Design question, how to not overload the firewall.
Customer has a physical B&R server on LAN1, and a physical Linux Hardened Repo on LAN1.
They also have like 100 Physical servers on LAN2, 3 and 4.
Traffic goes through the firewall obviously, and the fear is that it will overload it, affecting production.
Since we can’t use Proxy Servers for Agent backups (no such thing apparently), how can I avoid pulling the traffic through the Firewall?
The B&R Server and LHR are 10Gbit and use tagged VLANs, so I can quite simply add VLAN2,3,4 to the VLAN trunk and give them a link into the Agent VLANs.
- Will that work? Do I need to add both the B&R server and the LHR, or just the LHR?
- Can an LHR have several IP’s like that and still work?
- Will the traffic go from the agent directly to the LHR or via the B&R server?
Other ideas welcome...
Thanks!