It depends as you mentioned it is Alpha software and really both could be an
issue. For example right now I'm using 82.4 and I have to reboot for
Firewall / Rules changes to take affect. Since I have two firewalls and
Ahh, was this the version we set the filesystem to readonly for PC platforms? heh, that was a mistake :)
they fail over seamlessly (well not entirely for some reason it fails over
to the backup just fine but when it preempts back to the primary some
outbound services seem to lose connectivity, no idea why) I can make rules
changes without loss of connectivity (ideally) during that reboot.
Damnit, that bugs back??? I can't count the number of hours Scott and I have spent stomping this one time and time again. I'll have to get a carp setup going soon (still have my dev lab setup for inbound load balancer testing).
pfsense is damn impressive software. for about 2400 bucks (i'm using some
pretty beefy firewalls which are complete overkill for what I actually need)
I've got a fully redudant firewall setup that would have cost me 5-10x (ever
seen how much a firewall with 1 or 2 Gig interfaces costs? I've got 6 in
each of mine) that with a commercial setup and it gives me equal or better
performance with no licensing fees. pfsense has features that are otherwise
only available in commercial firewalls.
yay :)
--Bill
