Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Virtual pfSense inside a Proxmox VE host (at Hetzner)

    Scheduled Pinned Locked Moved Routing and Multi WAN
    1 Posts 1 Posters 4.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      Sherminator
      last edited by

      Hi everybody,

      I rent a root server at Hetzner (a german server hosting provider), and now I would like to build up the following setting:

      • Proxmox VE installed on the physical machine (with a public IP address)
      • virtual pfSense (with a second public IP Address at its WAN interface)
      • private network on the LAN side of pfSense

      This is the /etc/network/interfaces of my host machine:

      
# network interface settings
auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
        address   <first public="" ip="" address="">netmask  255.255.255.224
        gateway   <gateway of="" the="" above="" network="">broadcast   <broadcast of="" the="" above="" network="">pointopoint <gateway of="" the="" above="" network="">auto vmbr0
iface vmbr0 inet static
        address   <first public="" ip="" address="">netmask  255.255.255.255
        broadcast   <broadcast of="" the="" above="" network="">bridge_ports none
        bridge_stp off
        bridge_fd 0
        up ip route add <second public="" ip="" address="">/32 dev vmbr0

auto vmbr1
iface vmbr1 inet static
        address  10.0.0.2
        netmask  255.255.255.0
        bridge_ports none
        bridge_stp off
        bridge_fd 0</second></broadcast></first></gateway></broadcast></gateway></first>

      so far so working! :)

      For testing purposes I built up a virtual linux server and configured the network like this:

      
auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
        address <second public="" ip="" address="">netmask 255.255.255.255
        gateway <first public="" ip="" address="">broadcast <broadcast of="" the="" above="" network="">pointopoint <first public="" ip="" address="">dns-nameservers</first></broadcast></first></second>

      This setup also works like a charm! :)

      Now I like to build up a virtual pfSense so its WAN interface is configured like the above linux server's eth0.
      So I went to webConfigurator and configured:

      • WAN's IP address:     <second public="" ip="" address="">- WAN IP alias:         <first public="" ip="" address="">- WAN default gateway:   <first public="" ip="" address="">Of course this doesn't work… ;-(
        Why "of course"? Because I know this is far away from the above linux server configuration (which works fine),
        but I have no further ideas how and where to configure something like "pointopoint" or a broadcast IP address outside of a given network.

      Thanks a lot for any ideas, hints or even solutions!

      Many greets from Germany
      Stephan  :)</first></first></second>

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.