OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • High availability »
  • HA Virtual Firewalls
« previous next »
  • Print
Pages: [1]

Author Topic: HA Virtual Firewalls  (Read 156 times)

spetrillo

  • Hero Member
  • *****
  • Posts: 721
  • Karma: 8
    • View Profile
HA Virtual Firewalls
« on: November 14, 2024, 06:38:56 pm »
Hello all,

I am in the process of prepping my second virtual firewall node, so I can have a HA setup. The one question I cannot seem to find the answer for is whether the pfSync interface needs to be a physical NIC on each side or could it just be a dedicated VLAN on each side. I am running Proxmox, so I could dedicate a physical NIC to pfSync on each side but I would prefer to just make a dedicated VLAN available on each side.

Thanks,
Steve
Logged

Patrick M. Hausen

  • Hero Member
  • *****
  • Posts: 6925
  • Karma: 583
    • View Profile
Re: HA Virtual Firewalls
« Reply #1 on: November 14, 2024, 06:42:11 pm »
You can run the entire HA cluster over VLANs/vSwitches without any physical interface at all.

Been doing that with Sidewinder on ESXi for years. The guest does not know or care if the interface is physical or virtual.

HTH,
Patrick
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)

spetrillo

  • Hero Member
  • *****
  • Posts: 721
  • Karma: 8
    • View Profile
Re: HA Virtual Firewalls
« Reply #2 on: November 14, 2024, 07:43:38 pm »
Thanks Patrick. The doc sorta reads like I needed a physical interface.
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • High availability »
  • HA Virtual Firewalls
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2