HA Setup with CARP proposal
-
Hello,
I'm pretty new to pfsense and plan to buy 3 XG7100 for a dedicated HA setup.
Here is a diagram of the planed architecture:
Green VLAN 10 is "Internet LAN", both Firewall #1 and #2 use this for the default Gateway.
Serv #1 and #2 are ESX servers using NIC Teaming with one vswitch (E1/E0) for management and the other (E2/E3) for VMs network.Do you see any error in this scheme? Any particular reason for it to not work?
For now my only concern is that the XG-7100 does not seems to be able to do STP on the port switches.
Thanks for your help
-
Seems like it might be possible to drop the top XG-7100?
Run the internet into a switch and do CARP on the wan too. (assuming you have static IP's)
Or even better if your provider can give you dual drops.