• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Not Impressed

Forum Feedback
5
5
4.8k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • W
    wyze
    last edited by Feb 6, 2008, 8:12 AM

    I've spent the day today truly giving this firewall a chance and I'm pretty disappointed in the time I have wasted. I have attempted to run this on 2 different machines, 1 Intel P4 machine and 1 AMD machine, using a total of 6 different nics (3Com and Intel) in different scenarios in ruling out quirks.

    The package manager needs quite a bit of work. Lot's of bugs, especially with Snort. I've configured the firewall in several different ways and have found it to be a resource hog with an unacceptable level of packet loss in multiple forms.

    The web interface structure also seems kind of backwards as well; not organized as best as it could be. My advice to the developers is to focus on simplicity of function rather than features.

    I'll happily see my way out the door now as I'm headed back home to OpenBSD PF, since its reliability is its eye candy  8)

    1 Reply Last reply Reply Quote 0
    • T
      trendchiller
      last edited by Feb 6, 2008, 8:49 AM

      Well… you're not forced to use pfsense...
      Most of us tried a lot of other firewalls and came to pfsense because of it's features and not simplicity...

      and there are just a few new features in the pipeline such as a new dashboard coming in the next version 1.3 ... (available as a packet by now)

      the freature tree is frozen because the next version 1.2 is going to be released soon...

      so... with snort, ok... with some points you're right... but: help if you can... have a look in the forums for others having problems with snort and see, what happened so far...

      Perhaps someday you'll be back to pfsense  ;)

      you never know  8)

      1 Reply Last reply Reply Quote 0
      • J
        jahonix
        last edited by Feb 6, 2008, 9:35 AM

        @wyze:

        …Snort... ...I've configured the firewall in several different ways and have found it to be a resource hog...

        Maybe you mixed things up here!
        pfSense itself is not a resource hog. It even runs on scaled down embedded hardware pretty well - limited to not using packages.
        Snort on the other hand IS a resource hog. You can't blame pfSense for that - just don't install Snort.

        1 Reply Last reply Reply Quote 0
        • S
          sullrich
          last edited by Feb 8, 2008, 5:52 AM

          You cannot argue with die hard command line folks.  I've used the command line since Amiga days but I am not 100% tied to it.

          Good luck staring at PF rulesets on a monochrome terminal!  Oh, and don't forget to play some good ol' Hummpa musc while you are adjusting your rulesets by hand :)

          1 Reply Last reply Reply Quote 0
          • C
            cybrsrfr
            last edited by Feb 12, 2008, 5:44 AM Feb 8, 2008, 8:18 PM

            I'm impressed! I've used several commercial firewalls and pfSense is the most intuitive advanced interface I've seen.

            1 Reply Last reply Reply Quote 0
            3 out of 5
            • First post
              3/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.