-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I use pfsense, ipcop, and vanilla debian/ubuntu boxes in various roles as firewalls, routers, bridges, proxies etc. Which one I choose depends entirely on the specifics of a given project.
I really like pfsense for the automatic failover and site to site VPNs. I use Ipcop in cases where tight proxy control is desired, and vanilla linux boxes for routers, bridges, crazy solutions. I prefer Linux for custom jobs involving routing, traffic shaping, firewall as I really know and like tc, ip, netfilter. In this case pfsense makes a lot of sense, as does ipcop/smoothwall. It will likely come down to how comfortable you feel in supporting it when things go bad. There are a couple of people on this list who can help you if required. Johnny Stork wrote: > I have a client that is planning to install/use the pfsense firewall on > a smal mini itx system they setup with dual NICs. I am currently > downloading the live cd to check it out but I am a bit concerned since I > never heard of it, the current release appears to be in beta and I am > wondering about the apparently small user base. I have run/evaluated > many firewalls such as ClarkConnect, Smoothwall, Ipcop, Shoreline, > Astaro etc (my favorite is Astaro), so does anyone have any suggestions, > experiences/feedback with pfsense etc? > > Beyond the basic requirements of any firewall for DMZ, NAT, IDS etc, > they absolutely need to have a reliable VPN to connect 2 identically > configured miniitx machines running the software, between Canada and Europe. > > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHR3qJwRXgH3rKGfMRAqGcAJ0a6e0qNFHs6bdb5Ee06YHhj4CysgCfdjHQ AFaF8u/5dwRmwkFGV2rkxr0= =DzRO -----END PGP SIGNATURE----- _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
