Thru a PORTAL Darkly - Hacker OPSEC I read this blog and Portal is good,but I don t know is it better than whonix physical isolation.
Very interesting, haven’t heard about the grugg before.
It seems that in both cases you create a separate Tor-running hardware machine.
Portal is good,but I don t know is it better than whonix physical isolationIt is a somewhat similar concept. Using Portal of Pi instead of a physically isolated Whonix Gateway, you need to configure stream isolation yourself - see https://www.whonix.org/wiki/Stream_Isolation
Also read both TransparentProxy · Wiki · Legacy / Trac · GitLab (especially the “Anonymizing Middlebox” part) and IsolatingProxy · Wiki · Legacy / Trac · GitLab