Page 3 of 4 FirstFirst 1234 LastLast
Results 21 to 30 of 33
  1. #21
    Untangler
    Join Date
    Aug 2016
    Posts
    81

    Default

    Internally Untangle will share NICs, but the vSwitch will have 4 Gbit ports tied to a Gbit switch into the network. WAN side Untangle will have a dedicated Gbit NIC.
    This isn't Hyper-V, it's ESXI 6.0 U2.

    Internet is ~130/130.

    Thanks again for all your help. Anxiously awaiting parts to come in so I can upgrade my server and get this project rolling.

  2. #22
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,510

    Default

    Careful, a large file copy off that windows server will result in Internet access being degraded when you do that.

    I do not recommend sharing NICs with a router... it doesn't end well.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  3. #23
    Untangler
    Join Date
    Aug 2016
    Posts
    81

    Default

    So does this look like how the network should come together in the end?
    ESXi Network.png

  4. #24
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,510

    Default

    Ideally yes. Though, if your switch can handle it I'd trunc up the NIC feeding the rest of the VLANs. But you really do want Untangle, or any virtual router separate. You don't want your host's vSwitch lag to be involved with Internet traffic. Especially with your DNS running on that Windows server. It creates a tailspin of pain that impacts at random.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  5. #25
    Master Untangler
    Join Date
    May 2010
    Location
    Texas, USA
    Posts
    712

    Default

    I'll take your word for it, but I've LAGed many a virtual router in both ESXi and Hyper-V with no issues at many, many places. Not arguing with you that it COULD be an issue, just sharing my experience that it isn't a given.

    Jason

  6. #26
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,510

    Default

    LAG, is the key word there. You're pushing the shared link to the switch to something beyond 1gb. It's very easy to saturate a single gigabit on even a small network.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  7. #27
    Untangler
    Join Date
    Aug 2016
    Posts
    81

    Default

    The only unexpected that I had in all this discussion, really, was the dedicated HDD. I already knew that I needed a RAM upgrade. Well, the 4 port NIC is new, but only b/c ESXi decided that it didn't like my dual port bypass NIC that in there already. Quad port PRO/1000 for <$45 == <3 anyway.

  8. #28
    Master Untangler
    Join Date
    May 2010
    Location
    Texas, USA
    Posts
    712

    Default

    I was really referring more to the comment on separating the internet traffic to a separate vSwitch/NIC.

    But I agree completely that it is easy to saturate a 1 Gb link. 802.3bz can't come fast enough in my opinion. Or... much cheaper 10/40 Gb kit would be OK too.

  9. #29
    Untangler
    Join Date
    Aug 2016
    Posts
    81

    Default

    Quote Originally Posted by JasonJoel View Post
    I was really referring more to the comment on separating the internet traffic to a separate vSwitch/NIC.

    But I agree completely that it is easy to saturate a 1 Gb link. 802.3bz can't come fast enough in my opinion. Or... much cheaper 10/40 Gb kit would be OK too.
    I was absolutely already planning on putting WAN on it's own vswitch and NIC (if for no other reason than to NOT have to screw w/ VLANing it in the switch), I didn't think there'd be any issue though w/ 5 Gb NICs being plugged into a switch and all internal traffic sharing. It's no skin off my nose though to build another vSwitch.... it's not like it costs anything to do.

  10. #30
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,510

    Default

    My mission is accomplished, you're thinking about all the right things. You have to understand that most don't understand, or think about the resource sharing issues that plague virtualization platforms. If you are aware of the limitations, you can do some really wonderful stuff. But, it's also a world's worth of rope to hang yourself.

    I don't have to worry about either of you now, which is nice. I won't expect you coming back in here later wondering why your hypervisor dropped off the network because you plugged an Untangle bridge into the same vSwitch twice and broadcast stormed your network into a smoldering crater.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

Page 3 of 4 FirstFirst 1234 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2