Does intra-vlan traffic place load on the firewall ?

Forum|Forum|6 years ago
September 3, 2019
1 reply
2646 views

Hi,

I've a need for high bandwidth use between two servers in a VLAN in our DMZ. One of the two hosts has an external public IP mapped to it's private address. Light traffic would be expect to/from that external access. Would traffic between two VLAN hosts place a load on the firewall in any way? What I'd like is isolated traffic unless traffic enters/leaves the VLAN. We are runngin FG100E in HA mode, v6.2.0 with our vlans in a FortiSwitch.

TIA

Toshi_Esumi

SuperUser

If the DMZ is one port on the FGT connected to a decent switch, which accommodates both hosts, it's the switch's job not to send eth frames to FGT but only to the other host the MAC address is matching with.

saifin

New Member

Hello,

If you are looking forwards for the communication between two hosts which are configured in same VLAN, ofcourse those traffics won't contribute any load on your firewall. It doesn't have any reason to reach the gateway.

Hope this will clarify.

Regards,

Saifin Thomas

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded