Question about OPNsense, Proxmox and HPE ML30 Gen10 Server

Started by xmftech, December 29, 2024, 04:28:50 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 29, 2024, 04:28:50 PM Last Edit: December 29, 2024, 05:24:59 PM by xmftech
Hi,

I am writing to raise some issues that I am encountering when trying to set up my Home Lab with an HPE ML30 Gen10 server, virtualization via Proxmox, and a VM with OPNsense.

First of all, I will raise the scenario:

- HPE ML30 server with 2 Gigabit LANs
- Fake RAID controller disabled in BIOS. BIOS in AHCI mode
- Installation of Proxmox on RAID 1 by software with ZFS file system.
- LXC container on Proxmox (ADGuard)
- Virtual Machine for Home Assistant (via Proxmox Helper Scripts)
- 2 Virtual Machines for testing (OPNsense and pfSense)
- 2 physical LAN interfaces
- 2 Linux Bridges: vmbr0 (LAN), vmbr1 (WAN)
- Management of Proxmox via physical LAN interface.
- OPNsense with 2 Linux Bridges

Initial equipment interconnection:

- Mitrastar HGU router (O2 Spain) with initial connection via CAT 6A cable to office, from office wall to 8-port switch NOT manageable.
- PC with Ubuntu GNU/Linux, HP printer and 2 NAS to 8-port switch.

Interconnection after installation of Proxmox on HPE ML30 Gen10:

- Mitrastar router DMZ activated to OPNsense WAN IP. Mitrastar router IP range changed, keeping the previous one for OPNsense LAN range.
- LAN1 of HPE ML30 Gen 10 server as LAN (shared with iLO and Proxmox management)
- LAN2 of ML30 server dedicated to WAN
- Cable from 8-port switch of the office to Router HGU to port LAN1, cable from port LAN2 to router HGU (ML30 of intermediary)

In this scenario I find:

- That the LAN1 connection gives access to VMs, Proxmox and OPNsense, but the link speed is 100Mbps (it is only physically detected since OPNsense shows a virtual link of 10Gbps).
- In this case, the tests from the Proxmox shell, reach a maximum of 700Mbit/s via Speetest CLI
- A test via www.speedtest.com from the PC with Ubuntu does not exceed 100Mbps.
- Network parameters of the datacenter, host and virtual machines are reviewed, LAN configuration of the OPNsense virtual machine is tried to be changed. Same result

Current scenario

- Checked the office cable with a tester. Cable OK.
- Added 8-port switch NOT manageable between the cable coming from the office and LAN1 port of the ML30 Gen10 server. In this way both cables link to Gigabit.
- In this way access to iLO is lost. Still investigating the reason.

Does anyone find everything I explain coherent?
Is it rational that the cable from the office to the HPE server links at 100Mbps?
Why does the Proxmox server test at ~700Mbit/s and the PC with Ubuntu at 100Mbps?
In this scenario: FTTH >> HGU / NAT / DMZ >> SWITCH >> PROXMOX / OPNSENSE / NAT >> SWITCH >> PC, is it normal that I cannot open ports? I have tried opening P2P ports and they are not listed as open.

Thank you very much
In a world without walls and fences, who needs windows and gates?
December 29, 2024, 05:24:15 PM #1
Quote from: xmftech on December 29, 2024, 04:28:50 PM- In this way access to iLO is lost. Still investigating the reason.

Reason found: When the server is started, OPNsense is not running and iLO is configured to obtain IP configuration via DHCP. Therefore, iLO cannot obtain IP from DHCP server which is on LAN side of OPNSense, when it is not started. Resolved by setting static IP configuration within iLO.
In a world without walls and fences, who needs windows and gates?
Print
Go Up Pages1
User actions