If you are virtualizing pfSense, have you isolated it inside a VM-only network? Thoughts?

  • Hey,

    So I'm new to virtualizing pfSense after running a dedicated pfSense box since 2.3 (I think a little over a year). The way I set up the VM is just a basic:

    WAN --> pfSense-VM <-- vmxnet3+pNIC --> Clients
    So basically just like a hardware box, pNICS on both sides.

    Now that I'm thinking about it, it occurs to me that I could do some neat stuff now that it's a VM - like isolating the firewall VM behind a VM and using a different VM for routing or bridging.

    I'm also using two Windows 2012R2 VMs for domain conrollers, I was thinking I could have those isolated behind a gateway VM, as well, maybe, and then have all the network infrastructure VMs talk to each other in a VM-only network with one VM acting as a gateway to the lan ...

    Then those VMs doing network infrastructure would also communicate faster among one another...

    What do you think of this idea? Is it not a good idea for any reason? Does anyone else do something similar to this?

    https://downloader.vip/minecraft-pocket-edition/ https://downloader.vip/counter-strike/ https://downloader.vip/google-play-services/