From f6afaa96b7adfadd8395104a822be06fda7ab041 Mon Sep 17 00:00:00 2001 From: alex Date: Sat, 18 Oct 2025 20:46:49 +0200 Subject: Add DHCP firewall details --- blueprint/proxmox.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/blueprint/proxmox.md b/blueprint/proxmox.md index 7945786..08b3cc9 100644 --- a/blueprint/proxmox.md +++ b/blueprint/proxmox.md @@ -258,5 +258,6 @@ If you configure NAT, then notice that the Proxmox documentation about [Masquera In my tests, these rules were required, otherwise Proxmox does not route VM and LXC traffic to the Internet. Additionally, if your VMs and LXC hosts use DHCP/DNS from dnsmasq, then you need to allow traffic from their network to the Proxmox host. +DHCP requires an additional rule with the DHCPfwd macro. -For example, you can create an IP set `internal` for `10.10.10.0/24` and a rule that accepts all traffic from this IP set. +For example, you can create an IP set `internal` for `10.10.10.0/24` and a rule that accepts all traffic from this IP set, and another rule with the DHCPfwd macro. -- cgit v1.2.3