I’m planning to run Pangolin inside a VM that has two virtual NICs:
one connected to the Internet
one connected to my LAN
The idea is to use Pangolin’s local proxy / tunneling features to expose only specific LAN services to the Internet while keeping the rest of the LAN isolated.
My main questions:
Is this dual-network VM setup safe, or are there risks of accidentally bridging/exposing more of the LAN?
Is Pangolin designed to handle this kind of gateway/proxy role securely?
Any best-practice recommendations (firewalling, network separation, etc.)?
For reference, here is my earlier post describing my environment and Proxmox setup:
Yes, Pangolin should work for this and while it has been designed for this anytime you expose ports you increase risk as a flaw could be found in Pangolin or in what ever you are exposing behind it.