Hello ML, Thursday, June 19, 2014, 2:21:38 AM, you wrote:
Mm> I have four /24 subnets and currently have one subnet per ethernet Mm> interface (1Gbit/s) on my openbsd firewall. Now I was wondering if in Mm> terms of performance (especially latency/pps) it is better to have one Mm> subnet per ethernet interface like I have now or to have the four Mm> subnets on one single interface using vlan interfaces? Mm> The traffic/bandwidth here is not really an issue and the one single Mm> interface would be a 10 Gbit/s interface anyway so it can accommodate Mm> the traffic of 4 VLANs without problem. Mm> Note here that I would also be using the trunk interface to aggregate Mm> two 10 Gbit/s interfaces for redundancy. So my four VLANs would be inside a trunk interface. Sorry for the OT, but haven't you had separated them for a reason on the first place? There is no real security separation between vlans. Also OT - is OBSD handling 10 gigabit interfaces at full capacity already? -- Best regards, Boris mailto:bo...@twopoint.com
