dark theme is a plugin: os-theme-rebellion I started my journey with firewalls by downloading both: pfsense and opnsense. I tried to install on my proxmox one failed, one succeeded - no idea why - probably my mistake so I am now fully with opnsense but I am moving it to separate machine I like it a lot ;-)
I have been running both for testing over the last month. I like both but I like the quick updates on OPNsense. I wouldn’t expect OPNsense to be on 13.1 much longer.
I played a bit with PFsense back in the day when I had my regular router Asus AC3200. Later I got a small I5 7200 Quotom box for Opnsense, ran it for a year or two, and this year, I decided to go up a nutch. I put Opnsense on the ESXI 8 box and don't want to look back. It's been running for most part of the year with no issues. Only had to do the Intel NICs on bypass so Opnsense would "own" them not Esxi. I am still a nube, but I love it. There are some quirky things with the settings, but at my level of Opnsense knowledge, the possibilities are plenty. OK, I am too lazy to setup Surfshark on it. I liked the way that Untangle had it implemented.
I switched from pfsense about three months ago and love opnsense. It was simple to configure, took me 5 minutes to get wireguard up and running into my dc. Zenarmor is also pretty good especially for client config! It has been rock solid on a kvm vm!
I started out with pfsense like pretty much everyone , i tried opnsense cause having updates every 6monnths at best on a public facing device was concerning.I run OPNSense a whole year now, rock solid , up to date with weekly updates, better UI for my taste and ofc zenarmor which by far the best feature you could ask .
I stopped using pfSense because, at the time, they hadn't patched pfSense in almost a year when many vulnerabilities had come out that were risks. OPNSense looked nice, but I went a very different path and put OpenBSD on my router. It has been rock solid for 2 years now
@@GaryHTech Certainly if someone is new to the command line. I went to OpenBSD's FAQ page "Building a Router" and was able to get it set up in under an hour and it got me started
@@GaryHTech Have fun when you do! I thought it was a really satisfying process. You don't get all the cool graphs, but maintenance has been much simpler compared to the years I ran pfSense
The only problem I have with opnsense is some of the automatic rules are already processed with no way to disable them. Also you cannot disable ipv6 from the loopback interface, now you may think ohh its just loopback, what could go wrong, well, the firewall tunnels traffic using loopback, using ipv6 (even though you have turned off IPv6 at all the places). Really nice firewall, but will be to something else.
I was invested in pfsense like yourself, however the way that the company is steering the ship is a bit concerning forking 2 tiers is disconcerting ! I decided to look at opnsense, it’s certainly a powerful contender, it has everything I needed so far, the live firewall debugging is amazing add to that native ngfw features ( with free simple access and paid subscription) is a killer
I'm a long time user of pfSense, I've been playing with opnSense on the side for a while but after the licensing mess. I've lost all trust in Netgate and will be switching to opnSense fully. This is not the first time they've pulled crap like this either. I just have a very, very comprehensive setup on pfSense which I've been trying to get a free weekend off to do. Loads of packages, VPN tunnels, policy based routing, rules based on schedules, HA Proxy, ACME etc. Thankfully I run my firewall virtualised on proxmox so I can run them side by side and replicate things over.
dark theme is a plugin: os-theme-rebellion
I started my journey with firewalls by downloading both: pfsense and opnsense.
I tried to install on my proxmox
one failed, one succeeded - no idea why - probably my mistake
so I am now fully with opnsense
but I am moving it to separate machine
I like it a lot ;-)
I have been running both for testing over the last month. I like both but I like the quick updates on OPNsense. I wouldn’t expect OPNsense to be on 13.1 much longer.
I played a bit with PFsense back in the day when I had my regular router Asus AC3200. Later I got a small I5 7200 Quotom box for Opnsense, ran it for a year or two, and this year, I decided to go up a nutch. I put Opnsense on the ESXI 8 box and don't want to look back. It's been running for most part of the year with no issues. Only had to do the Intel NICs on bypass so Opnsense would "own" them not Esxi. I am still a nube, but I love it. There are some quirky things with the settings, but at my level of Opnsense knowledge, the possibilities are plenty. OK, I am too lazy to setup Surfshark on it. I liked the way that Untangle had it implemented.
Yeah I would like to look at untangle myself
I switched from pfsense about three months ago and love opnsense. It was simple to configure, took me 5 minutes to get wireguard up and running into my dc. Zenarmor is also pretty good especially for client config! It has been rock solid on a kvm vm!
I started out with pfsense like pretty much everyone , i tried opnsense cause having updates every 6monnths at best on a public facing device was concerning.I run OPNSense a whole year now, rock solid , up to date with weekly updates, better UI for my taste and ofc zenarmor which by far the best feature you could ask .
OPNSense has an API, which is a big plus!
Could you make a video on OpenWRT from your pfSense perspective?
I stopped using pfSense because, at the time, they hadn't patched pfSense in almost a year when many vulnerabilities had come out that were risks. OPNSense looked nice, but I went a very different path and put OpenBSD on my router. It has been rock solid for 2 years now
Nice, would be a step learning curve though I guess
@@GaryHTech Certainly if someone is new to the command line. I went to OpenBSD's FAQ page "Building a Router" and was able to get it set up in under an hour and it got me started
Thanks, I'll definitely check that out 🙂
@@GaryHTech Have fun when you do! I thought it was a really satisfying process. You don't get all the cool graphs, but maintenance has been much simpler compared to the years I ran pfSense
You install dark mode(s) from the pkg manager, it's a kind of add--on
The only problem I have with opnsense is some of the automatic rules are already processed with no way to disable them. Also you cannot disable ipv6 from the loopback interface, now you may think ohh its just loopback, what could go wrong, well, the firewall tunnels traffic using loopback, using ipv6 (even though you have turned off IPv6 at all the places). Really nice firewall, but will be to something else.
I like both... opnsense seems a little less stagnant though... I bought official opnsense hardware as to not worry about any support issues
I was invested in pfsense like yourself, however the way that the company is steering the ship is a bit concerning forking 2 tiers is disconcerting !
I decided to look at opnsense, it’s certainly a powerful contender, it has everything I needed so far, the live firewall debugging is amazing add to that native ngfw features ( with free simple access and paid subscription) is a killer
I'm a long time user of pfSense, I've been playing with opnSense on the side for a while but after the licensing mess. I've lost all trust in Netgate and will be switching to opnSense fully. This is not the first time they've pulled crap like this either.
I just have a very, very comprehensive setup on pfSense which I've been trying to get a free weekend off to do. Loads of packages, VPN tunnels, policy based routing, rules based on schedules, HA Proxy, ACME etc. Thankfully I run my firewall virtualised on proxmox so I can run them side by side and replicate things over.
Thanks
Was this basically a visual half install with some Huhs, nice, ok’s…..bye
I think there were a few farts, too. Maybe a burp, but I definitely woke up the wife with a couple of my farts.
@@bigpicklesmy wife doesn’t wake up anymore…like living next to a train track
Im using OPNsense from some time now. UI isn't best but its way better than pfsense.