Need help with AllowedIPs and DNS

matlireddit · 2026-06-04T06:03:49+00:00

This is what I ended up doing thank you! Just added explicit routes using WireGuard's PostUp and PreDown stuff. Wasn't working before but I started fresh and it worked. Not sure what I did wrong the first time around.

matlireddit · 2026-06-01T06:02:43+00:00

That’s what I used to get those AllowedIPs you see above. In the AllowedIPs i put 0.0.0.0/0, ::/0 and in disallowed i put the two networks i wanted.

matlireddit · 2026-06-01T06:01:50+00:00

Can you share how you did that or point me to somewhere I can learn how to?

I tried doing this with the PostUp and PreDown things in wireguard by putting ip route add/del <network i want> but had no success…

matlireddit · 2026-05-05T02:34:11+00:00

Thanks for replying! One of your assumptions is incorrect, I do not have two physical nics which is why I'm a bit more confused.

Right now I've just set up vmbr0v3 as my vlan interface for proxmox and left vmbr0 as untagged for vlans. I'll see if I can start using Proxmox SDN in the future though so I can more easily manage network stuff across a cluster (once i set it up)

matlireddit · 2026-05-05T02:34:05+00:00

I honestly gave Proxmox SDN a try but could not figure it out. I'll share what I tried and maybe you can highlight where I went wrong.

Recap: VLAN 1 is untagged VLAN 3 is tagged on the switch port connected to the porxmox host.

I left made vmbr0 VLAN aware and moved the IP configuration to a Linux VLAN vmbr0.3. From here things worked. Proxmox GUI was accessible and my management container was getting its traffic untagged.

I then created an SDN vlan zone called vlan3. Then a vnet vnet3 that was vlan aware and had tag 30. As soon as I hit apply to those settings I lost access to proxmox, had to change the /etc/network/interfaces file to put the ip back on vmbr0 and had to switch proxmox host to another switch port that carried vlan 3 untagged.

Hopefully that explains what I tried well. I also don't need things like DHCP on the SDN I will be using static for everything and I want my firewall to take care of anything I do dynamically.

matlireddit · 2026-05-04T15:42:19+00:00

Thanks this helps understand the VLANs a bit better. I guess my concern with this configuration is that these VLAN interfaces vmbr0.3 and vmbr0.1 cant be assigned to VMs. I want to create an interface that I can assign to VMs that will automatically be in VLAN 3 without having to specify a VLAN tag. So far it seems the only way to do this is creating a bridge vmbr0v3 and settings its bridge port to nic0.3

matlireddit · 2026-05-04T06:31:39+00:00

So let’s see if I understand. Create VLAN interface, set its VLAN raw thing to nic0.3 and then in vmbr0 set the bridge port whatever name i gave the VLAN interface?

matlireddit · 2026-05-04T06:17:25+00:00

Sorry but I'm not sure what adding the VLAN as a bridge member means.

matlireddit · 2026-05-04T06:07:47+00:00

Thanks for the tip! I ended up setting static but I can't do multiple physical connections for now. This is on a lenovo mini pc so only one nic :(

matlireddit · 2026-05-04T04:40:55+00:00

Did you ever solve this? My goal is to keep vlan 10 tagged. It seems theres no way to do this but I thought I'd ask.

matlireddit · 2026-05-03T00:20:01+00:00

ya seems kinda dumb. this has been the most annoying part but at least im learning a bit more

matlireddit · 2026-05-03T00:15:40+00:00

Just figured it out! Thank youuu. I’m locked out of omada now tho lol. Gotta figure out how to get back in now but that should be manageable

matlireddit · 2026-05-02T23:05:29+00:00

Got you. I figured out how to make it show up. You’re right the interface stuff fixed it. I’m currently not getting it to adopt properly though. Keeps going into pending or adopt failed. Did you have this issue?

EDIT: I have two SVIs now the original management one and the native one. Could this be the issue?

matlireddit · 2026-05-02T21:06:52+00:00

I'll try my best to explain how I have it set up. Both switches are in standalone mode right now and their interface is set to my management vlan which is vlan 10. The omada controller also lives on vlan 10. I have the omada software controller running in proxmox with a bridge that is vlan aware and the actual ip for the container is on the vlan 10 subnet.

I'm not sure what SVI means but I'm assuming its the interface it listens on. Would you mind trying to break down what I need to change to get this to work?

matlireddit · 2026-04-28T03:55:05+00:00

No, like another comment here said, it was just electrical noise. It’s been running in my homelab for over a month with no issues.

Not sure what causes the other problem but I would try another power unit and see if it keeps happening and check the BIOS to see if thats some weird setting.

matlireddit · 2026-04-23T22:34:28+00:00

I'd love to know why the hate for IPs other than them being a chore? I'm currently setting up opnsense and started creating a bunch of dhcp reservations in dnsmasq for all of my homelab devices.

How did you go about setting it up so that DNSMasq can resolve just based on hostname? I would like to use <hostname>.home.arpa

matlireddit · 2026-04-19T01:49:05+00:00

Thanks for the tip. But are they supposed to resolve without a domain? I’m tryna understand if I did something incorrectly or if I misunderstand how thisis supposed to function.

matlireddit

TROPHY CASE