Comment on Do I really need a firewall for my server?
superglue@lemmy.dbzer0.com 2 weeks ago
I use OpenWRT on my network and each server I have is on its own VLAN. So in my case, my router is the firewall to my servers. But I do have on my todo list to get the local firewalls working as well. As others have said, security is about layers. You want an attacker to have to jump multiple hurdles.
possiblylinux127@lemmy.zip 2 weeks ago
Why did you put each server in its own vlan? You now have a bunch of separate broadcast domains that need a router to move traffic between them. Switching is much faster since it is done in hardware most of the time.
superglue@lemmy.dbzer0.com 2 weeks ago
Mainly for security reasons. Both servers have some limited exposure to the internet. Are you saying doing it that way has performance implications? I haven’t noticed any problems its all fast just like before when everything was on the same LAN
possiblylinux127@lemmy.zip 2 weeks ago
It will impact server to server performance significantly.
If the servers are independent that’s fine but don’t do a file share or some other performance critical component across vlans.
superglue@lemmy.dbzer0.com 2 weeks ago
Interesting, I haven’t noticed anything, in fact since I switched everything has felt faster. And I’m constantly sending large files to devices on other VLANs.