5 Amazing PfSense Options

PfSense is well-known for supplying numerous capabilities that happen to be only otherwise offered on highly-priced commercial firewalls. Additionally, with the release of pfSense 2.0 in 2011, quite a few new options have been added towards the software. Listed here are 5 functions that present compelling causes to deploy pfSense in your network. Get more info about pfsense wifi access point

[1] Load balancing: Using multiple components with load balancing, a method for distributing workloads across a number of computer systems or other sources, may perhaps improve reliability. It really is commonly only needed inside big or sensitive systems (one example is, popular web sites, significant IRC networks, high-bandwidth FTP sites, NNTP and DNS servers), and not all firewall and router products support load balancing. pfSense, having said that, supports it, and may be configured to load-balance or failover redundant WAN interfaces. Load-balancing will divide all traffic amongst the interfaces although failover will use a single interface, but upon failover it is going to automatically switch to a further. This brings us to the next feature:

[2] Failover: PfSense is usually configured to switch to a redundant or standby pc server, system, hardware component or network upon the failure or abnormal termination of your previously active application, server, system, hardware component or network. One example is, you may configure pfSense to automatically redirect traffic in the primary webserver to a backup webserver in the even of a failure. You are able to even configure multiple pfSense systems for failover, so if one pfSense personal computer goes down, the firewall still functions.

[3] Customizable guidelines: All firewalls have rules, but pfSense, particularly with version 2.0, has produced rules hugely customizable. For example, a rule might be setup to only accept traffic from a particular OS (Windows. MacOS and Linux are supported, of course, also as a number of UNIXoid variants and Novell). Also, there is a scheduling option, so guidelines will only invoked for the duration of particular hours and days, and quite a few other options.

[4] MAC address spoofing: Most of the time, an ISP registers the client’s MAC address for service and billing services. This could be circumvented simply by MAC spoofing, and it is trivially straightforward in pfSense, exactly where MAC spoofing is as very simple as typing within a distinct MAC address for a network interface. This can be handy if you’d like to force the ISP’s DHCP server to lease you a brand new IP address, or for other factors.

[5] VPN: Most firewalls and routers support virtual private networks (VPNs), but couple of possess the flexibility of pfSense. For instance, m0n0wall supports VPNs, and has lots of of the options you would count on to view for VPNs (e.g. support for diverse encryption and hash algorithms and diverse authentication procedures), but m0n0wall only supports the IPSec and PPTP protocols. PfSense, on the other hand, supports IPSec and PPTP at the same time as OpenVPN and L2TP protocols, and has many sophisticated options, which include NAT traversal (enabling customers to connect from behind restrictive firewalls) and dual peer detection.

This list of capabilities isn’t, by any indicates an exhaustive one, but they are a few of the factors why pfSense is additional flexible and effective than competing firewall/router products.

Comments are closed