    inet 154.16.200.65/30 scope global node
       valid_lft forever preferred_lft forever
    inet6 fe80::caa:71ff:fe90:b1aa/64 scope link
       valid_lft forever preferred_lft forever
12: vmbr64: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UNKNOWN group default qlen 1000
    link/ether f6:33:f3:a7:76:25 brd ff:ff:ff:ff:ff:ff
    inet 154.16.200.68/30 scope global vmbr64
       valid_lft forever preferred_lft forever
    inet6 fe80::700b:1bff:fe80:b418/64 scope link
       valid_lft forever preferred_lft forever
13: veth100i0@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master ovs-system state UP group default qlen 1000
    link/ether fe:50:ee:04:a9:f8 brd ff:ff:ff:ff:ff:ff link-netnsid 0

ip r

154.16.200.64/31 dev vmbr0 proto kernel scope link src 154.16.200.64
154.16.200.64/30 dev node proto kernel scope link src 154.16.200.65
154.16.200.68/30 dev vmbr64 proto kernel scope link src 154.16.200.68

qm config

boot: order=scsi0;ide2;net0
cores: 20
cpu: x86-64-v2-AES
ide2: local:iso/ubuntu-22.04.3-live-server-amd64.iso,media=cdrom,size=2083390K
memory: 4056
meta: creation-qemu=8.0.2,ctime=1695682933
name: node
net0: virtio=F6:F5:7F:9A:F6:B0,bridge=vmbr0,tag=2
numa: 0
ostype: l26
scsi0: local-lvm:vm-101-disk-0,size=2000G
scsihw: virtio-scsi-pci
smbios1: uuid=fd591596-2421-4a1b-a0bf-c24b7feae5fd
sockets: 2
vmgenid: b2c23dc6-e82f-4e02-8923-06f8c4f3aaa6

so the vm cant ping the host or the gateway