[Q] Setup of 4 VLAN with 3 NICs for IPFire

[cmonty14]

Hello!

My server provides 3 NICs.
Initially I have setup 3 VLAN bridges with each VLAN bridged to a dedicated NIC:
NIC1 -> VLAN1
NIC2 -> VLAN2
NIC3 -> VLAN3

IPFire is running in VM and utilizes each VLAN:
VLAN1 -> Red
VLAN2 -> Green
VLAN3 -> Blue

This configuration works without issues.

Now I want to add a VM running a webserver, but this webserver should ideally be connected to another network: DMZ
IPFire offers another network Orange for configuring a DMZ.

Question:
Which VLAN should I configure on the Proxmox host?
Can I assign this VLAN to IPFire-Orange serving as a DMZ straight forward?
(My understanding is that IPFire manages network traffic from Orange to Red.)

THX

 

[pirateghost]

Personally I would drop ipfire and run something that supports vlans natively .

I prefer vyos or zero shell personally.

 

[cmonty14]

Personally I would drop ipfire and run something that supports vlans natively .

Could you please clarify what's the difference of VLANs native support and the way IPFire is working?

THX

 

[pirateghost]

Could you please clarify what's the difference of VLANs native support and the way IPFire is working?

THX

Ipfire doesn't support vlans. It is just separating a few zones and uses horrible terminology.

You will wind up hacking and forming ipfire to work when you could have just used a proper router/firewall distro.

What happens if you need to add another vlan?

Pfsense, vyos, zeroshell,sophos,untangle, or m0n0wall are all better options.

 

[cmonty14]

I was checking IPFire Wiki, and there is indeed possibility for maintaining VLANs.