Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: mamamike on July 30, 2024, 09:59:10 AM

Title: Unable to Access Proxmox Web Interface from LAN Net
Post by: mamamike on July 30, 2024, 09:59:10 AM
Setup:

Proxmox Host

Network configuration:
vmbr1.99 for VLAN 99 (Management VLAN)
vmbr1.99 static IP: 192.168.99.2/32 (Proxmox host)
vmbr1-LAN

OPNsense VM:

LAN Interface: vtnet1 (VLAN ID: 1)
LAN IP: 172.16.15.1/24 - DHCP Enabled from .100 -> .200

Management VLAN Interface: vtnet1(Parent Interface) VLAN ID: 99
Management IP: 192.168.99.1/24 - DHCP Enabled from .100 -> .110


Problem:
Of course if im in a Management Network my windows VM can go access the proxmox on VLAN 99
but i tested From the LAN net, I can ping the OPNsense firewall IP (192.168.99.1) but cannot access the Proxmox web interface at 192.168.99.2:8006.

Here are my FW Rules
LAN:
(https://i.postimg.cc/brCvNj4b/LAN-rules.png) (https://postimg.cc/2LWY2gk8)
Management : (https://i.postimg.cc/KvWY6xPh/Management-Rules.png)
Proxmox Network : (https://i.postimg.cc/Pf2JMmNx/Proxmox-host-network.png)

OPNsense VM :
(https://i.postimg.cc/Ght2gHsj/OPNSense-VM.png)


The setup is currently small since i still run my old pfsense vm before deleting pfsense in the days when im satisfied with the setup

And yea overall im very happy with OPNSense, i think this is not a problem with OPNSense , but rather i do not understand what im doing wrong.

Added Tracert screenshot and ipconfig of windows VM

(https://i.postimg.cc/Ls825WB3/image.png)
Title: Re: Unable to Access Proxmox Web Interface from LAN Net
Post by: mooh on July 30, 2024, 03:20:20 PM
Firewalling in Proxmox is turned off? Can you ping anything else on the management network?
Other than that, look at the OPNsense firewall logs at Firewall: Log Files: Live View. If necessary, activate logging of the automatic rules at Firewall: Settings: Advanced Logging.
Title: Re: Unable to Access Proxmox Web Interface from LAN Net
Post by: mamamike on August 05, 2024, 02:06:38 PM
Quote from: mooh on July 30, 2024, 03:20:20 PM
Firewalling in Proxmox is turned off? Can you ping anything else on the management network?
Other than that, look at the OPNsense firewall logs at Firewall: Log Files: Live View. If necessary, activate logging of the automatic rules at Firewall: Settings: Advanced Logging.

Should the firewall my OPNSense network virtual bridge turned on or off?

well i tried turning it on but, does not work :/

i will try to look leads from the live log, Thanks will update this soon if i can resolve  this, but do you think there is something wrong with my FW rules?
Title: Re: Unable to Access Proxmox Web Interface from LAN Net
Post by: mooh on August 05, 2024, 02:45:29 PM
Personally, I find looking at firewall logs and traceroutes helps me to resolve issues faster than staring at firewall rules ;D
Title: Re: Unable to Access Proxmox Web Interface from LAN Net
Post by: mamamike on August 06, 2024, 09:50:26 AM
Thanks @mooh will try to look into your suggestion  ;D ;D
Text only | Text with Images