Hetnzer Network Interface settings for Proxmox and pfSense

interfaces

### Hetzner Online AG - installimage
# Loopback device:
auto lo
iface lo inet loopback

# device: eth0
auto eth0 ##Hetzner Interface
iface eth0 inet static
    address     <Main IP>
    broadcast   <Broadcast IP>
    netmask     255.255.255.224
    gateway     <Gateway IP>
    pointopoint <Gateway IP>

    # default route to access subnet
    up route add -net <Hetzner Route> netmask 255.255.255.224 gw <Gateway IP> eth0

auto vmbr0 ##Main Interface - Used for pfSense and any DMZ VM's
iface vmbr0 inet static
    address     <Main Hetzner IP>
    netmask     255.255.255.224
    bridge_ports none
    bridge_stp  off
    bridge_fd   0

    ##Any Extra IP's (You need at least 1 for the pfSense VM and 1 for every DMZ VM)
    up ip route add <Additional IP>/32 dev vmbr0

auto vmbr1 ##pfSense LAN - DHCP on this is controlled by pfSense
iface vmbr1 inet static
    address     10.0.0.254
    netmask     255.255.255.0
    gateway     <pfSense IP 10.0.0.x>
    bridge_ports none
    bridge_stp  off
    bridge_fd   0

auto vmbr2 ##Internal network between VM's
iface vmbr2 inet manual
    bridge_ports none
    bridge_stp  off
    bridge_fd   0

iface eth0 inet6 static
    address     <Main IPv6>
    netmask     64
    gateway     fe80::1

On Pfsense I set up vmbr0 to be WAN and vmbr1 to be LAN? Every VM will be added to vmbr1 and then managed with fw rules from pfsense?

Do you know if a setup like creating the VLANs on Pfsense and then be able to use tagging in Proxmox without manually distrubuting the subnets / vlans on PVE host itself?

Hi,

Did you have problem with setting up PfSense on Proxmox in Hetzner? I can't set the gateway from the other subnet. I tried to add it manually and I can ping and connect to gateway, but pfsense is still not accessible. If you have any ideas, please let me know.

Thanks,

Nikola