I’m looking for a solution to seperate an insecure part of our network from a secure part. Our plan is to VLAN them and allow no traffic between. The problem is that we need data that’s updated on the secure side to be available on the insecuere side instantly. We tried using SharePoint but the time delay between OneDrive seeing the change, updating the SharePoint site and then OneDrive at the other end picking up the chage was anything up to 4 minutes for small files which is not good enough for our needs.
Can anyone advise how quickly Syncthing would pick up changes and initiate a sync?
Also can I allow certain ports to communicate through the VLAN to make it work more quickly or would it have to go over the internet?
You can test and tune this yourself, there are a couple of tuneables for watcher delay you might want to adjust down depending on the exact level of immediacy you’re looking for. The documentation is your friend.
Obviously this isn’t going to happen if you’re going to sync stuff between them, as you note yourself later on. Allowing a direct connection for Syncthing will give you better performance.
It’s common in my Syncthing environment to see files sync in single-digit seconds. All Syncthing settings that impact sync performance are left at the defaults for this.
Syncthing’s performance for you will vary based on configuration, size and number of files, and network speed.
Dual-homing a Syncthing Device on both VLANs should get you the best network performance. If you can route between the two VLANs on a fast L3 switch with a strict ACL, you might not be able to tell the difference in performance.