Is there a pfSense equivalent that is based on linux?

Bird222

[H]ard|Gawd
Joined
Dec 1, 2000
Messages
1,281
I'm sure there are projects based on linux similar to pfsense. What is the best/most popular one?
 

Ehren8879

Supreme [H]ardness
Joined
Sep 24, 2004
Messages
4,464
If not having a user interface doesn't bother then, try Vyos

If you have any experience with Juniper or Ubiquiti Edgerouter CLI then you should pick it up quickly
 

iroc409

[H]ard|Gawd
Joined
Jun 17, 2006
Messages
1,385
The forks of pfsense are opnsense and untangle.

Untangle isn't a fork of pfsense, but it does run on Debian so it would meet OP's requirements. I ran Untangle for quite a while a few years ago, and it's a pretty solid system.

Endian would be another choice. I ran it a long time ago before it went away and came back. Sophos is another good option, heavy on filtering.

These are all leaning more towards the UTM/NGFW, where pfsense can fill that role I don't think it was built that way. I'm a huge fan of FreeBSD though and I installed pfsense once but have never really used it. Go figure.
 

PigLover

[H]ard|Gawd
Joined
Jul 11, 2009
Messages
1,183
There is a good reason most router/firewall software is based on BSD. Other than sheer momentum and the fact they they have just forked each others code (.e.g, PFSense/OpenSense, etc.).

Most of these platforms rely on OpenBSD Packet Filters, which until recently only existed in the BSD kernel. PF is the "PF" of "PFSense". OpenBSD PF provides a very efficient, very easy to use, method of implementing high(ish) performance networking and firewall applications.

Recent capabilities in Linux (Berkely Packet Filters added to the Linux kernel) as well as user-space solutions like VPP have emerged that largely negate BSDs advantages for firewall applications and - given the larger usage base of Linux we are likely to see some Linux based router/firewall applications starting to mature and gain the momentum in the marketplace needed to overtake BSD based solutions.
 
Top