The Proxmox VE firewall is a security feature that allows easy and effective protection of a virtual environment for both internal and external network traffic. By leveraging this firewall, we can protect VMs, host nodes, or the entire cluster by creating firewall rules. By creating rules at the virtual machine level, we can provide total isolation for VMs to VM network traffic, including VMs to external traffic. Prior to the Proxmox VE firewall, security and isolation was not possible at the hypervisor level. In this chapter, we will cover the following topics of the Proxmox VE firewall:
Exploring the Proxmox VE firewall
Configuring the cluster firewall rules
Configuring the host firewall rules
Configuring the VM firewall rules
Integrating a Suricata IPS
Enabling the IPv6 firewall
Firewall CLI commands