pfSense Review

Perform packet captures on the command line and via the GUI which is useful for diagnosing problems


What is our primary use case?

  • We only use our pfSense as a stateful packet inspection firewall. 
  • We have around 10 VLAN interfaces with many allow/block policies, VIPs, and NATs. 
  • Running on VMware as a virtual machine.

How has it helped my organization?

The main improvement was we were able to replace our old hardware-based firewall with a virtual machine having HA.

What is most valuable?

The ability to perform packet captures on the command line and via the GUI is useful for diagnosing problems.

What needs improvement?

  • I would like to see multiple DNS servers running on individual interfaces. 
  • It would be useful to manage firewall policies on a source interface and destination interface basis.

For how long have I used the solution?

One to three years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest

Sign Up with Email