[SOLVED] How to put Proxmox host behind pfSense VM


New Member
Nov 23, 2021


Here is my setup:​

WAN -> Server (Proxmox host) IP 10.0.0.x -> pfSense ip 10.0.0.x (VM on Proxmox host) > switch ip 192.168.1.x

I would like to put my Proxmox host behind the firewall.

Is it possible?

Is it a good practice?

Is it the good way to do it?

I am new to this and I need your help with my homelab!
Yes, you can put your Proxmox host behind your firewall, but you should segment your network for improve security.

For example, behind your firewalls you can have several networks:
  • CONTROL: You can connect to this LAN your Proxmox server, the IPMI interface (if your host has one), switches management, etc.
  • DMZ: For your servers with public services.
  • SERVERS: Private servers.
  • OFFICE: LAN for worker's computers.
And then control the communications between these LANs by means of the firewall policy.

You should use your firewall too for your VPNs server and control with the firewall policy what can do each VPN connection. For example, full access for the sysadmin VPNs and access to the ERP for the commercials VPNs.

Regarding the firewall, do you know FWCloud ?
It is a centralized IPTables/NFTables Linux based firewalls web management tool that that easily allows you manage your firewalls policy, routing, VPNs, etc.
  • Like
Reactions: ddj
I forgot comment one thing ...
Instead of use a physical device for your firewall, you can create it as a virtual machine and connect it to all your networks.

For our customers we usually build the virtualization infrastructure as a Proxmox/Ceph cluster of at least three nodes and then create a firewalls clusters of two virtual machines managed with FWCloud. This way we have a cluster for such a critical service and don't need to buy another physical device or cluster of physical devices for the firewall system.
  • Like
Reactions: ddj


The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!