Right way to hardware HA for LANs,- LAGGr?
-
Hi, pfSense Gurus!
How to realize HA for something behind pfSense?
Please take a look on a scheme:
- upper picture illustrates ordinary connection where 1 physical port of pfSense connected to 1 physical port on switch (or server behind it);
- lower picture illustrates wanted connection scheme, when 2 physical ports of pfSense connected to 2 different switches (or 2 different physical ports on server behind it);
The lower picture adding ability to server to stay connected when:
- one of switches going out of order (hang, stuck, rebooting after maintenance, etc);
- one of 4-th cables are damaged or jack connection are damaged/broken;
The main question are: what are the best way to doing this from pfSense side? Creating LAGGR group for both (DMZ A and DMZ B) physical interfaces?
And how to workaround the situation when SWITCH A (for example) overloaded than SWITCH B? Creating LAGGR with “Balance” option?
Would be pfSense’s HA-proxy balancer able to correctly working with this LAGGR interface ?
P.S.
Of course, having ability to shaping, limiting, using VPN for this aggregated interface would be nice…Thank You all for detailed suggestions!
-
This post is deleted! -
Up
-
Up
