pfSense vs OPNSense - Fanboy fued or real differences?
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@bnrstnr said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
dumping Sophos UTM free
I don't have any input for the question, but I'm curious why you want to drop Sophos for one of those two?
50 IP limit, learn something new, I like open source.... Nothing truly negative as far as Sophos goes
Why not move to Ubiquiti?
I have room on my server to experiment. Kinda 'whynot'? I have an Ubiquity AP. Works nice. Rock steady.
Room to experiment is fine for experimenting. But how will you deploy pfSense or OPNsense to production?
-
@NashBrydges I'll keep that in mind. What I'll eventually be doing is to connect several locations for my family VPN. I'd like to feel at least somewhat secure.
-
@NashBrydges said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@bnrstnr said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
dumping Sophos UTM free
I don't have any input for the question, but I'm curious why you want to drop Sophos for one of those two?
Cost in the form of technical debt. Dropping Sophos has lots of benefits (it's a decent product, but it is costly.)
What cost are you referring to? The 50 IP limit suggest he's using the Sophos Home UTM which is free to use.
He is labbing at home. Maybe I incorrectly read into this that this was prepping for his office?
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@NashBrydges I'll keep that in mind. What I'll eventually be doing is to connect several locations for my family VPN. I'd like to feel at least somewhat secure.
Oh, this isn't for work at all? Then definitely you need Ubiquiti. What will you do for your hardware firewalls if you don't?
-
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@NashBrydges said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@bnrstnr said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
dumping Sophos UTM free
I don't have any input for the question, but I'm curious why you want to drop Sophos for one of those two?
Cost in the form of technical debt. Dropping Sophos has lots of benefits (it's a decent product, but it is costly.)
What cost are you referring to? The 50 IP limit suggest he's using the Sophos Home UTM which is free to use.
He is labbing at home. Maybe I incorrectly read into this that this was prepping for his office?
Not my office or our locations. My house, brothers', parents', kiddies'....
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@NashBrydges I'll keep that in mind. What I'll eventually be doing is to connect several locations for my family VPN. I'd like to feel at least somewhat secure.
Yeah, hard to beat Ubiquiti for what you're looking for, unless you specifically want the added UTM features.
-
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
-
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
-
I thought I'd test out pihole as well
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
But do you need those things at home?
Are you running Sophos at all of those other family members homes as well? i.e. already have hardware there running it?
-
Having used both pfSense and OPNsense, I think that OPNsense is the more modern of the two.
That being said, they both perform respectably well when I used them in my home set up.
-
@Dashrender said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
But do you need those things at home?
The wife and kid have clicked stupid many times. The firewall did catch it or at least reported that it did.
Are you running Sophos at all of those other family members homes as well? i.e. already have hardware there running it?
I have it running at 1 of my brothers house and at my parents. We setup a mesh VPN for support. Also, my brother uses the VPN to connect to his cameras at his house when he's out.
-
OOPs. Forgot about the formatting
-
Hardware is just a used PC with Intel NICs EDIT: 2 were free, one was $100
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
For home?
-
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
For home?
Yes
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
I thought I'd test out pihole as well
That's way simpler.
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
For home?
Yes
Put AV on the desktops, no reason to have it on the network layer.
SPAM filtering should be on the server, not on the IMAP link.
-
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scottalanmiller said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
For home?
Yes
Put AV on the desktops, no reason to have it on the network layer.
SPAM filtering should be on the server, not on the IMAP link.
I'm taking notes
-
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@Dashrender said in pfSense vs OPNSense - Fanboy fued or real differences?:
@scotth said in pfSense vs OPNSense - Fanboy fued or real differences?:
@black3dynamite said in pfSense vs OPNSense - Fanboy fued or real differences?:
pfSense and OPNsense webui is pretty good when it comes to management. What other services were you using with Sophos?
IPS, Spam filtering, https proxy, antivirus. That's about it.
But do you need those things at home?
The wife and kid have clicked stupid many times. The firewall did catch it or at least reported that it did.
Are you running Sophos at all of those other family members homes as well? i.e. already have hardware there running it?
I have it running at 1 of my brothers house and at my parents. We setup a mesh VPN for support. Also, my brother uses the VPN to connect to his cameras at his house when he's out.
Yeah - frankly I think home users almost need UTM more than businesses do - OMG did I just say that.
Really - users are just users - they click anything and everything. A doctor here clicked a link yesterday and wound up on a page faking about having a norton virus alert. We don't use norton.
But a UTM as determined by many in ML-land is the wrong way to do this. Separating these functions out is the correct way, again, according to them.
You could of course install webfiltering software on each endpoint, then saving the users from themselves - but that's generally not free, and a hassle to manage each on their own - so a single server is generally better.
Same goes for AV.
you can use webfiltering like PiHole too.
The firewall component at the edge will be handled by pretty much anything called a firewall/router today, so that part is easy.
Onto VPN - huh - VPN access eh? Have you seen the threads around here about MeshCentral? that most likely would be a much better way to do remote support for your family - no VPN to worry about, and it works no matter where their computer is, as long as it's online.