pfSense provides excellent routing and firewalling capabilities
December 29, 2023
pfSense provides excellent routing and firewalling capabilities
Score 10 out of 10
Vetted Review
Verified User
Software Version
pfSense Plus (formerly pfSense Enterprise)
Modules Used
- SG-1100
- SG-5100
- XG-7100 1U
Overall Satisfaction with pfSense
We use pfSense both for ourselves and for our clients as a perimeter firewall and router. We've implemented it as a virtual machine, physical equipment, and in failover clusters. The deployments include everything from apartment complexes with between 1500-4500 devices to financial institutions, to businesses.
We've needed a solution that is easily managed, secure by default, and offers a wide enough feature set to handle unique requirements.
We've needed a solution that is easily managed, secure by default, and offers a wide enough feature set to handle unique requirements.
- Site to Site VPN
- VPN Client to Office connections
- Firewall
- Routing
- IDS Ease of use
- Layer 2 Filtering
- Multidevice management from one interface
- Allowed us to be more competitive both in features and in pricing with our competitor MSPs
- Allowed us to eliminate extended downtimes due to equipment failure.
- Grants us the ability to fully customize and/or audit the codebase.
Meraki has a unified management login for all devices, which is nice. It also has decent content filtering, both areas where pfSense is weaker.
Where pfSense far ouclasses Meraki is in the ease of use and the other width of features. These include features such as better VPN interoperability, non-subscription based pricing, auditability, not relying on the infrastructure of a third party, more transparency of what's actually going on, easier to deploy replacements if hardware fails. Additionally, the NAT management for pfSense seems to be a bit better, as you can NAT between any network segment and not just the LAN segments out the WAN interfaces.
Where pfSense far ouclasses Meraki is in the ease of use and the other width of features. These include features such as better VPN interoperability, non-subscription based pricing, auditability, not relying on the infrastructure of a third party, more transparency of what's actually going on, easier to deploy replacements if hardware fails. Additionally, the NAT management for pfSense seems to be a bit better, as you can NAT between any network segment and not just the LAN segments out the WAN interfaces.
Do you think pfSense delivers good value for the price?
Yes
Are you happy with pfSense's feature set?
Yes
Did pfSense live up to sales and marketing promises?
Yes
Did implementation of pfSense go as expected?
Yes
Would you buy pfSense again?
Yes
pfSense Feature Ratings
Using pfSense
Pros | Cons |
---|---|
Like to use Relatively simple Easy to use Well integrated Consistent Quick to learn Convenient Feel confident using Familiar | None |
- Firewall configuration
- OpenVPN and Client Exporting
- Content Filtering
Yes - Anything I've needed to do, I've been able to do from the mobile interface, but I still prefer the desktop interface when possible.