Virtualized pfSense on Proxmox failing on WAN port

gelcom

Hi all! Any help is appreciated.

I have a 2.6 pfSense CE running on bare metal. So far so good.
I intend to migrate my pfSense box to a Proxmox VM.
On this Proxmox server I have a 4 port X710 Intel NIC.

First NIC port is mgmt port.

According to pfSense Recipes I created 2 new Linux bridges:

vmbr2 to X710 port 2
vmbr3 to X710 port 3

pfSense virtual machine was created with:

Guest OS Type: other
Graphic card: spice
Bus/Device: VirtIO Block
Type: host
Network Bridge: vmbr2
Model:VirtIO (paravirtualized)
Network Bridge: vmbr3
Model:VirtIO (paravirtualized)

Then I started pfSense VM and followed installation instructions.

VM is UP. I can access and configure pfSense through LAN address. This is OK.

Problem is that WAN port does not get DHCP client allocation from my ISP modem. No internet connectivity here.

I tryed to change network model to E1000 with no luck too.

If I passthrough the WAN NIC to VM it works but with NIC passthrough I loose the ability to snapshot my VM and this is not desirable. This should work without passthrough.

What am I missing here?

kind regards

viragomann

@gelcom
Ensure that there is no firewall active on Proxmox for the VM.

Did you disable 'hardware checksum offloading' in pfSense?

gelcom

Yes, I did! Sorry not to mention that.

viragomann

@gelcom
Basically the DHCP client works well on a Proxomox bridge and also with the VirtIO NIC model. So I suspect, that there is something wrong outside of pfSense.

But to investigate, run Diagnostic > Packet Capture on WAN with a port filter

67|68

Start the capture, go to Status > Interfaces and renew the WAN IP.

So you should see DHCP requests from pfSense and DHCP offer from the server and so on if it works.

stephenw10

Mmm, I'd expect that to 'just work'. Seems like a proxmox issue though. Can we see you proxmox network config?