The severity is LOW because no specific vulnerability was identified; however, incorrect implementation of a DMZ could lead to security risks. No patches are needed as this is an advisory setup request.
No specific vulnerability or attack vector was mentioned; the user seeks advice on setting up a DMZ with Proxmox, OPNsense, and a multi-port network card. The impact is undefined as it depends on how correctly the setup is implemented.
Affected Systems
- Proxmox
- OPNsense
Remediation
- Review OPNsense documentation for setting up firewall rules and traffic filtering.
- Configure VLANs in Proxmox to separate network traffic for the DMZ, ground floor private network, and first floor private network.
- Set up port forwarding in the router to direct external requests to the appropriate VM on the Proxmox server.
Stack Impact
The setup involves OPNsense (firewall) and Proxmox (virtualization platform). No specific impact on nginx, docker, linux kernel, openssh, curl, openssl, python, or homelab components.