untangle vs pfsense vs sophos

Untangle was easy to eliminate as I wasn’t too fond of the GUI (personal choice) . ask a new question. This topic has been locked by an administrator and is no longer open for commenting. I manage about fifty of them at work and they're a dream to work with. :) Thanks. There is no API for making changes. It also seems a lot of XG users are complaining about it in the Sophos forums and say it’s not ready for prime time and is buggy. We manage to control productivity and efficiency by sharing department's internet usage.

You might also take a look at Mikrotik RouterOS. Fill in your details below or click an icon to log in: You are commenting using your WordPress.com account. Here to help if you have any questions. They offer an online demo here –, Ubiquiti USG – An appliance based firewall, delivers excellent value for money and can be controlled via an intutive portal. I looked around and a few options presented themselves for a home firewall. I know many folks that have switched from Sophos and Untangle to pfSense. By brandon.lee on December 17, 2014 Security. I'm really shocked by the lack of love for UNTANGLE free here! Note that pfSense also does L7 filtering as well, out of the box. Not sure on Sophos. Track users' IT needs, easily, and with only the features you need. I think when I become the full-time admin at the company I am going to try to talk them into getting me a TV I can mount on the wall and display all the graphs and real-time info pfSense shows so I can monitor what is going on with the network(s) at all times. pfSense can get you everything you want plus it's free! The CPU doesn't get above 5% on pretty modest hardware. This is perfect if your business uses multiple ISP's to ensure your customers are always able to access their data. I ended up selecting Sophos XG as the UI looked polished and components looked easy to setup (this would change later, as I moved to Opnsense ultimately). I ordered it with 8GB RAM and a 60GB SSD (came installed as a msata drive) . I'm using pfSense for 500+ concurrent internet connections, 1-20 SSL VPN connections, and 3 remote sites pushing anywhere from 1-20 Mbps all day, along with Snort on 4 interfaces running 300 rules, Dansguardian, squid, and various custom utilities. It also has a SATA connecter – so you can hook up a SATA SSD to the box later. Simplewall presents a never-seen-before user interface that provides user/group wise management of content, bandwidth and protection policies. If a customer needs this, Sophos, if not, OPNsense, Try it on your own, I dont like the XG, will stay at SG, Quote from: Solid-Profession on July 26, 2020, 02:16:54 pm, https://techcorner.max-it.de/wiki/Datei:2020-04-06_15_19_18-Window.png, Quote from: fabian on July 26, 2020, 09:52:55 pm, Quote from: franco on August 18, 2020, 10:24:55 am, Quote from: mimugmail on July 27, 2020, 09:57:01 am, Quote from: mimugmail on August 18, 2020, 09:54:08 pm, Quote from: mimugmail on August 19, 2020, 07:39:30 am, Quote from: mimugmail on August 19, 2020, 10:40:20 am, OPNsense Contributor (Language, VPN, Proxy, etc. To continue this discussion, please The initial config also has a default rule allowing all outbound LAN communication and blocking all inbound. Don't forget about endian. I eliminated the Ubiquiti USG because it doesn’t offer an inbuilt SSL VPN server and the people on the forums reported throughput issues on the smaller USG-3P device. I suppose the entire thing took about 20 minutes and I was back on the internet – sweet !. It's super easy to setup and very eye opening seeing much is poking at your network.

Under normal loads with about 20 devices the CPU stays under 5%.

I’m mostly looking into a firewall for IDS/IPS at home and to get a chance to learn about and configure firewalls as I’m taking a university course on firewalls and network security at the moment and am interested in setting up one at home. What happens if you go past the limit? Press J to jump to the feed. P:S – I’ll probably do a Sophos vs Pfsense vs Opnsesne post later. To conclude , if you are looking at a home firewall solution to replace your router and you want things to just work (limited customization) SophosXG offers a very compelling UTM in a box solution – worth a try ! What is the ballpark cost for the Sophos VM/Appliance, does anyone know? PfSense and Untangle NG Firewall both have a strong set of features, but they also have a few limitations that are worth considering. They also have IPsec in the settings as well, but I am not familiar with that enough to go into any detail with it.

Hackers and attacks have become more sophisticated and the attack vector has … pfSense is based on FreeBSD, so it's best to look on their compatibility list before deploying.

I mentioned earlier that pfSense had a GUI. If you're looking for a scenario where you need to control internet access, you can go very detailed, blocking just Facebook streaming but allowing Facebook in general. Before pfSense we were using consumer and small business rated network appliances from Linksys, Cisco, Buffalo and Netgear. Also have a smart TV, Xbox, and Hue lights I want to put on the separate VLAN.Ideally I’d like to have some web filtering and AV scanning. 6 years ago. Logical interface with drag and drop objects. To boot from the USB, hit DEL during startup (when you see the boot logo). If any sophos people know otherwise on this issue, I'd love to know how to set it up.

This can be a hindrance in environments where auto-deploying something needs firewall rules or HAProxy configs updated. Enable user authentication ( I do this only for the guest network). I was thinking I might also want an always on VPN for certain traffic too.

Complete Protection / One Simple Wall . Sophos can be nice but is a total resource hog. Which has better support, GUI differences, plug ins, performance and that sort of thing. Enable multicast broadcast across VLAN’s for DLNA access from one VLAN to the other.

VPN's - I am not entirely sure if this package was free with pfSense, but it does offer the ability to use OpenVPN which is what I am familiar with. Welcome to the SW community!

ITQlick rating ITQlick Rating is based on the software score (below) and aggregated online reviews. Are there any other limitations besides the 50 IPs? I really am looking to get a firewall for better monitoring and control over my network. Pfsense – An open source firewall with ‘packages’ that you can configure to get near to a UTM performance.

I'd say it's suited for much more than SOHO. It has packages you can install to snort bad traffic. That makes a nice UTM solution.

In terms of VPN it was the firewall acting as a client. I advocate all people bridge their home modem and use pfSense as their firewall/router. Simplewall comes pre-packaged with all widely used networking features including port map, IP alias, DHCP and DNS server. The ONT gives a RJ-45 handoff. I have run both PfSense and Untangle on the same hardware. I'd much rather build all the stuff lumped into UTM as separate solutions. Add more firewall policies for IOT to WAN communication; LAN to IOT communication. I've been using and swearing by their home product (which is the same as their enterprise) since the the Astaro days. Fully tested in virtual environments like KVM, VMWare, OpenStack etc. I believe OPNsense is essentially Pfsense with a nicer UI? Enterprise Networking -- I know many folks that have switched from Sophos and Untangle to pfSense. PfSense having a wealth of open-source add-ons is a strength in many ways, but also requires administrators to vigilantly check for updates to keep their system running smoothly. I’ve got my own hardware I’m going to use and have narrowed my choices down to Sophos XG, Untangle, and pfSense based on my needs and price point. Firewall Feature Comparison 2020: pfsense, Untangle, USG, Dream Machine, UDM Pro, & EdgeRouter chart February 13, 2020 Youtube Posts Lawrence Systems / PC Pickup Thu, February 13, 2020 2:08am URL: ( Log Out / pfSense is the way to go IMO. Only thing from Sophos I'm missing is the user portal to self-enroll certificates and VPN configs. Most people who get UTM appliances ultimately end up having to disable most of the UTM functionality to get decent performance. 1st Post.