Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Question about VMs in multiple networks (LAN vs DMZ)?

Featured Replies

Hey,

 

So I recently picked up unRAID Pro and have been playing with it, getting it set up in my homelab. I am very impressed with how straight forward and easy to use it is.

 

My network is set up like this, with a dedicated pfSense box:

 

WAN
LAN - 10.51.1.x
DMZ - 10.51.10.x

 

The unRAID server is a Dell r710 with 6x4TB and 72G of RAM. These machines have 4 integrated Ethernet ports.

 

I want to use this server for storage and a VM host. I have a few VMs that I would like to be on the LAN and a few for the DMZ.

 

It was easy to find the option to bridge the LAN interface (eth0/br0) for the LAN VMs so that is done. My question is how do I provide network to VMs I want to host in the DMZ? Ideally I would like for the unRAID server itself to not be accessible on the DMZ.

 

I have found several posts on how to pass through PCI to guests but I don't think that is what I am wanting to do as I would like to share eth1/br1 among multiple DMZ VMs.

 

Thoughts? I am happy to provide any diagnostic info. For now I have included the output of lspci, ethtool and ifconfig.

 

Thanks!

ethtool.txt

ifconfig.txt

lspci.txt

  • Author

Humm, may have posted this in the wrong sub-forum (mods: perhaps needs to be moved to the hypervisor sub?).

 

Anyway with further experimentation I haven't been able to pull this off. I am sure it is possible but just beyond my current understanding of the CLI-foo to make it happen. All I need is to get a second bridge (br1) set up on eth1 and not assign the unRAID an IP on it so the r710 can't be directly accessed via the DMZ. I installed Proxmox and was able to do this in < 5 min, however Proxmox is overkill for what I am trying to do.

 

Still hoping someone can point me in the right way. :)

I've not tried this, but I would get a NIC card and pass it through, without letting Unraid even touch it. 

 

Like here.

 

Then you'll have a machine setup without a bridge and a NIC that you can assign/configure however you like.

  • Author

I am sure that would work... however the benefit of having a bridge is that I can create & destroy VMs that use it at will whereas doing a pass through removes that device from other VMs and would require a physical interface for each VM. At least this is my current understanding.

 

So it would seem that at least in my use case a bridge really would be the best solution... I think. ;)

Yeah, I can see why you want a bridge now.  I'm all out of ideas, sorry.

  • 1 month later...

Albian,

 

Did you ever find an answer to this?

 

On your R710 - what HBA card do you use?

  • Author

Nope, never figured it out.

 

Was a shame because I bought a license and don't use it now. I ended up just installing Ubuntu using virt-manager to manage my virtual machines and Samba for my fileshares. Don't get me wrong, unRAID is an excellent product. It just wasn't able to quite meet my needs.

 

For the HBA I am using a LSI 9211-8i in IT Mode (you can buy them off eBay already flashed into IT mode) and it works wonderfully. The H700 that came with the server is actually a great card, however I wanted to run COW file systems like BTRFS (or ZFS). Plus I like being able to just move the drives and have them work in any other machine.

  • 1 month later...

Archived

This topic is now archived and is closed to further replies.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.