[lostlogin]

> replacing my USG with my existing home server

I like this idea too, but would prefer that the router was physically separated and before any hardware that was in the network.

Is this a pointless concern?

[jefurii]

If you have your router in a separate box then you won't have to take down your whole network if you have to restart your VM host.

[vageli]

It's hard to say whether or not the concern is pointless without knowing its basis. Why do you want it physically separated?

[lostlogin]

I had assumed a setup which had several VMs, with one being a PFSense or similar to be less secure than a standalone firewall. Reading about the pros and cons leads me to conclude that security in a virtual setup is just fine.

[neolog]

If your server is vulnerable to some threat, adding another barrier in front of it could help.