Hello!
I recently expanded from 1 server to 2 servers on my home network, and now I want to separate these along with some other devices. For instance one of the servers is running proxmox, the other is running windows 2012, the proxmox machine has a bunch of webservers and minecraft servers etc that need outbound and inbound access. On the windows machine I have things like nextcloud, plex and some other stuff that needs internet, but if one of the proxmox machines breaks there should be no way of reaching the windows machine or any other machine connected to that side of the network. There should also be no way of connecting to those machines via SSH or stuff like that from the outside, but the proxmox machines do have to have SSH open from the outside.
My local workstation need to be able to reach both lans directly as it is the main machine for configuring everything with.
I thought about virtualizing pfSense and using that as my main router. What are your thoughts and tips on how I should split this up?