HA Virtual Firewalls

Started by spetrillo, November 14, 2024, 06:38:56 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 14, 2024, 06:38:56 PM
Hello all,

I am in the process of prepping my second virtual firewall node, so I can have a HA setup. The one question I cannot seem to find the answer for is whether the pfSync interface needs to be a physical NIC on each side or could it just be a dedicated VLAN on each side. I am running Proxmox, so I could dedicate a physical NIC to pfSync on each side but I would prefer to just make a dedicated VLAN available on each side.

Thanks,
Steve
November 14, 2024, 06:42:11 PM #1
You can run the entire HA cluster over VLANs/vSwitches without any physical interface at all.

Been doing that with Sidewinder on ESXi for years. The guest does not know or care if the interface is physical or virtual.

HTH,
Patrick
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
November 14, 2024, 07:43:38 PM #2
Thanks Patrick. The doc sorta reads like I needed a physical interface.
Print
Go Up Pages1
User actions