Hello,
Although this is slightly off topic, but why do you have your servers in
a deeply nested NAT?
Servers benefit from low latency, and also as little points of failure
as possible.
You should switch OpenBSD 1 and 2 around, so that the clients are in a
nested NAT, then use the firewall rules to secure the server, for the
best results, also if OpenBSD 1 goes down (client network) then so does
the server, when the server is used 24/7 and I assume the client network
is only used during normal office hours?
This is just a suggestion not an issue, but it is something you should
consider.
Have a good day,
--
Polarian
GPG signature: 0770E5312238C760
Website: https://polarian.dev
JID/XMPP: polarian@polarian.dev
No comments:
Post a Comment