Mission impossible: Proxmox + IPfire + Switch L3 with InterVlan

Networking
1

Hello to all
I have a complex network created in the following way:
1)Modem 4g usb
2)PC with Proxmox with VM with IPFIRE
3)Switch L3 with VLAN

ProxMox(PC) is two network(The address of proxmox is https://192.168.1.2:8006)

  1. NETWORK1 192.168.1.2/24 gateway 192.168.1.1 (Use Linux Bridge)
  2. NETWORK2 192.168.0.2/24 (Use Linux Bridge)

Ipfire

  1. LAN 192.168.1.1 (GREEN)
  2. WAN 192.168.0.3/24 DNS 8.8.8.8 8.8.4.4 Gateway 192.168.0.1 (RED)
    Network–>Static Routes Host 192.168.2.0/24 Gateway 192.168.1.3
    Firewall
    Source 192.168.2.0/24 NAT Souce RED— Destination —ALL —Permited

SWITCH L3
1)VLAN1 192.168.1.0 255.255.255.0
2)VLAN2 192.168.2.0 255.255.255.0
IPV4 Static Routes
Destination IP 0.0.0.0----Next Hop Router IP Adress 192.168.1.1 Metric 4 VLAN1

PC(192.168.1.1)—>SWITCH(192.168.1.3 port 5 LAN1)

The 192.168.1.0 network:

  1. Browse the internet
  2. Accesses IPFIRE on 192.168.1.1
  3. Access ProxMox on 192.168.1.2
  4. In the network all machines ping.

The 192.168.2.0 network:

  1. Browse the internet
  2. Accesses IPFIRE on 192.168.1.1
  3. DOES NOT access ProxMox on 192.168.1.2
  4. In the network the ping to ProxMox does not work.
    Machine 192.168.1.2 does NOT seem to exist !!!

How can I solve it? I from any machine on the 192.168.2.0 network would also like to reach proxmox via https://192.168.1.2:8006. Can you help me? Please
Thanks bye

2

If I am reading your notes correctly the traffic path is 192.168.2.0/24->192.168.2.1 (L3 Switch) -> 192,168.1.3 (L3 Switch) -> 192.168.1.1 (IP fire) -> 192.168.1.2 (Proxmox).
What you are likely running into is a firewall LAN<->LAN rule issue on the IPFire box.
You can either work with the ipfire box to make the inter-vlan rules work, or you could also swap your L3 switch in as the gateway on your 192.168.1.0/24 network and just have it route 0.0.0.0 to the IPfire box on 192.168.1.3

3

Thanks Andrew Bfor the answer, but in ipfire I can’t insert the rule 0.0.0.0 to 192.168.1.3

4

hello
i have the same pb i can not add 0.0.0.0/24 via 192.168.x.x
do you have any solution?
thanks