I thinking about running IPFire in a virtualized machine environment. My thinking is that in a VM environment, I can clone the production IP fire, upgrade, try new applications etc. and if something fails, I can flip back to the production image.
I suspect I would need some sort of tiny linux + kvm for the host and attach the red interface to a bridge not accessible to the host OS.
Are there any security risks that I should be aware of?