Good points again, and agreed on restricting to POSTs. There is the edge case of posting via GET requests, and I completely understand/agree with it- but sometimes we need to adhere to the 80/20 rule- else go crazy trying to make everyone happy :)
xlloyd- My VM's are waaaaay under powered that I'm using for testing. The VM sensors in the lab though have like 50GB hard drives, and 8 gig of memory- and not sure on the processor. To be honest, I'm going to take Symantec at their word for the load that will melt the servers- and be sure to add enough load balanced sensors in the farm to never get near that number....
If I had a perfect lab (in a perfect world), my testing would be different. Once I got the "farm" built out with properly spec'd VM's- I would look to point a traffic generator at a lab load balancer which in turn fed to lab proxies, which connected to the farm. At that point, I would have a way to "crank up" the traffic to see at what point the Vontu Sensors melted- similar to how they may work in the event of a datacenter failover. Cool stuff!
Anyway- we ran through testing today and were successful in loadbalancing traffic through two test proxies through a "farm" of 3 Vontu Web Prevent Sensors. Worked well.