Praise and comments for pfSense 2
I just want to say that my experience with the last snapshot of pfSense 2 before release in a production environment has been very positive. The most strange thing is configuring specific traffic to leave through a different interface. It's not a big deal, but it would be nice to have some kind of interface for adding custom outgoing NAT rules at the same as adding firewall rules that change the gateway for the traffic. Right now I have 3 gateways, so the rules can get a bit messy to manage.
Another interesting feature would be the ability to split DNS on a per-interface basis. Until recently I was against split DNS, instead relying on NAT reflection, but I found a situation where per-interface split DNS would prevent having to alter a bunch of host files.
Nice tip for the split DNS feature.