Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Proxmox + pfSense: Enable Internet for Internal VMs

    Scheduled Pinned Locked Moved General pfSense Questions
    pfsensenetwork
    4 Posts 4 Posters 253 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Z
      zikou
      last edited by

      Hi everyone,

      I'm currently setting up a pfSense VM on Proxmox and would appreciate your guidance on properly configuring it so that VMs on the LAN interface (vmbr2) can access the internet, proxmox is installed on ovh dedicated server.

      Network Setup
      Proxmox Host

      vmbr0: Public IP public-ip/24

      vmbr1: 10.10.0.1/24 – used for pfSense WAN

      vmbr2: 10.20.0.1/24 – used for pfSense LAN and other internal VMs

      pfSense VM

      WAN: 10.10.0.252 (connected to vmbr1)

      LAN: 10.20.0.252 (connected to vmbr2)

      Other VMs

      Example: 10.20.0.100 (connected to vmbr2)

      Gateway: 10.20.0.252

      NollipfSenseN 1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        There should be nothing special required. The default config should allow hosts in the LAN subnet to access anything in the WAN or further upstream.

        The biggest issue I'd expect there would be OVH and their weird gateway config. But that would only affect Proxmox in that setup not pfSense.

        1 Reply Last reply Reply Quote 0
        • Z
          Zermus
          last edited by

          You have nothing routing your vmbr1/2 to your vmbr0 public IP gateway. I use this setup on my colo so pfSense handles that.

          vmbr0: Proxmox VE Public IP / pfSense VM WAN public IP
          vmbr1: pfSense LAN IP as Gateway for internal VMs

          You really don't even need the Proxmox public IP on vmbr0, but I just firewall it off with pve-firewall and have it there so I can monitor VMs rebooting including pfSense without losing connection, but it does take a public IP away for that.

          1 Reply Last reply Reply Quote 1
          • NollipfSenseN
            NollipfSense @zikou
            last edited by

            @zikou Please follow this: https://docs.netgate.com/pfsense/en/latest/recipes/virtualize-proxmox-ve.html

            pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
            pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

            1 Reply Last reply Reply Quote 1
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.