Hello, I am trying to figure out how I want to configure my server for colocation. I will receive the IPs directly to the server - I am not using a physical firewall/router in front of it. I plan on running pfSense as to handle my networking - the IPs will go straight to the pfSense WAN interface via the physical NIC on the server. My VMs will be behind the pfSense VM on a virtual interface on XCP-NG. That’s the easy part. No problems there I’ve done it before.
My problem comes when I want to manage the host itself - Xen Orchestra has to communicate with XOA(in this instance XOA will live behind pfSense on the virtual LAN.) With both IPs passing through to pfSense, the physical host itself will not have any networking, so how is it going to communicate with XOA?
With ESXi I could add a management interface on the pfSense LAN and access it through pfSense no issue at all. Even though the host itself did not have network access, the management interface listening on the pfSense LAN allowed me to still access the ESXi UI. The pfSense VM auto started so I would always have access to the host. Is there anything similar for XCP-NG?
Am I going to have to burn one of my 2 IPs for the host itself?