proxmox
PFsense VM on Proxmox 8.1 on Lenovo x3650 M5 – 1349
PFsense VM on Proxmox 8.1 on Lenovo x3650 M5 – 1349
#PFsense #Proxmox #Lenovo #x3650
“My PlayHouse”
I have installed Proxmox on my lovely Lenovo x3650 M5, in the wish to migrate from VMware ESXi to Proxmox.
I use PFsense to route and firewall my internet connection. So in this video I set that up on Proxmox, mutch the same way I have it running on…
source
To see the full content, share this page by clicking one of the buttons below |
Nice video as always. That part when you said the 10g nic was split into 4/4 virtual adapters..is that automatic or is there an option for that?
Hi!
I was wondering on doing something differently but installing dsm 7.1 qnap operating system on a Lenovo x3650 M5 .What do you think? Thank you so much Morten !!! Nice video !!!!!!
Oh boy, oh boy. Seems like Australia has slow internet for a higher price.
hey, i recently made the switch too. I have SR-IOV on my NIC so I did passthrough of one of the ports (for WAN) straight to pfsense and then I gave it another nic via SR-IOV which would be for LAN.
edit: also theres a bunch of tools you can use to convert your old esxi images to proxmox. It seems to bloat the filesize for some reason, moving my pfsense vm from 16gb to 32gb but hey its not something i'll lose sleep over lol
Word of advice virtualizing pfsense. You should use Ethernet ( pcie ) ports passthrough instead of Linux bridges. Like that that you get access to all the card original functions and avoid the slightly annoying extra overhead that proxmox adds to port bridges. If you want to use bridge at least choose virtio and not one of those awful emulated things
I love proxmox. It intuitive unlike a couple of others who will remain nameless and it works well.
Have you tried XCP-NG (Xen Server)
Hello Morten! An important note on Proxmox is once you're ready to deploy a VM make sure to go to the settings and enable 'Start on boot' Then give it a boot order (0 seems like a good idea for a firewall.)
🤔🤔@Morten – thats not very safe , you have to do a "hardware passthru" for the network card for pfsence, so pfsence can access it directly, i will not be visable/accessble in Proxmox
Now you have proxmox -> pfsence -> network
It should be pfsence -> network -> proxmox
😊😊😊
this is ok but you should use other fork of monowall – opnsense – better drivers, much better licensing – they want you to sell for them #sell it all ..the other caveat/request would be – since you are using a server you probably have slots for a couple 56g dual port connect-x cards (3rd gen – they will run 40g over cat8) – this is what i want – ws with dual nas and 40g – the extra port in each nas means you can sync nas easy – total cost for ethernet gear – about 250? not a bad upgrade really – no switch needed – big timesaver #pfsense shell #dual wan #load balanced #round robin dns #nmtui #bridge-utils #bond0
Virtualized firewall is a big nono
If you're running pfsense as a router you can run both WAN connections to pfsense, set one as the primary/prefered gateweay and then set it up to automatically failover to the other WAN connection in case connection #1 goes down. No need to manually move transcievers or cables that way.
Hello. Important thing about VirtIO and pfsense. When using the VirtIO network adapter, you must disable "Hardware Checksum Offloading" in the pfsense settings. Otherwise, network performance will be very weak. There is an article about this in the pfsense documentation.
Internet is cheap 👍🇩🇰 1000/300 for 34€ ish
Wow! You shaved your face and did your hair with just a snap 😂
Nice video 👍 but why are you using a "real" router ? 🙂
40€ for 1000/1000 fiber Internet connection?
I pay 45€ for 100/40 vdsl Internet here in Germany. This year, fiber get's rolled out where i live, but it cost's nearly the same and you can not have a fixed IP – so I stay with dsl.
Hi, you could also try to activate in Proxmox that you have Hardware direct access to the ports with iommu. So that the ports for the Internet Connection can be passthrough directly to the pfSense.
And for the VMs you create an virtualbridge Port that you set up as an addional Network Card as you did now for internal usage of the VMs.
So all VMs could talk to each other for example over the virtual 10GBit Port.
And non of the Traffic of the Virutal Maschines could left the Server without running through pfSense first.
It just banned my comment because of the link… I was telling about you should be able to export the vms in Open Virtualization Format to migrate them to proxmox
Been using proxmox for few years now, never looked back after that!
VMware is kinda trash
My uncle and grandpa's house is getting a new hypervisor installation for new pfsense with backup internet on the DSL (50mbit) and 5G antenna with alpsim which is the one we are using right now
Well done.