SYNC interface using separate VLAN on LAN interface
As I understand that best practice is to have dedicated interface for SYNC.
Due to port limitation, I only have 2 ports (LAN and WAN) for each pfsense box.
Therefore, I configured a separate VLAN in the LAN interface as SYNC interface.
So far seems to be working fine, but do you guys know if there is any known issue with this setup?
As I see it, the only practical reason to use separate interface for sync is to avoid blocking it by firewall mistakes or overloading the NIC with traffic.
So your topology seems more than fine by me :)