[SOLVED] Proxmox secure firewall?

[krikey]

Loving Proxmox at the moment. I wondered how good the Proxmox built in firewall was in a securing VMs/LXcs sense compared to virtualizing something like pfSense as either a VM or LXC.

I'd appreciate users mileage on this one. I know that pfSense is a dedicated firewall application and so has many more bells/whistles available if comparing the GUIs but they are both based on iptables arent they?

 

[Rhinox]

Proxmox-firewall is just front-end for iptables. Do not expect too much of it. It is a little better than esxi-firewall, but still very "basic" and some of advanced features are not directly accessible. Anyway, serious filtering should be always offloaded away from proxmox-host. Filtering traffic to/from VMs could be done by firewall appliance running in VM, but you should never use VM for filtering access to Proxmox management interface.

BTW, pfSense/OPNsense is not using "iptables", because it is based on BSD (so it has "pf"). If you are looking for iptables-based firewall, IPFire comes to my mind. If you want something even more robust, you could test sophos-utm/xg...

 

[krikey]

I was remiss in not saying thank you for your response, so "thank you"