Hello all,
I am in the process of prepping my second virtual firewall node, so I can have a HA setup. The one question I cannot seem to find the answer for is whether the pfSync interface needs to be a physical NIC on each side or could it just be a dedicated VLAN on each side. I am running Proxmox, so I could dedicate a physical NIC to pfSync on each side but I would prefer to just make a dedicated VLAN available on each side.
Thanks,
Steve
You can run the entire HA cluster over VLANs/vSwitches without any physical interface at all.
Been doing that with Sidewinder on ESXi for years. The guest does not know or care if the interface is physical or virtual.
HTH,
Patrick
Thanks Patrick. The doc sorta reads like I needed a physical interface.