I will share how I setup homelab server with Proxmox VE. I used wireless network interface instead of ethernet, I only use my router as networking provider.
If I use ethernet cable, I can directly access VM inside Proxmox by default. But if I use WiFi, I need more configuration like use static IP instead of DHCP on my router. So I configure custom wireless network interface inside Proxmox server but make sure the machine have wireless card. And configure VPN using WireGuard to create private network inside Proxmox server so I can remote directly into a VM.
I also read some solutions with NAT and port forwarding here, and can be use too.
- https://forum.proxmox.com/threads/w...teur-needs-help-only-for-patient-users.78669/
- https://pve.proxmox.com/wiki/Network_Configuration
- https://forum.proxmox.com/threads/proxmox-wifi-interface-in-bridge.125624/
First update apt and upgrade if fresh install
Code:
apt update && apt upgrade -y Wireless Interface Configuration
Go to your router and set static private IP for wifi network go to Network -> LAN Settings. In my case, I will set started DHCP from 192.168.1.21 so I can set static private IP in range from 192.168.1.2 to 192.168.1.20. I planned to configure IP list like this:
- 192.168.1.2 PC
- 192.168.1.3 Laptop
- 192.168.1.4 Homeserver
Then remote your proxmox server and install wireless-tools
Code:
apt install -y wireless-toolsDo a backup of the network interface first
Code:
cp /etc/network/interfaces /etc/network/interfaces.bakConfigure network interface for wlan on /etc/network/interfaces
Code:
auto loiface lo inet loopbackiface enp0s31f6 inet manualauto vmbr0iface vmbr0 inet manual address 192.168.56.1/24 bridge-ports none bridge-stp off bridge-fd 0 post-up echo 1 > /proc/sys/net/ipv4/ip_forward post-up iptables -t nat -A POSTROUTING -s '192.168.56.0/24' -o wlp3s0 -j MASQUERADE post-down iptables -t nat -D POSTROUTING -s '192.168.56.0/24' -o wlp3s0 -j MASQUERADE post-up iptables -t raw -I PREROUTING -i fwbr+ -j CT --zone 1 post-down iptables -t raw -D PREROUTING -i fwbr+ -j CT --zone 1auto wlp3s0iface wlp3s0 inet static address 192.168.1.4 netmask 255.255.255.0 gateway 192.168.1.1 wpa-ssid "<YOUR_SSID>" wpa-psk "<YOUR_PASSWORD>"source /etc/network/interfaces.d/*Note:
- vmbr0 is VM bridge network interface, so this interface will be use for internal networking between proxmox server and VM. We can assume this interface as a gateway for VM
- It will be configure to enable ipv4 forwarding using wlp3s0 interface to get access on the internet. Please see https://pve.proxmox.com/wiki/Network_Configuration for Masquerading (NAT) with ip tables
- enp0s31f6 is ethernet lan interface, adjust with actual interface
- wlp3s0 is wlan interface, adjust with actual interface
- Set SSID and PSK security inside the network interface to automatically connect to the WiFi
Configure DNS server on /etc/resolv.conf
Code:
search localhostnameserver 192.168.1.1nameserver 8.8.8.8nameserver 8.8.4.4Finally, restart networking with this command systemctl restart networking and try to ping google.com to makesure our proxmox server have internet access using WiFi.
You can try to create new VM, I use Ubuntu Server 22.04.4 LTS iso. And configure network like this:
Code:
Subnet : 192.168.56.0/24IP Address : 192.168.56.XGateway : 192.168.56.1DNS : 192.168.56.1Or if you still not have internet access, you can follow the /etc/netplan/00-installer-config.yaml below.
Code:
# This is network config written by 'subiquity'network: ethernets: ens18: addresses: - 192.168.56.X/24 nameserver: addresses: - 8.8.8.8 - 8.8.4.4 - 192.168.56.1 search: [] routes: - to: 0.0.0.0/0 - via: 192.168.56.1 version: 2VPN Configuration
Before use VPN we can't access VM directly from our PC / LAPTOP because it have different network. Our device using router network and our VM using VMBridge network.
I use VPN because I want using WiFi network instead of ethernet LAN cable. VM network is using `vmbr0` as their gateway, so it can't connect to VM directly from PC or LAPTOP outside internal network Proxmox VE. Thats why we need to using VPN to cover the network.
First step, we will register free DDNS (Dynamic Domain Name System). Because I don't have public IP so to handle that I use DDNS and using the NoIP. Then create a hostname that will be use for VPN later. Makesure the IP/Target is current your IP public.
I recommend using WireGuard for VPN provider because it is simple installation. We need to install and configure WireGuard VPN on Proxmox Host. You can follow the instruction from this documentation or you can follow this step below. Note: On the client side (PC / LAPTOP) must install the WireGuard client.
Run this script and follow the assistant.
Code:
wget https://git.io/wireguard -O wireguard-install.sh && bash wireguard-install.shSelect default gateway ipv4 address using wlan ip 192.168.1.4
Code:
Which IPv4 address should be used? 1) 192.168.1.4 2) 192.168.56.1IPv4 address [1]:If see this prompt below, you can fill in using NoIP registered hostname.
Code:
This server is behind NAT. What is the public IPv4 address or hostname?Public IPv4 address / hostname [XX.XX.XX.XX]:And select DNS server for the client, I will use Google 8.8.8.8 or 8.8.4.4.
Code:
Select a DNS server for the client: 1) Current system resolvers 2) Google 3) 1.1.1.1 4) OpenDNS 5) Quad9 6) AdGuardDNS server [1]: 2Then we will have generated <client_name>.conf configuration file. The file should be like this. Then copy into a new file on client side and import into WireGuard client.
Code:
[Interface]Address = 10.7.0.2/24DNS = 8.8.8.8, 8.8.4.4PrivateKey = secretprivatekey=[Peer]PublicKey = secretpublickey=PresharedKey = secretpresharedkey=AllowedIPs = 0.0.0.0/0, ::/0Endpoint = yourddns.zapto.org:51820PersistentKeepalive = 25Note: We will configure DDNS and port forwarding on our router first before connecting into VPN.
Go to your router Application -> DDNS and configure DDNS like this. Fill the username, password and hostname according your NoIP account.
Then go to Application -> Port Mapping or it can be Port Forwarding and configure like this. Public IP is the WireGuard IP which is on config file, usually if default will be use 10.7.0.2 and default port 51820. And will be route into our private IP at 192.168.1.4 with the same port.
Because I don't want allow any traffic outside my port forwarding configuration, I will set range only 51820 to 51820 that means only allow port 51820 from 10.7.0.2.
Finally, we can connect into our VPN using WireGuard client. Once connected, we can access our Proxmox server using vmbr0 local VM IP at 192.168.56.1 or directly access our VM via VM bridge at 192.168.56.X
Code:
ssh username@192.168.56.X![[TUTORIAL] - Setup Proxmox Network with WiFi Interface and VPN (2024)](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8/h8AAvMB+NzmkbcAAAAASUVORK5CYII=)