Setup Network for DMZ

f!ReW4LL · Nov 21, 2021

Hi Guys

I'll try to explain it as well as possible, I apologise in advance for my bad english :)

I'm trying to understand if it's worth it to make the switch from Proxmox to Truenas Scale. Just realize that TrueNAS Scale is a good alternative for what I need :)

Now I have encountered the following problem:

When configuring the interfaces, my mainboard has 4 NICs the 3x of them configured in a bond with loadbalancing and 1x I would like to put in the DMZ so the VMS and jail like Plex can communicate over it. I was able to create this with proxmox without any more problems.

But somehow I can't configure this with truenas. The VM cannot communicate with the outside world. I guess I configure the IP on my own, because I have not configured DHCP in the DMZ. But somehow nothing comes in and nothing comes out. The firewall is configured correctly, which was no problem earlier with Proxmox.

Now I ask myself, where is the needle?

Regards

sretalla · Nov 21, 2021

You need to consider your networking in this way:

Physical NIC (1-3) -> LACP -> VLAN (if you have it) -> Bridge1 (IP address goes here).

Physical NIC (4) -> VLAN (if you have it) -> Bridge2 (IP address goes here).

You then assign all your Apps (not jails in SCALE, they are Kubernetes container-based apps) and VMs to the bridge (Bridge2 in this case) and assign the addresses (and default gateway) manually.

f!ReW4LL · Nov 21, 2021

sretalla said:
You need to consider your networking in this way:

Physical NIC (1-3) -> LACP -> VLAN (if you have it) -> Bridge1 (IP address goes here).

Physical NIC (4) -> VLAN (if you have it) -> Bridge2 (IP address goes here).

You then assign all your Apps (not jails in SCALE, they are Kubernetes container-based apps) and VMs to the bridge (Bridge2 in this case) and assign the addresses (and default gateway) manually.

Hi Sretalla

Thank you for your Feedback. After your Post i could manage it to get it work.
I was just about to install the apps and completely threw all my network settings out the window.
I can't reconfigure it because it keeps throwing an error when I create the LACP. :/

Really strange ..........

sretalla · Nov 22, 2021

f!ReW4LL said:
After your Post i could manage it to get it work.

That's great!

f!ReW4LL said:
I was just about to install the apps and completely threw all my network settings out the window.

OK, not sure why you would do that...

f!ReW4LL said:
I can't reconfigure it because it keeps throwing an error when I create the LACP. :/

It seems like you need/want some more help... what's the error?

f!ReW4LL · Nov 22, 2021

sretalla said:
That's great!

OK, not sure why you would do that...

It seems like you need/want some more help... what's the error?

It messed up every configuration I did. So I had to reinstall the whole system after installing some apps. In any case, I see that I can't use Truena's Scale as the main system for my purpose. Because I can't bind the apps to the different interfaces. Like for example: Plex to the DMZ and Tautulli to the internal network. Or am I missing a setting there?

sretalla · Nov 22, 2021

f!ReW4LL said:
Because I can't bind the apps to the different interfaces.

Depends on how you want to do it...

If you're using TrueCharts apps, you can select the Loadbalancer Type and set the IP to listen on... pick the IP of the DMZ Bridge interface if you want to.

For custom apps (Blue Button "Launch Docker Image"), you can even bind to an IP address specifically for the app and select the interface to bind that IP to (you would select the DMZ bridge).

For VMs, you can also select the DMZ Bridge Interface...

I don't know what's missing, but it's ultimately up to you. All the best with whatever OS you select.

f!ReW4LL · Nov 22, 2021

sretalla said:
If you're using TrueCharts apps, you can select the Loadbalancer Type and set the IP to listen on... pick the IP of the DMZ Bridge interface if you want to.

That is the Point i didnt see. Or im to dumb for that....

I'm missing some how to.

sretalla said:
For custom apps (Blue Button "Launch Docker Image"), you can even bind to an IP address specifically for the app and select the interface to bind that IP to (you would select the DMZ bridge).

I tried with Plex and this option was not there.

sretalla said:
For VMs, you can also select the DMZ Bridge Interface...

Yes i saw that..... that is what im looking for.

sretalla said:
I don't know what's missing, but it's ultimately up to you. All the best with whatever OS you select.

ill stick a while now with Truenas Scale and will try little more. Otherwise i will switch back to Proxmox and do that with a VM again :( Not that what i want but.... yeah..... dont want to waist to much time

Reply
Report Edit Delete

sretalla · Nov 22, 2021

f!ReW4LL said:
I tried with Plex and this option was not there.

You type the IP of the DMZ interface into the Loadbalancer IP field....

I used the TrueCharts version of Plex in case that's different from the Official one if that matters (I checked... it matters, all the TrueCharts apps have those settings).

f!ReW4LL · Nov 23, 2021

sretalla said:
View attachment 50941

You type the IP of the DMZ interface into the Loadbalancer IP field....

I used the TrueCharts version of Plex in case that's different from the Official one if that matters (I checked... it matters, all the TrueCharts apps have those settings).

Hi Sretalla

Thanks for the Screenshot, ill give them a try.

Will report back.

Regards

Important Announcement for the TrueNAS Community.

Setup Network for DMZ

f!ReW4LL

Dabbler

sretalla

Powered by Neutrality

f!ReW4LL

Dabbler

sretalla

Powered by Neutrality

f!ReW4LL

Dabbler

sretalla

Powered by Neutrality

f!ReW4LL

Dabbler

sretalla

Powered by Neutrality

f!ReW4LL

Dabbler

Similar threads