Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    General LAN Question

    Scheduled Pinned Locked Moved Routing and Multi WAN
    3 Posts 3 Posters 697 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      creiss
      last edited by

      Hey folks,

      quick question/ input needed.
      My old setup had a xn0 (wan) and xn1 (lan). On xn1 was a tiny dumb switch that served all servers happily.
      Now I replaced that switch with an pfsense appliance (selfmade) with 6 ports. Now WAN and each Server will get it's own port.

      Now my Servers all run Xen and VMs (all trusted, no customers, all mine). So inside that old LAN it's ok (but tweakable, for sure) that everyone can talk to everyone. In fact, it's mandatory that everyone is in the same 10.0.0.0/24 subnet. I also want to move the VMs between hypervisors so things like default routes etc should always remain the same.

      Would I go for a giant joint bridge on all devices? I dont' assume I can assign the same IP on all interfaces?
      What would be the most approachable way to do this? Unfortunatly I have no physical space (allowance) to add another switch/router. The only constraint is that I have to "make due" with that firewall and it's 6 ports.

      Thanks for your input and enjoy your weeken! :)
      -Chris.

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        I would just use the dumb switch if what you need is a switch.

        A router is a router.

        A switch is a switch.

        Use a router as a router.

        Use a switch as a switch.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10,000 words and 15 conference calls.
        DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • johnpozJ
          johnpoz LAYER 8 Global Moderator
          last edited by

          "The only constraint is that I have to "make due" with that firewall and it's 6 ports."

          Who says?  If you had a self built box and needed switch ports?  Why would you not have put in switch ports vs NICs?  Get yourself a small gig switch – they are pretty freaking tiny!!

          An intelligent man is sometimes forced to be drunk to spend time with his fools
          If you get confused: Listen to the Music Play
          Please don't Chat/PM me for help, unless mod related
          SG-4860 24.11 | Lab VMs 2.8, 24.11

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.