Now that I've upgraded to a L3 switch (X1052) with 10Gb capabilities I've been contemplating whether not I should continue to have my pfSense firewall do all my inter-VLAN routing or should I move those duties over to my L3 switch. I'm mainly concerned about maximizing the performance of my VMware cluster VLANs (VM Networks, vSAN, vMotion, etc.).
Having pfSense manage all my VLANs is my preferred way because I can manage all the firewall rules easily that way but I also don't want to have an extra unnecessary hope for all the traffic on my cluster. Having to have all traffic hit my firewall over a 1Gb port doesn't seem like the most efficient setup.
Thoughts?
Having pfSense manage all my VLANs is my preferred way because I can manage all the firewall rules easily that way but I also don't want to have an extra unnecessary hope for all the traffic on my cluster. Having to have all traffic hit my firewall over a 1Gb port doesn't seem like the most efficient setup.
Thoughts?