Pfsense with L3 Switch
-
I try to make a plan for upgrading to 2.1 and also to change my network setup a bit.
Now the pfSense is acting as Firewall, NAT, VPN so more or less all network services. For the public ipv4 ips i have now 1:1 nat on pfsense to the internal ips. The servers only have private ips. We are talking of two /29 and one /28 network.
The other NAT is needed for some VLANs like LAN, WLAN, VoIP, MGMT and so on in total i have here 10 vlans.
Because of not so good performance of pfsense in intervlan routing i will change to L3 switching.
I will include the pfSense into the OSPF routing here. are i'm right that i need to setup the NAT rules still on pfSense? If yes which rules do i have to configure? -
Yes, you still need outbound NAT rules to cover all of the subnets that exist behind the L3 switch
-
Is the 2.1 version ready for production use? I don't know if i should setup a 2.0 or 2.1.
One the one side i think its better to use the stable version but on the other side i think why not using the 2.1 and don't have the work to upgrade in 2 months when 2.1 is released.
Is it still possible to use IPv6 with 2.0 or is it better to use 2.1?
I hope it is ok if i ask this here. Or should i open a new topic in right section? -
No IPv6 on 2.0.x, you'd need 2.1
May as well use 2.1 now, it's nearly ready, just a few more bugs to fix, nothing too major for most people.
