In the coming weeks I'll be migrating to pfsense. I've thought about various ways to make migration easier/more efficient.
The current configuration consists of several vlans and internet exposed servers.
One way to do the migration would be cold turkey - that is replicate as much of the config as possible on the new platform before switching wan to the new.
Another way is to leave utm in path for now, while doing config on the new system a bit at a time. To facilitate this strategy I think I need to effectively nat all inbound traffic to the pfsense instance?
There's full nat, 1:1 nat, and no nat. It's a bit unclear which option to choose?
Thoughts/suggestions?
This thread was automatically locked due to age.
