Hypervisor Type 1 vs Type 2
Hypervisors come in two architectural flavors that look similar from the user's perspective but differ fundamentally in what runs underneath. Type 1 hypervisors are the operating system; type 2 hypervisors run as applications on top of a regular OS. The distinction shapes performance, security, deployment, and which hypervisor is right for which use case.
The architectural difference
Type 1 (bare-metal):
+----+ +----+ +----+
| VM | | VM | | VM |
+----+ +----+ +----+
+--------------------+
| Hypervisor |
+--------------------+
| Hardware |
+--------------------+
Type 2 (hosted):
+----+ +----+ +----+
| VM | | VM | | VM |
+----+ +----+ +----+
+--------------------+
| Hypervisor |
+--------------------+
| Host OS |
+--------------------+
| Hardware |
+--------------------+In type 1, the hypervisor IS the operating system. In type 2, the hypervisor runs as a program inside a regular OS.
Type 1 examples
- VMware ESXi — the canonical commercial type 1. Stripped-down purpose-built Linux base.
- Proxmox VE — open source. Debian base plus KVM virtualization and LXC containers.
- Xen — open source. Used in some cloud providers (AWS historically).
- Hyper-V Server / Windows Server Core with Hyper-V role — Microsoft's bare-metal option.
Type 2 examples
- VirtualBox — free, cross-platform. Most popular for desktop VM use.
- VMware Workstation / Fusion — commercial workstation virtualization.
- Parallels Desktop — Mac-focused desktop virtualization.
- QEMU on a desktop OS — Unix/Linux workstation virtualization (libvirt typically manages it).
Performance comparison
Type 1 wins on raw performance because there's one less layer:
- VM I/O goes through the hypervisor to hardware.
- In type 2, the same I/O goes through hypervisor to host OS to hardware.
The performance gap has narrowed significantly with modern CPU virtualization extensions (Intel VT-x, AMD-V) and IO acceleration (VT-d, SR-IOV). For CPU-bound workloads, the gap is now single-digit percent. For I/O-heavy workloads, it can still be 10-20%. For most homelab scenarios this isn't a big deal; for production it matters more.
Security comparison
Type 1 has a much smaller attack surface. The "host" is just the hypervisor — a focused piece of software with the sole job of running VMs. No browser, no email client, no random apps that could be compromised.
Type 2 has the full host OS plus the hypervisor. A malicious app or web page that compromises the host OS can potentially escape into the hypervisor and out to the VMs. For desktop use this is acceptable (you wouldn't run untrusted code anyway); for multi-tenant production it's not.
Operational differences
| Property | Type 1 | Type 2 |
|---|---|---|
| Installation | Format the disk; install hypervisor as the OS | Install on an existing OS |
| Other software on host | Just the hypervisor | Anything the host OS runs |
| Boot time to VMs | Seconds (hypervisor boots fast) | Full OS boot + hypervisor app startup |
| Management interface | Web UI or vSphere-style client | Desktop app on the host OS |
| Hardware support | Limited HCL — needs supported NIC, storage, CPU | Whatever the host OS supports |
Hardware compatibility
Type 1 hypervisors are stricter about hardware support. ESXi has an explicit Hardware Compatibility List (HCL); installing on unsupported hardware may work but isn't guaranteed. Proxmox is more permissive (basically anything Linux supports), but specific features (e.g., GPU passthrough) need supported hardware.
Type 2 hypervisors inherit the host OS's drivers, so anything the host OS recognizes works.
The homelab perspective
For a dedicated homelab server:
- Proxmox VE is the default recommendation. Open source, free, mature, runs KVM and LXC, has a good web UI, integrates ZFS, clusters across multiple nodes.
- ESXi free edition was historically popular; its future is uncertain after the Broadcom acquisition changed licensing.
- XCP-ng (open-source Xen-based) is another option for those who want Xen.
- Hyper-V Server is free and reasonable on Windows-focused homelabs.
The desktop perspective
For a laptop or desktop where you want to run a VM occasionally:
- VirtualBox is free, cross-platform, fine for most uses. Performance is acceptable.
- VMware Workstation Pro / Fusion Pro is paid; better performance and features.
- Hyper-V is built into Windows Pro/Enterprise; toggle it on.
- QEMU/KVM via libvirt is the Linux desktop choice; surprisingly good performance via the host kernel's KVM.
The middle ground: containers and lightweight VMs
The hypervisor distinction matters less in workloads dominated by containers. Docker on Linux uses kernel namespaces and cgroups — no hypervisor at all. Lightweight virtualization (Kata Containers, Firecracker, gVisor) bridges containers and VMs with hardware isolation but minimal overhead.
For homelab workloads that fit in containers, the question "type 1 or type 2 hypervisor?" may not apply — a single Linux server running Docker is often the right answer, no VMs needed.
Live migration and HA
Type 1 hypervisors in clusters support live migration (move a running VM between hosts with no downtime) and high availability (auto-restart VMs on a different host after a failure). Proxmox, ESXi, Hyper-V all support these in cluster configurations.
Type 2 hypervisors typically don't — they're designed for single-machine use, not cluster ops.
Nested virtualization
Running a hypervisor inside a VM is supported but adds another layer of overhead. Useful for testing virtualization setups or running multi-tenant labs inside a cloud VM. Most type 1 and type 2 hypervisors support being nested with the right CPU extensions enabled in the parent VM.
Frequently Asked Questions
What is a type 1 hypervisor?
A hypervisor that runs directly on the hardware without a host operating system. Also called bare-metal. Examples: VMware ESXi, Microsoft Hyper-V (when installed as a server role on Windows Server core), Proxmox VE (runs on a thin Linux kernel that is essentially the hypervisor), Xen. Used for production virtualization and homelab servers.
What is a type 2 hypervisor?
A hypervisor that runs on top of a regular operating system. Also called hosted. Examples: VirtualBox, VMware Workstation/Fusion, Parallels Desktop, QEMU on a desktop Linux. Used for running VMs as applications on a workstation alongside other software.
Which is faster?
Type 1 is generally faster because there's no host OS layer between the VM and hardware. VM-to-hardware operations go through one layer (the hypervisor) instead of two (hypervisor plus host OS). For modern CPUs with hardware virtualization extensions, the performance gap has shrunk dramatically; for most workloads it's in the single-digit percent range, but type 1 still wins consistently.
Which is more secure?
Type 1 has a smaller attack surface because the hypervisor itself is the only software running on the hardware. A vulnerability in the host OS of a type 2 hypervisor can compromise the hypervisor; a type 1 hypervisor has no such dependency. For production workloads requiring isolation between tenants, type 1 is the standard choice.
Can I run a type 1 hypervisor on my laptop?
Technically yes, but you'd lose the laptop as a usable laptop — the OS would be the hypervisor, not Windows or macOS. For a dedicated server (an old desktop, a NUC, a homelab box), type 1 is great. For a laptop where you also want to browse the web and use apps, type 2 (or modern alternatives like WSL2 / lightweight VMs in a desktop OS) is the right tool.
Related Guides
More From This Section
All Homelab Guides
Proxmox, pfSense vs OPNsense, Docker vs VMs, VLANs, and self-hosted apps.
Container Networking Basics
How container networking actually works — Docker bridge, host mode, macvlan, overlay networks, and the difference…
DNS for Homelab
How to run DNS for a homelab — local-only domain names, split-horizon between internal and external resolution, Pi-hole…
Run a Speed Test
Measure download, upload, ping, and jitter in your browser.