Your obviously going to have to trade off between redundancy and security, just need to find whatever is comfortable for you. If you haven't read it yet, google cisco vmware networking bestpractices, it shows you a few options for using 4 NIC's.

You might look at doing one big vSwitch with all 4 NICs as uplinks, then do your segmentation with port groups and VLANs, for each port group, set one active uplink, and the remaining 3 as standby, so you could have one dedicated for VM traffic, VMotion, iSCSI, DMZ, and then just double up your service console with one of the lighter utilized uplinks. This gives you under normal circumstances, dedicated uplink for specific types of traffic, but in the case of a physical failure with one of the uplinks, you can still function.

In your case your DMZ is on separate physical swithes? Or is simple a VLAN into the same physical switches of LAN?

With a small number of NICs the only solution is use different VLANs and use VLAN tagging into portgroup.

I will need at least these VLANs:

- intranet

- DMZ

- management (optional)

- Vmotion

- iSCSI1 AND iSCSI2 (Dell ESX Storage Deployment Guide)

Andre

**if you found this or any other answer useful please consider allocating points for helpful or correct answers