OPNsense Forum
English Forums => General Discussion => Topic started by: krakatoa48 on November 05, 2020, 07:12:37 pm
-
Hello,
I hope I'm in the right place (If not, feel free to move it).
Here is my issue / question :
I just installed OPNsense on a dedicated hardware.
My setup is very basic : ISP router in bridge mode (WAN) => dedicated hardware with OPNsense (LAN) => unmanaged switch connected to all my private network devices.
Everything is working great, except one little issue : I can't access to my CT/VM installed on my proxmox server.
I can ping them all but I can't reach them through SSH (same for their content from 80).
All the CT/VM have internet access, they can ping everything. And I can access them through the proxmox host.
I can access the proxmox host without any issue (ssh and gui). It's only the CT/VM installed.
I'm using the bridge default config on my proxmox host for the network => https://pve.proxmox.com/wiki/Network_Configuration#_default_configuration_using_a_bridge
I don't see anything in OPNsense firewall logs.
From my understanding, everything under my LAN should be allowed since all the private network is allowed from the rules.
I'm kind of a noob here, if you have any idea where I should look first, that would be great.
I don't even know if it's a OPNsense "issue" or a proxmox "issue".
Thank you for your help !
-
In which way would the OPNsense be involved in your problem? If the client and the VM are on the same subnet the traffic won't pass the OPNsense. You could even disconnect the OPNsense and should still be able to use your local network (apart from DHCP of course).
Have you ever been able to connect to your VMs from your local network? And that stopped after you installed the OPNsense?
-
Well, right now OPNsense is my dhcp server.
This issue happens after installing OPNsense. Everything was always working from the day I installed proxmox.
I just don't know if it's a miss configuration from my OPNsense or my proxmox.
I can access to the host (proxmox), I can't access to my CT/VM. And it doesn't make sense :D
-
Please provide more information about your network. A graphical network plan would be nice.
You can try to disconnect the Opnsense after your client has received an IP address and then try to access your VMs.
-
My setup is the simplest setup ever :
(https://i.ibb.co/G7cryMV/network.png)
I can't disconnect OPNsense, otherwise I won't have any access to anything, since it's my DHCP server as well.
I don't have any managed switch after OPNsense (I'm assuming that's what you are thinking).
-
I went back to my original setup (which means removing OPNsense and re activating my ISP router).
Everything went back to normal.
I'll look for an other solution, I just need dual wan aggregation, nothing fancy.
Thanks for the help !
Edit : it works like a charm with Pfsense, so I went with that.