Multi nic support
-
Hi all
i am currently using Endian UTM 3.0 community build
but am looking at changing due to lack of or no support with it.my current network config is:
RED, GREEN, ORANGE, BLUE
Red: internet gateway
Green: Home Lan (192.168.15.x, DHCP)
Orange: DMZ - server network (192.168.2.x, DHCP)
Blue: WIFI Network (192.168.5.x, DHCP)
All netoworks are running cisco managed switches.all with inter zone trafficing to allow crosstalk between networks
i have also set it up so the orange network cannot see any other servers in the same zone without IP address entry on any specific server.My question is:
Would it be straight forward to setup pfsense or should i stay with endian as i have it setup the way i want it. -
pfSense can certainly do that. I suppose the real questions are does BSD support your hardware and are you willing to learn to set up and use pfSense.
-
the firewall server is 2x Zeon 3.0GHz 64-Bit, with 64GB ram, running Intel Nics x3 dual gigabit, 500GB Raid 6 config.
Im willing to learn pfSense, just enquiring as i will have to shutdown my services while changing platform.thanks for the info, i might just sertup a xen vm to test it
-
Well you are set for the hardware then as far as I can tell. Intel NICs are sort of a gold standard around here and the rest of your system is total overkill for a home router. I am not sure about the RAID controller but if you are going to run pfSense in a VM then it shouldn't really matter.
-
That hardware is a total waste of capacity and electricity just to run pfSense.
-
im not to worried about if its over speced, all my other servers are blade based dells and they are even faster.
just wanted to know if i can configure the network as intended for the services that i provide.
Cheers -
It's your dollar. None of what you want to do is hard.
-
The only trick her is if you're going to slowly migrate services over from Endian to pfSense, or if you're going to try and configure everything and then just flip the switch. I moved to pfSense from MS ISA Server 2 years ago. I set up the pfSense box to run in tandem with the ISA server and started migrating everything over bit by bit. After a week of migrating & testing, I shut down the ISA server, changed the pfSense LAN/WAN IPs to that of the ISA Server and then just carried on. My users were none the wiser.
