Web GUI 8006 cannot see VMs on node in different subnet

[vertigo2049]

x4 nodes running Proxmox Virtual Environment 7.2-7.

Getting issues seeing individual VMs on two of the nodes which are in a different subnet.

My rules are:
[OPTIONS]

enable: 1

[RULES]

IN ACCEPT -source <Head Office ipv4> -p tcp -log nolog # Catch All
IN ACCEPT -source <node 1 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 1 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <node 2 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 2 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <node 3 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 3 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <node 4 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 4 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <NFS ipv4> -p udp -dport 111 -log nolog # NAS NFS
IN ACCEPT -source <NFS ipv4> -p tcp -dport 111 -log nolog # NAS NFS

 

[Chris]

x4 nodes running Proxmox Virtual Environment 7.2-7.

Getting issues seeing individual VMs on two of the nodes which are in a different subnet.

My rules are:
[OPTIONS]

enable: 1

[RULES]

IN ACCEPT -source <Head Office ipv4> -p tcp -log nolog # Catch All
IN ACCEPT -source <node 1 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 1 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <node 2 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 2 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <node 3 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 3 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <node 4 ipv4> -p udp -dport 111,5404,5405 -log nolog
IN ACCEPT -source <node 4 ipv4> -p tcp -dport 22,6789,3300,6800:7300,5900:5999,60000:60050 -log nolog # Ceph
IN ACCEPT -source <NFS ipv4> -p udp -dport 111 -log nolog # NAS NFS
IN ACCEPT -source <NFS ipv4> -p tcp -dport 111 -log nolog # NAS NFS

Hi,
you should not run nodes in different subnets, corosync shoud run in its own dedicated low latency cluster network. Do you even have a working cluster? Please provide the output of

pvecm status

. What exact issues are you facing? Please provide more details!

 

[vertigo2049]

Hi, Thank you the problem is resolved. There must be a port missing from your documentation and setting the firewall rules for all ports between hosts and the problem goes away (same as if the firewall is disabled).

I was using the link https://pve.proxmox.com/pve-docs/pve-admin-guide.html#_ports_used_by_proxmox_ve