- Transparent proxy
- DNS cache
- VPN, etc.
Our appliance is under constant heavy load by several services, and it's rock solid stable.
I had stability issues only with a GUI that used to hang. It didn't affect any services, but it was a little annoying that we needed to restart the PHP often.
pfSense scales well.
They are just fantastic. They usually respond super fast, and usually with a solution if you describe the problem correctly. In more complex situations, they will set up a personal lab environment based on the customer's case.
We used to use a lot of different solutions.
After comparing a lot of solutions, the choice was Netgate pfSense.
It is very straightforward and much easier than the previous Clavister FW. Config is easy.
99 percent in-house implementation and 1 percent Netgate implementation. Netgate has the highest level of expertise you can get.
This solution was about $150,000 cheaper than the closest competitor over a three year period.
All costs are low compared to other solutions. The hardware is stable and cheap.
There is no licensing fee except for the enterprise support, if you want it.
We evaluated Cisco, Fortinet, and Sophos.
If you don't have a policy that says "only proprietary software" in your company, there is no reason not to go for pfSense. If you are still in doubt, take the cheap (and excellent) Netgate academy course. It's only for two days, and you will learn how to manage pfSense at a comprehensive level.