OPNsense under Proxmox - Why Oh Why Does This Not Work???

Started by spetrillo, Today at 01:16:36 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
Today at 01:16:36 AM
I am still struggling with this. I have made major changes to my VLAN structure but this still is not working. So let me step through my setup.

VLANs:

VLAN 2: Network devices and APs
VLAN 3: Servers
VLAN 10: Home wireless
VLAN 12: IoT wireless
VLAN 20: Streaming

My Proxmox server has an onboard 1 gig NIC. I have added a two port 10 gig PCIe adapter, as well as a USB 2.5 gig adapter. Proxmox UI is on USB adapter(vmbr0.2). OPNsense VLANs are on the 10 gig ports(vmbr1 and vmbr2). OPNsense WAN is on the onboard NIC(vmbr3).

My Proxmox networking config is as follows:

iface enp2s0f0 inet manual

auto vmbr1
iface vmbr1 inet manual
        bridge-ports enp2s0f0
        bridge-stp off
        bridge-fd 0
        bridge-vlan-aware yes
        bridge-vids 2,3,20
#FW 2,3,20

iface enp2s0f1 inet manual

auto vmbr2
iface vmbr2 inet manual
        bridge-ports enp2s0f1
        bridge-stp off
        bridge-fd 0
        bridge-vlan-aware yes
        bridge-vids 10,12
#FW 10,12

iface eno1 inet manual

auto vmbr3
iface vmbr3 inet dhcp
        bridge-ports eno1
        bridge-stp off
        bridge-fd 0
#FW WAN
iface enx6c1ff70ad1e0 inet manual

auto vmbr0
iface vmbr0 inet manual
        bridge-ports enx6c1ff70ad1e0
        bridge-stp off
        bridge-fd 0
        bridge-vlan-aware yes
        bridge-vids 2,3
#VMs 2,3

auto vmbr0.2
iface vmbr0.2 inet static       
        address 192.168.1.66/26
        gateway 192.168.1.65
#Mgmt

My OPNsense VM config is attached. I have a managed 1 gig switch I am testing with. Port 1 of the switch is connected to my PC and is configured for vlan 2 untagged. Port 2 of the switch is connected to the first port of the 10 gig adapter and both vlan2/3 are set to tagged. VLAN 2 is the LAN side of my OPNsense VM, with an IP of 192.168.1.1/26. I configure my PC side for 192.168.1.10/26 and assign the adapter to VLAN 2 also. When I try to ping 192.168.1.1 from my PC(192.168.1.10) I get nothing. I fully expected the LAN side of the OPNsense firewall to respond, but it is not.

Have I done anything incorrect? I believe the networking is correct but I do not know for sure.

Thanks,
Steve

Print
Go Up Pages1
User actions