![]() ![]() ![]() a serial console/LARA to the proxmox host.The question is, should each private IP have a seperate MAC or not? What is specifically needed to get a multi-ip setup on WANĪ bit out of scope, but what you will need is III) I tried to handle the 2 additional external IPs by adding virtual ips in OPNsense, adding a 1:1 nat to the internal LAN ip and opening the firewall for the ports needed ( for each private lan IP ) - but yet i could not get it running. That is most probably a very much opnsense related question. II) is why do i need a from * to * IPSEC chain rule to get ipsec running. I) Why i cannot access PROXMOX.2 but access VMEXT.11 (ARP?) How to setup such a scenario using PCI-Passthrough instead of the Bridged Mode. To better outline the setup, i create this : (not sure its perfect, tell me what to improve) Questions: An IPsec mobile client connect (172.16.0.0/24) to LAN.eth0 is PCI-Passthroughed to the OPNsense KVM.3 Public 1IPs, IP2/3 are routed by MAC in the datacenter (to eth0).The server is the typical Hetzner Server, so only on NIC but multiple IPs or/subnets on this NIC. This setup should be based on a proxmox, being behind a opnsense VM hosted on the Proxmox itself which will protect proxmox, offer a firewall, a privat LAN and DHCP/DNS to the VMs and offer a IPsec connection into the LAN to access all VMs/Proxmox which are not NATed.
0 Comments
Leave a Reply. |