File server routed through pfSense



  • I have a file server on my LAN-1 network (10.0.0.0) and clients whom access the file server on my LAN-2 network (10.0.1.0).

    LAN-1 is high security network with only internal access servers
    LAN-2 is for desktop clients, about 90.

    I poked holes in the firewall to allow SMB shared to be accessed on my LAN-1 network and obviously the throughput causes higher CPU usage on pfSense.

    My question is:

    Is there a better way to do this? I don't want to put the file servers on the same network as the clients for security reasons, and having two interfaces on the file server so that it can be accessed from the client side without being routed through pfSense kind of negates the purpose.


  • Banned

    @arduino:

    Is there a better way to do this? I don't want to put the file servers on the same network as the clients for security reasons, and having two interfaces on the file server so that it can be accessed from the client side without being routed through pfSense kind of negates the purpose.

    Hmmm, no, not really. Would pretty much defeat the FW purpose, as you noted.



  • I have a similar setup and don't notice any CPU hit.  IMHO you might need a more powerful CPU if that's the case.  For comparison, I am running an i3-2100 and barely hit 15% CPU.



  • I have a Core 2 Duo E7400 right now which hits ~50% @ 1GBs.

    Might upgrade to a Core 2 Quad if I can't manage to drop spike to an acceptable level ( ~30%).