Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Announcing pfSense plus

    Scheduled Pinned Locked Moved Messages from the pfSense Team
    152 Posts 53 Posters 108.6k Views 43 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • noplanN Offline
      noplan @bitfrost
      last edited by

      @bitfrost

      Your statement is false!
      And that's the bottom line.

      1 Reply Last reply Reply Quote 0
      • P Offline
        Patch @bitfrost
        last edited by

        @bitfrost I agree with much of what you say. Unfortunatly there is a lot of money in software as a service (rent, "cloud" versions) and sale of personal data (Googles, Facebook, instagram, Microsoft business models, China), so fighting it is likely to be difficult.

        1 Reply Last reply Reply Quote 0
        • JeGrJ Offline
          JeGr LAYER 8 Moderator @bitfrost
          last edited by

          @Patch I don't, because for the most parts that is simply belief sold as facts.

          @bitfrost said in Announcing pfSense plus:

          Ok, so I just started trying out pfsense and right when I registered to this forum to ask some questions, I have to read that pfsense is going to closed source and will become irrelvant sooner than later.

          Nonsense to both statements. Neither is pfSense going closed source (only Plus is and was up until now anyways - so no real change!) nor will it become irrelevant sooner than later.

          It will become irrelvant because the open source version won't be getting much, if any, attention, and it will die out. That means that fewer and fewer companies may still buy from Netgate because without the open source version pfsense will be forgotten and soon nobody will know about it anymore.

          OSS version already got 3 updates (2.5.0, 2.5.1, 2.5.2, 2.6 dev is in the works...) so also nonsense.

          And who would want to rely on closed source software, especially for a security device? In times in wich the raping of peoples privacy is rapidly increasing and users are being controlled by software more and more, free software is the only way go to.

          Besides that being a directional question to almost any company, how about asking that to the many thousands of companies that already use products from other brands that also are surpisingly built upon e.g. FreeBSD and are closed source? Like Juniper? Cisco? PaloAlto? Fortigate etc. etc.? Can't say I saw them going bancrupt the last years besides tons of fuckups and security leaks.

          That's not a push to closed source. I also think pfSense Plus (as that's the only thing that won't be public anymore) should stay OSS and instead have a private/closed repository for business users just like other projects do (e.g. Proxmox etc.) but things can change. Also no one is taking away from pfSense CE.

          But now we're not going to buy Netgate products and will have to keep looking for something else.

          Spoiler alert: Netgate products where shipped with the Factory Edition (FE), NOT the CE for years now and no one complained a bit about the FE not being OSS/OpenSource/openly available. So all I'm currently seeing is not much changes at all. That CAN and perhaps will when there are more changes in underlying things like the web-stack/UI. That's the point where Netgate has to show if those changes they talked about will only go to Plus and leave CE behind besides promising multiple times that CE WILL get a new GUI/API layer etc.

          But up until that, all you were posting as simply untrue, false or guesstimates. No proof at all, so how about simply watching if they are true to their word or not?

          Don't forget to upvote 👍 those who kindly offered their time and brainpower to help you!

          If you're interested, I'm available to discuss details of German-speaking paid support (for companies) if needed.

          noplanN GertjanG rcfaR 3 Replies Last reply Reply Quote 5
          • noplanN Offline
            noplan @JeGr
            last edited by

            @jegr

            Your statement is 100% TRUE
            And that's the bottom line !

            1 Reply Last reply Reply Quote 0
            • rcfaR Offline
              rcfa @Impatient
              last edited by

              @impatient Oh well, there's always OpnSense and OpenWRT

              1 Reply Last reply Reply Quote 0
              • GertjanG Online
                Gertjan @JeGr
                last edited by

                @jegr said in Announcing pfSense plus:

                FreeBSD and are closed source? Like Juniper? Cisco? PaloAlto? Fortigate etc. etc.?

                Add Netflix to the list 😊

                No "help me" PM's please. Use the forum, the community will thank you.
                Edit : and where are the logs ??

                1 Reply Last reply Reply Quote 0
                • rcfaR Offline
                  rcfa @JeGr
                  last edited by

                  @jegr I think what sound different about this:

                  In the past it seemed the FE was always CE++; i.e. the base product being developed was CE, and then there are a few goodies, support, and extra testing added.

                  Now it sounds like a fork: Netscape developing a closed source edition, the community the community edition, and CE going eventually a divergent path, unless it ends up stagnating, where Netgate changes possibly coming back to CE only if Netgate deems it necessary to push changes upstream.

                  That may not be the reality, but that’s how it sounds.

                  A closed source nature would go straight back to the security through obscurity paradigm due to which I gave up other proprietary platforms for pfSense, so free home edition would defeat the purpose of using pfSense in the first place.

                  dennypageD 1 Reply Last reply Reply Quote 0
                  • dennypageD Offline
                    dennypage @rcfa
                    last edited by

                    @rcfa said in Announcing pfSense plus:

                    closed source nature would go straight back to the security through obscurity paradigm

                    It's wrong to equate "closed source" and "security through obscurity." They are not the same thing.

                    Cool_CoronaC rcfaR 3 Replies Last reply Reply Quote 0
                    • Cool_CoronaC Offline
                      Cool_Corona @dennypage
                      last edited by

                      @dennypage When you work in intelligence you know that statement in not true.

                      Any closed source product has backdoors built in for snooping and thats what opensource should hinder.

                      dennypageD 1 Reply Last reply Reply Quote 0
                      • dennypageD Offline
                        dennypage @Cool_Corona
                        last edited by

                        @cool_corona said in Announcing pfSense plus:

                        When you work in intelligence you know that statement in not true.
                        Any closed source product has backdoors built in for snooping and thats what opensource should hinder.

                        Wow.

                        Cool_CoronaC 2 Replies Last reply Reply Quote 0
                        • Cool_CoronaC Offline
                          Cool_Corona @dennypage
                          last edited by

                          @dennypage Every US product has to have behind the scenes access for intelligence purposes.

                          And thats a fact. Not an option.

                          1 Reply Last reply Reply Quote 0
                          • Cool_CoronaC Offline
                            Cool_Corona @dennypage
                            last edited by

                            @dennypage Thats why a lot of countries in the EU is skipping Chinese and US products and begun to develop own forks.

                            JeGrJ 1 Reply Last reply Reply Quote 0
                            • rcfaR Offline
                              rcfa @dennypage
                              last edited by

                              @dennypage said in Announcing pfSense plus:

                              @rcfa said in Announcing pfSense plus:

                              closed source nature would go straight back to the security through obscurity paradigm

                              It's wrong to equate "closed source" and "security through obscurity." They are not the same thing.

                              In my book they are: it’s either “blind trust” (obscure) or “trust, but verify” (transparent).

                              There is by definition no transparency without open source, because, how would you inspect code that’s not open? Reverse compilation? Hack the server and steal the source?
                              I think it’s obvious how impractical/illegal any acquisition of transparency of a closed source project would be…

                              1 Reply Last reply Reply Quote 0
                              • rcfaR Offline
                                rcfa @dennypage
                                last edited by

                                @dennypage said in Announcing pfSense plus:

                                @rcfa said in Announcing pfSense plus:

                                closed source nature would go straight back to the security through obscurity paradigm

                                It's wrong to equate "closed source" and "security through obscurity." They are not the same thing.

                                In my book they are: it’s either “blind trust” (obscure) or “trust, but verify” (transparent).

                                There is by definition no transparency without open source, because, how would you inspect code that’s not open? Reverse compilation? Hack the server and steal the source?
                                I think it’s obvious how impractical/illegal any acquisition of transparency of a closed source project would be…

                                1 Reply Last reply Reply Quote 0
                                • JeGrJ Offline
                                  JeGr LAYER 8 Moderator @Cool_Corona
                                  last edited by

                                  @cool_corona said in Announcing pfSense plus:

                                  @dennypage Thats why a lot of countries in the EU is skipping Chinese and US products and begun to develop own forks.

                                  Yeah right. That's a very optimistic view on things. So every closed source product has a backdoor, huh. I call bullshit, but hey that's just my opinion. But stating that as a fact is lying as I certainly doubt you have the insight to every freakin' software on the planet that isn't published via an open source license because of different reasons whatever they may be. That's just an opinion of a subset you perhaps know about, but other then that, it's just that - your opinion. A fact would have proof and review.

                                  Also - you really think the top reason for the EU to build their own shit is because of "no backdoors"? I'd rather say they don't like others having the possibility to introduce/force their way into a software but you really think they wouldn't do it themselves? Huh. Weird.

                                  @rcfa said in Announcing pfSense plus:

                                  In my book they are: it’s either “blind trust” (obscure) or “trust, but verify” (transparent).

                                  "Trust but verify" in a software context can be achieved easily by an external audit of which Netgate/pfSense already had one. So perhaps there will be another one in the future? Wouldn't count against it as it's likely to happen for requirements of various reasons (like needs to be certified etc. blah)
                                  "Trust but verify" profits from code being publicly available or open source. But it doesn't need it. OSS is no guarantee for a better product, but it sure can help to achieve it. But all those cries for OpenSource sound a bit stale if noone actually does the work, reads the code, checks the state it is in. And most that argue about it don't.

                                  @rcfa said in Announcing pfSense plus:

                                  There is by definition no transparency without open source, because, how would you inspect code that’s not open? Reverse compilation? Hack the server and steal the source?

                                  Huh? Never heard of audits under contract? They are done all the time. Even big corporations like "evil Microsoft" have contracts with companies so they get access to the source for development or security auditing reasons.

                                  Cheers

                                  Don't forget to upvote 👍 those who kindly offered their time and brainpower to help you!

                                  If you're interested, I'm available to discuss details of German-speaking paid support (for companies) if needed.

                                  Cool_CoronaC 1 Reply Last reply Reply Quote 3
                                  • Cool_CoronaC Offline
                                    Cool_Corona @JeGr
                                    last edited by

                                    @jegr I work closely with people in intelligence and foreign Ministry departments regarding embassy and consulates.

                                    US Intelligence has backdoors built in everything thats coming from the US or has US ownership.

                                    https://www.reuters.com/article/us-usa-security-congress-insight-idUSKBN27D1CS

                                    noplanN 1 Reply Last reply Reply Quote 0
                                    • noplanN Offline
                                      noplan @Cool_Corona
                                      last edited by

                                      @cool_corona said in Announcing pfSense plus:

                                      US Intelligence has backdoors built in everything thats coming from the US or has US ownership.

                                      That's bloody f@#&* bullshit

                                      In other words if true and not concerning the obligation in smojecaround the patriot act all us hardware must be banned emediatally from official European institutions

                                      BR Q

                                      Cool_CoronaC 1 Reply Last reply Reply Quote 0
                                      • Cool_CoronaC Offline
                                        Cool_Corona @noplan
                                        last edited by

                                        @noplan And here we go....

                                        https://www.popularmechanics.com/technology/security/a34533340/nsa-tech-back-doors-software/

                                        https://edri.org/our-work/foreign-authorities-are-banning-google-and-microsoft-services-from-schools-the-czech-republic-is-floundering/

                                        https://www.zdnet.com/article/nsa-backdoors-us-hardware-headed-overseas-greenwald/

                                        Lets not discuss this further. Its pointless.

                                        R 1 Reply Last reply Reply Quote 0
                                        • R Offline
                                          rcoleman-netgate Netgate @Cool_Corona
                                          last edited by

                                          @cool_corona said in Announcing pfSense plus:

                                          Lets not discuss this further. Its pointless.

                                          Indeed. Take it into https://forum.netgate.com/category/2/off-topic-non-support-discussion

                                          Ryan
                                          Repeat, after me: MESH IS THE DEVIL! MESH IS THE DEVIL!
                                          Requesting firmware for your Netgate device? https://go.netgate.com
                                          Switching: Mikrotik, Netgear, Extreme
                                          Wireless: Aruba, Ubiquiti

                                          1 Reply Last reply Reply Quote 1
                                          • R rcoleman-netgate locked this topic on
                                          • M mwatch unpinned this topic on
                                          • First post
                                            Last post
                                          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.