If you are virtualizing pfSense, have you isolated it inside a VM-only network? Thoughts?
nityarane last edited by nityarane
So I'm new to virtualizing pfSense after running a dedicated pfSense box since 2.3 (I think a little over a year). The way I set up the VM is just a basic:
WAN --> pfSense-VM <-- vmxnet3+pNIC --> Clients
So basically just like a hardware box, pNICS on both sides.
Now that I'm thinking about it, it occurs to me that I could do some neat stuff now that it's a VM - like isolating the firewall VM behind a VM and using a different VM for routing or bridging.
I'm also using two Windows 2012R2 VMs for domain conrollers, I was thinking I could have those isolated behind a gateway VM, as well, maybe, and then have all the network infrastructure VMs talk to each other in a VM-only network with one VM acting as a gateway to the lan ...
Then those VMs doing network infrastructure would also communicate faster among one another...
What do you think of this idea? Is it not a good idea for any reason? Does anyone else do something similar to this?