From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: <pve-user-bounces@lists.proxmox.com> Received: from firstgate.proxmox.com (firstgate.proxmox.com [212.224.123.68]) by lore.proxmox.com (Postfix) with ESMTPS id 5AB501FF162 for <inbox@lore.proxmox.com>; Sat, 5 Oct 2024 22:17:17 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id DA2A01CE58; Sat, 5 Oct 2024 22:17:33 +0200 (CEST) ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=wGIevJfJCDZB4chaqUIZcAMks3Q/CX60+b5OnYQdIlskc7u5evsY//fH82bmddLLjn8NRguT5wzr41eg2ZuhItF9j7qU14SHipu5mQsX+oP2s7eIaWj6njZjFDwbXQit41ocnUQERxz0ds8R+7dNsGA0nubDR/6udYInGceiMXMRt0BlmaN07wyy6CgOFU4q4ql6doqXRa4f7qeHLJNwZsERh84QDQKOhqvJNDX3slycoBdudNo68SPklncSPaIRNp4YM7O+/ukWa6gfTrlE4EKj/Gh5e4PfI5i8bpzReUedhgZnz/U/+0uqilEf2d/XDItwq8tMdOTbQC2Ni3Vv7Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=wGN3TOwsyh4psBBYvOVW1smgA7TYru+Qc2s9HbNMcgg=; b=GYUrQPpWSF+u0VMiXSJmc11GtfT8ady/NQSNtwB7kTECKAMkTbmxe0y0bnBruTlFnd3H6nM3EfveCBc9RDjIF4j+GVPd80zLN5hBqBHe93efPjfL7pJlEVVXt772SLn8iu986sMO3ybrHXqJmLgWxTKJU7OGk24JtODxWwOuOBnNPSdR4cc+X6aCAA+gFofOSwMNZe0TLtmKSybC/IiboQZjff7xKt4wjXyAPQKD+ZNh4ynHZP2Vy7vSJkQUxmCM9oOQHpD6EyhS3i6dW5IA+5pEENxrffP2DPBf3wmHNU1i3BBoGP0ALXNrAPkbhqMELz7HfdOJwHw2R5X6NwYKmw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 62.210.214.198) smtp.rcpttodomain=lists.proxmox.com smtp.mailfrom=shymega.org.uk; dmarc=pass (p=none sp=none pct=100) action=none header.from=shymega.org.uk; dkim=none (message not signed); arc=none (0) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=shymega.org.uk; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=wGN3TOwsyh4psBBYvOVW1smgA7TYru+Qc2s9HbNMcgg=; b=dmUD2pZU0OVvokBH1l6iihnYQ5k8t0cadNTh5t37hmOOnvc3Vozb+CuttuGrzOw5krpjbcaQH/eJl86HLqlKA09W42R9cYo6YYjYdXnahqaL0IIaf0b2sR3WI5rdFnrxuCOOyxmnkP1CwFVkg4xDdEroHOzmUfJZe4PO6hapqU8Y3tkqkRDfFD1+p5v8LHOb/acIIPO07FgHdvRoAAe0u4N0IUoH7P9wOpzQ0lMFoAObVgyNJ0JNdGF8rZ4OE3Sz679CD+zQzLKyx7yg7mQsDipQj8s9RfWz2xA8apgwhw8hj9uAyeFIoJQ6L1Mb/w7zqUOAvZT2yWLJmhTTMFxk5A== X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 62.210.214.198) smtp.mailfrom=shymega.org.uk; dkim=none (message not signed) header.d=none;dmarc=pass action=none header.from=shymega.org.uk; Received-SPF: Pass (protection.outlook.com: domain of shymega.org.uk designates 62.210.214.198 as permitted sender) receiver=protection.outlook.com; client-ip=62.210.214.198; helo=oracle.rodriguez.org.uk; pr=C Date: Sat, 5 Oct 2024 21:17:16 +0100 From: "Dom (shymega) Rodriguez" <shymega@shymega.org.uk> To: lord_Misio <sir_Misiek1@o2.pl> Message-ID: <rixgubme6qr4biwty4o7jj2gihyo3avtculggnwtinoezprn56@flrxpfajdzd6> References: <c3ea5ccc-6fb8-4f41-8f93-d1de3c41a0a1@o2.pl> MIME-Version: 1.0 In-Reply-To: <c3ea5ccc-6fb8-4f41-8f93-d1de3c41a0a1@o2.pl> X-EOPAttributedMessage: 0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: CW2PEPF000056BE:EE_|CWXP265MB5274:EE_ X-MS-Office365-Filtering-Correlation-Id: b2e8d17f-f4af-4db9-ef43-08dce57ab82a X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; ARA:13230040|82310400026|376014|1800799024|36860700013; X-Microsoft-Antispam-Message-Info: =?utf-8?B?Q1g2RFlvL1MvWlhYamxwYkxEamFna2xxOHB1UE5jRmt6T0p5QU10S2E3T1dv?= =?utf-8?B?VENJTHhYYVUySTFiZFRWdWhxNHQ0TXhscSt3QVBRUk9zb1JqRVZYeThrU0pO?= =?utf-8?B?cXBoRkUvQW1BQnJnR2diU3k1NitJbFlvUXU3akpHM3JjNUFYUWpGREdkcmhn?= =?utf-8?B?V1lnWEJlSDNXL0QxRkdpS2V2MnVqWFBQSnJ0L1pENHV6VkNyOXR5Sk1RdU9Q?= =?utf-8?B?YXhPRXNZV1RzTWR1OWdGTFUrSXk0cFkwME9KdVIzT2dnTzJEM2I2MEU3bFpj?= =?utf-8?B?QVc2a1dRK3d2SjhDczRYSFRISTFxbERkTnhidHM4amQ3TE5idWZPUXRQRGJI?= =?utf-8?B?dW9tZ0VRdG80Zjg1bVpESXZqS1RLcXJVQXJFeHlNUFhRaExKTXhrZDNEL3dl?= =?utf-8?B?Sm0xd092TE1uUnVYSk4zTWZ4Z1lqcnFHNnE1N2lQN1RnTjNHclg4eXRSQitZ?= =?utf-8?B?M1AxVy9yWWdyYVVHdlFpL3dhajY1STdtUTN6enNZL2huN2N0aVloaVhjK0E4?= =?utf-8?B?SXNrVEtzZDVFdXIvZ3VaRk54MmgxbG9MYU84U1RyUGNkbFpwNnBjTUZ2dk56?= =?utf-8?B?Y21lbmxka0Q2MFQ4azJSV0ZCdU54NVVtVVpxMGY3VkZOenkyWXVTS3FRbFZ5?= =?utf-8?B?eGJaank3N3lib29MY2VkUmtIcTBnWlVQRUVoTjAvMmYrYUdPSllWNVpsd2do?= =?utf-8?B?eTZLWVdRaDlUSFlxUUFwWHoyY1czWGhDbm1WaVRKSjBBZlBjcDBoYXlnSFRD?= =?utf-8?B?NTF1cUowWDBvakpwNWZKRW1xWW1lamI0V0RucTJsdzkzQVFGTHdyTFREcHBE?= =?utf-8?B?ZzhjYmFiRFU3bnhTU05YL3FFUG0xemI5SGlpYXFtNTlwSDRiNDkyRnhmanA5?= =?utf-8?B?ZjBPbVBmNUZwNmFDM0VXQm1NbW1MMXBGY3lYK1YrUE1WWG9YdW8rRjdzc3Bl?= =?utf-8?B?eEoxTlZuRWpOQkNJc0pHeUVaRFBmQVc5emxuWVI0ZktLUjIrd2RMQlkyM1lv?= =?utf-8?B?VGxFMldsWmtMTHE2NnhzSjh1VFZHRTEyN2s3MWxVMWIyOExvTWRhSEZpNzUz?= =?utf-8?B?WEtoN0tZangxVmpIdW9vaTZ4Sy96dWc5Ui9YNm5TaGZJRTFBcStYVUo1VWVD?= =?utf-8?B?NFVsdUlJY1RURkx0QWNuOEI5R1YvWWIzWHR4NHFhQ2taeXBjTU9tQVA3ZnNm?= =?utf-8?B?dG1SbEZnNlNrenVCT25HZUZXMnVSVlgyZ3pBR1gxenpITlpLZWpHaU5IZmhE?= =?utf-8?B?di9YZktHTTlJTVFkaURsdHpldlZlM2trc2dESm1VOUFJM3RNQW1OTUNwMXQ2?= =?utf-8?B?bHhOL3J1V2tNekRGbXJrM2RydTdaeEs4alMxMWFqVEpVQktlY2hDWmI0dm9Y?= =?utf-8?B?dW8zczE0YUtmaklicVZpejhXWmhPbHZQdUpzbnp4RXpIZHI4Uzcrd1hLTW9T?= =?utf-8?B?WFJJaW0zcWxmRHF4ZE5wZy9yVDdKd2xISkN5eTliZmY2UGt1R2tCVlM4TEx1?= =?utf-8?B?R2Q4bnlKVGR5aDl3ME0zRVYwL0R0VnkyajBUN21uQWQvSDZlQmVaeWl3RUls?= =?utf-8?B?RkM2bjc4bjlRRWRRVVQxUnVHTDA5bUUzMkNsWkNZM0JyeGVnYkkxc0VqMFUw?= =?utf-8?B?cmMwSUdtdm9BQzMxbHZDdXpnTDhYYTlSR1Y1UG0ycWhoTW9DWXdMc0ZzQXVJ?= =?utf-8?B?QVg2Wml1R21UZ3hpTWgvU0QyVnhaQlQxNW1YVCtndmhKK0ZKNGptZHBiVVgz?= =?utf-8?Q?8DZ0iFAB7igsnH7I+GTbUVd5uwBeIKaYHg+z0w2?= X-Forefront-Antispam-Report: CIP:62.210.214.198; CTRY:FR; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:oracle.rodriguez.org.uk; PTR:oracle.rodriguez.org.uk; CAT:NONE; SFS:(13230040)(82310400026)(376014)(1800799024)(36860700013); DIR:OUT; SFP:1102; X-OriginatorOrg: shymega.org.uk X-MS-Exchange-CrossTenant-OriginalArrivalTime: 05 Oct 2024 20:17:21.7735 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: b2e8d17f-f4af-4db9-ef43-08dce57ab82a X-MS-Exchange-CrossTenant-Id: 7e15dc52-0465-4028-b82a-3c894bbc5ba6 X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=7e15dc52-0465-4028-b82a-3c894bbc5ba6; Ip=[62.210.214.198]; Helo=[oracle.rodriguez.org.uk] X-MS-Exchange-CrossTenant-AuthSource: CW2PEPF000056BE.GBRP265.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: CWXP265MB5274 X-SPAM-LEVEL: Spam detection results: 0 ARC_SIGNED 0.001 Message has a ARC signature ARC_VALID 0.001 Message has a valid ARC signature AWL 0.549 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DKIM_SIGNED 0.1 Message has a DKIM or DK signature, not necessarily valid DKIM_VALID -0.1 Message has at least one valid DKIM or DK signature DKIM_VALID_AU -0.1 Message has a valid DKIM or DK signature from author's domain DKIM_VALID_EF -0.1 Message has a valid DKIM or DK signature from envelope-from domain DMARC_PASS -0.1 DMARC pass policy SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record URIBL_BLOCKED 0.001 ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [shymega.org.uk, aa.net.uk, proxmox.com] Subject: Re: [PVE-User] Advice on setting up a L2TP VPN on Proxmox. X-BeenThere: pve-user@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox VE user list <pve-user.lists.proxmox.com> List-Unsubscribe: <https://lists.proxmox.com/cgi-bin/mailman/options/pve-user>, <mailto:pve-user-request@lists.proxmox.com?subject=unsubscribe> List-Archive: <http://lists.proxmox.com/pipermail/pve-user/> List-Post: <mailto:pve-user@lists.proxmox.com> List-Help: <mailto:pve-user-request@lists.proxmox.com?subject=help> List-Subscribe: <https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user>, <mailto:pve-user-request@lists.proxmox.com?subject=subscribe> Reply-To: Proxmox VE user list <pve-user@lists.proxmox.com> Cc: pve-user MAILING LIST <pve-user@lists.proxmox.com> Content-Type: multipart/mixed; boundary="===============4482097408320305510==" Errors-To: pve-user-bounces@lists.proxmox.com Sender: "pve-user" <pve-user-bounces@lists.proxmox.com> --===============4482097408320305510== Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="5sqsmevnhjxvn3vt" Content-Disposition: inline --5sqsmevnhjxvn3vt Content-Type: text/plain; charset=utf-8; format=flowed Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, On 30.09.2024 12:32, lord_Misio wrote: >=C2=A0=C2=A0=C2=A0 =C2=A0=C2=A0=C2=A0 Hi, > >Mybe use On OpnSense OpenVPN or IPSec=C2=A0 ;-) > >And do this easy: >WAN <=3D=3D> Open VPN (on rtr/utm) <=3D=3D>=C2=A0 LXC Yes, that is something I hadn't considered. I'll look into that. However, what does 'rtr'/'utm' mean? Btw, you didn't post this to the list, so I've cc'd the list in this reply. Thank you for your help, I'll look into it. I've also cross-posted my question on the forum as well, for visiblity[1]. [1]: https://forum.proxmox.com/threads/advice-on-setting-up-a-l2tp-vpn-on-p= roxmox.155493/=20 >;-) > >Best regards >Gregory > > >On 24/09/2024 20:29, Dom (shymega) Rodriguez wrote: > >>Hello, >> >>I've got a Proxmox server, and I'm wanting to use an A&A L2TP VPN[0] on >>the Proxmox host. >> >>I'm unsure how to set this up in `/etc/network/interfaces`, as I >>primarily use NetworkManager on NixOS. >> >>I was thinking of running pfSense/opnSense in a VM, and then connecting >>my VMs and LXC containers behind it. The reason I'm using a L2TP VPN is >>because the hosting company don't offer IPv6 without a block of IPv4 IPs, >>and I think that's overkill. All I need is one IPv6 block and one IPv4 >>address. >> >>My desired setup would be: >> >>WAN <=3D=3D> L2TP VPN <=3D=3D> Proxmox host <=3D=3D> Firewall VM=20 >>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0= =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0= =C2=A0=C2=A0=C2=A0 |=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 | >>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0= =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 VMs=C2=A0 <=3D>= =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 <=3D> LXC >>[0]: https://www.aa.net.uk/broadband/l2tp-service/ >> >>Is this possible? >> >>Best wishes, >>--=20 >>Dom Rodriguez >>GPG Fingerprint: EB0D 45E6 D0DC 1BA1 A2B5=C2=A0 FC24 72DC F123 1E54 BD43 Best wishes, -- Dom Rodriguez GPG Fingerprint: EB0D 45E6 D0DC 1BA1 A2B5 FC24 72DC F123 1E54 BD43 --5sqsmevnhjxvn3vt Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEE6w1F5tDcG6GitfwkctzxIx5UvUMFAmcBnswACgkQctzxIx5U vUMJtQ/+MxjnriQGH3CUSw2oCrpmO5iUvywd4QiVLlhCpNmj+ZI224KM0HoJV17l 2tC47aQpgse3213m2F4ZAJoMfNxUfEcs/KcE13pGEAt3boRAC6bHHjDsF2EjI4j/ U0j956Dy1LMd4bwqcJKRmACOkWYG0UFnEGn5FRJO7onkuE6F5NX9bCs0pGOxnPI7 7GvYGaPdO7NMvlKIQUh8WNDYMeGXxLZk9QG/oUIimXsBa4fH96wkrH/8Hvmo1XAP k7uUmpHv4klUJCRYFGBFfIOMlGihxxBVTq8YwFfI/XDs9ngPkKxbYUc5+yzGXuym Ety/Rrnk/e9G9QWIkzWXBnNvZBT5Qxl98j6g/qcfg4QtL8EpMc7N9+uu+6NGepdO KDPgxN7SWUEEzGKMacTL7YaIi8QygXSOFre6OlRGVngzbnjKoretH+Kg/KYHNFJQ cR1lGfh2qEgT51jRli5OA87cWF9V6KJNK4jyYQRaJ7bZhwiXVFF4/L7dxtcMFQtM yupn15ktOerwJDGD3Cv5CGwAfMA2ek33tnRk1tyeVOC2fXG39eVEUD2Kv8BpQGN3 pVdBpepiOz9N/WkfiknIWJRB/MKhjQ6WL7UHwrvAWeqHfVHBw6XpsrYYV9+IhUBO x5D+skBxca9f5IQYDKUutIjXAS3hTzqvklVCCKegSH4KIi937/E= =0LwU -----END PGP SIGNATURE----- --5sqsmevnhjxvn3vt-- --===============4482097408320305510== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ pve-user mailing list pve-user@lists.proxmox.com https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user --===============4482097408320305510==--