Comment on Setting Up OPNsense on Proxmox: Doubts regarding NIC setup
jaschen306@sh.itjust.works 2 days ago
I did the same setup except I used pfsense and a Dell.
I wouldn’t recommend it at all. Want setting change that requires a reboot from proxmox would result in a total lots of the network. The weakest link is settings based.
I can’t begin to tell you the amount of times this happened to me that I went out and bought a Intel NUC and put the pfsense on bare metal.
Did you mean a setting change in proxmox? If yes, then I understand the risks.
Also, after the reboot does the setup comeback online automatically? Or do you need to perform some manual intervention?
Dultas@lemmy.world 1 day ago
It will come back if you set it to start on boot. Make sure you set its priority to start before anything else that requires network connectivity. If you ever move to having a cluster it’ll be a real headache because you won’t have a network for quorum and so you’ll have to physically access the box to force start it. I would highly recommend going out and getting a NUC or some other dedicated hardware as a priority before any other expansion.
jaschen306@sh.itjust.works 1 day ago
Well, at the time, there was no AI. So a lot of this was just me and stack overflow. I imagine it’s a lot easier now.
I had 3 Ethernets. 2x 10Gbe. 1x 1Gbe.
My Synology would directly connect to the proxmox directly using the 10Gbe since it has immich on it and the source of truth is on the Synology.
The other 10Gbe went into the 10Gbe switch which had ports for 2.5Gbe and my wifi 7 connects to this.
The main WAN would come in on the 1Gbe.
Any random settings that I updated, I would lose everything and have to plug in a keyboard and redo the .conf.
What I ended up doing was just have one the 10Gbe as the router WAN and then the 1Gbe became the console/different VLAN and so I don’t count on the router to connect to my pfsense.
I still at the very end just gutted pfsense out and gave it a proper box. Never a problem since.
m4ylame0wecm@lemmy.zip 1 day ago
Start on Boot for the VM should take care of that.
My OpnSense is a VM on some n100 mini PC under proxmox. Regular reboots haven’t had a need to attach a monitor in years, or manually hit the proxmox webui for anything like that.
If you skip passing through NICs, virtio can work just fine (1 Gbps NAT throughput on 1G intel nics). For me, this is to have the option of adding a 2nd opnSense or whatever alongside (segmentation or just prepping replacement or stuff like that). I also run small core services (dns) on the miniPC as additional containers or VMs.