Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple VLANs single interface - possible bottlenecking?

    General pfSense Questions
    2
    6
    307
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      SR190
      last edited by

      I have at least 6 VLANs that I will be assigning to a single interface (trunk) on my netgate pfSense box. Traffic in these VLANs will include cam system, domain usage of a dozen or so users, 2 WLANs and some low bandwidth networks.

      Should I be concerned about trunking everything through one firewall interface to a switch? Could there be bottlenecks?

      1 Reply Last reply Reply Quote 0
      • DerelictD
        Derelict LAYER 8 Netgate
        last edited by

        Depends on the traffic. If you start to approach maybe 600Mbit/sec (arbitrary and capricious number) sustained on a gigabit port, it might be time to start thinking about splitting that up. Or at least LACP a couple together.

        I would not try to do anything really significant, like putting a bunch of heavy video content editors on one VLAN and the SAN they need on another.

        Chattanooga, Tennessee, USA
        A comprehensive network diagram is worth 10000 words and 15 conference calls.
        DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        1 Reply Last reply Reply Quote 0
        • S
          SR190
          last edited by

          There are several interfaces available on the pfSense, but only a single managed switch. How would you partition this? Can I have more than one trunk per switch?

          1 Reply Last reply Reply Quote 0
          • DerelictD
            Derelict LAYER 8 Netgate
            last edited by

            It DependsTM;. I cannot answer based on the information given.

            Sure you can have more than one VLAN trunk per switch. Create VLANs A, B, C on igb2 and VLANs X, Y, and Z on igb3. Do the same on the switch and patch appropriately.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10000 words and 15 conference calls.
            DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • S
              SR190
              last edited by

              Thanks. I was curious. How would an LACG be implemented?

              1 Reply Last reply Reply Quote 0
              • DerelictD
                Derelict LAYER 8 Netgate
                last edited by

                Depends on the switch.

                On pfSense it is in Interfaces > Assignments, LAGGs

                Chattanooga, Tennessee, USA
                A comprehensive network diagram is worth 10000 words and 15 conference calls.
                DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
                Do Not Chat For Help! NO_WAN_EGRESS(TM)

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post