We have a Proxmox 3.1 server working perfectly (debian) and want to install csf firewall (with its IDS) so we can protect the host node without interfering the traffic of the VMs. We also want to use some features like lock some countries in csf (very easy) to the node and also to the VMs if possible.
We readed that we should add this lines to /etc/csf/[login to view URL]:
iptables -A FORWARD -d [login to view URL] -j ACCEPT
iptables -A FORWARD -d [login to view URL] -j ACCEPT
iptables -A FORWARD -d [login to view URL] -j ACCEPT
iptables -A FORWARD -d [login to view URL] -j ACCEPT
iptables -A FORWARD -d [login to view URL] -j ACCEPT
iptables -A FORWARD -d [login to view URL] -j ACCEPT
But when we enable csf connectivity to VMs doesn't work and the ping breaks, this is the network config (IPs are modified):
auto lo
iface lo inet loopback
# device: eth0
auto eth0
iface eth0 inet static
address [login to view URL]
netmask [login to view URL]
pointopoint [login to view URL]
gateway [login to view URL]
# for single IPs
auto vmbr0
iface vmbr0 inet static
address [login to view URL]
netmask [login to view URL]
bridge_ports none
bridge_stp off
bridge_fd 0
up ip route add [login to view URL] dev vmbr0
# for a subnet
auto vmbr1
iface vmbr1 inet static
address [login to view URL]
netmask [login to view URL]
bridge_ports none
bridge_stp off
bridge_fd 0
Virtualization we are using is KVM mainly, the network is routed with subnet..
This is a fast task for an expert.
We will require the list of commants used or a text indicating what has been done, so we can apply this config to another server.
Thanks
Dear Customer, this is Yaseen, and i am glad to work for you project, We specialise in Linux Unix VirtualMin Cpanel and Asterisk. I have read the project description and i assure you 100% quality and timely response to your questions. I would like to discuss this project before you award me so that we can proceed with the Milestones and further work details. Some of our Past System administration related projects list is below
https://www.freelancer.com/projects/PHP-MySQL/Setup-Kolab-Groupware-work-with.html
https://www.freelancer.com/projects/Failover-issue.html
https://www.freelancer.com/projects/Linux-Amazon-Web-Services/Linux-Server-Help.html
https://www.freelancer.com/projects/Linux/Monit-install-ubntu-linux.html
https://www.freelancer.com/projects/Linux-VoIP/VICI-Anything-VPS-astrix-Channel.5694111.html
https://www.freelancer.com/projects/Linux-VoIP/voipswitch-alternate-asterik.html
https://www.freelancer.com/projects/Migration-reinstall-plesk-ispconfig.html
https://www.freelancer.com/projects/Linux/issues-openVZ-server.html
https://www.freelancer.com/projects/Proxmox-Server-network-setup-firewall.html
https://www.freelancer.com/projects/linux-support-for-proxmox-firewall.html
https://www.freelancer.com/projects/linux-support-for-proxmox-firewall.html
https://www.freelancer.com/projects/PowerMTA-assistance-required.html
Based upon our past feedbacks, please choose our service for the best of your experience at this website
Hi,
I am a highly experienced sysadmin with more than 8 years of experience. Working with csf on a daily basis
Please let me know if you are interested
Hi
I can resolve Your problem with csf and Proxmox - I have done it before.
I`m expert in the linux and has also strong experience with Proxmox.
RHCE Cert passed.
Ready to resolve Your problem.
Best Regards
Marek
Hello Sir,
I have noticed that the ip address which you have used in your mentioned iptables rules is wrong.
This is the wrong IPv4 144.99.183.323. Please configure the correct IP Address first and i hope it will solve your problem. If you problem is still not solve please message me to discuss more about it.
Thank you.