With their recent announcement of pfSense Plus I guess the claims of this article are more true than ever.
I see where Netgate is coming from: they need something to guarantee themselves revenue, but sleazy tactics like this (do read that linked announcement for some amazing marketing spinning) leaves a very bad taste in my mouth.
A bit of a shame as I’m a very happy user of pfSense for years now
Netgate’s douchebag moves on OPNSense made me stop even considering using their products.
But then I started reading a bit about their TNSR (closed source except for the open source components they are using) and was a bit tempted due to reasons.
Oh wow, I never knew. I guess I’ll set up opnsense if my firewall ever gives me trouble.
Ouch. Never knew this was the case. Guess I’ll be looking at replacing it with opnsense. Kind of sad to see my 499 day uptime go up in flames :( pcengines hardware is remarkably reliable!
I recently used ubuntu server to make a wired firewall / home router / pihole on an rpi4. Takes a lot of work to figure out but it seems like there is potential for a simple web-gui to configure it all. I’ve had no problem with throughput or resource usage or latency.
OpenWRT has snapshot support for the rPi4 (and full support for previous models). I use it with two TP-Link UE300s and get full gigabit throughput. The web UI and package ecosystem are fantastic, and configuration from scratch shouldn’t take more than a couple of hours for a new user. Happy to answer any questions 👍
This! I haven’t tried OpenWRT on rPi4 yet, but I’m using it on a rPi3 with low bandwidth requirements (due to obvious reasons) and it has been great so far.
I just wished I could run VyOS on a rPi4 at some point.
I had looked at openwrt. I previously had really good experience running ddwrt on an old dlink router.
One thing I wanted to do this time was to run pihole and that looked a bit tricky to do with the openwrt setup. Maybe in the future I can virtualized the rpi to make it more possible. At the end of the day I guess I really just needed the FTL instead of dnsmasq.
The ubuntu was also a learning experience for me with ipv6. I struggled a lot trying to get that to work. In fact I’m still stuck with having to manually run dhclient after boot because the network manager didn’t seem to obey they config.
Even a rPi3 should have CPU horsepower enough to handle a lot of traffic - but it’s limited by it’s NIC effectively being a USB device, limiting it to ~300 Mbps.
If you try OpenWRT you’ll get the web ui you are thinking of, but not pihole as such. But then you’d have an excuse to buy another rPi4 ;)
The rpi4 has the fast usb 3 so I get full gigabit out of the native for lan and usb for wan. I don’t have gigabit internet (150mbps) and my load is basically <1%.