Overview
OVERVIEW pfSense Plus software is the world's leading price-performance edge firewall, router, and VPN solution. Over seven million installations used by homes, businesses, government agencies, educational institutions and service providers.
PRICING //04-2024 - With the release of 24.03, Netgate will no longer be supporting instance types with 512MB memory or less. If you are running an instance tX.nano, please make sure to upgrade the instance to tX.micro or higher PRIOR to upgrading to 24.03//As of 24.03 - Supports High Availability configurations across both AWS zones and regions, with seamless settings and configuration synchronization ensuring enterprise grade consistent performance. See pfSense Plus on AWS documentation and HA blog at Netgate.com.
No hidden fees for features or functions. No arbitrary licensing fees. No artificial user limitations. Just unparalleled ROI and TCO.
FEATURES Firewall: Stateful packet inspection, GeoIP blocking, Anti-spoofing, Captive portal guest network, Time-based rules, Connection limits, NAT mapping (inbound/outbound)
Router: Policy-based routing, Concurrent IPv4/v6 support, Configurable static routing, IPv6 network prefix translation, IPv6 router advertisements, Multiple IP addresses per interface, PPoE server
Attack Prevention: IDS/IPS, Snort-based packet analyzer, Layer 7 application detection, Multiple rules/sources/categories, Emerging threats database, IP blacklist database, Pre-set rule profiles, Per-interface configuration, False positive alert suppression, Deep packet inspection (DPI), Application blocking
VPN: IPsec, OpenVPN, Wireguard, Site-to-site and remote access VPN, SSL encryption, VPN client for multiple operating systems, L2TP/IPsec for mobile devices, IPv6 support, Split tunneling, Multiple tunnels, VPN tunnel failover, NAT support, Automatic or custom routing, Local user authentication or RADIUS/LDAP
Reverse Proxy and Load Balancing: HTTP and HTTPS proxy, high availability, load balancing, and proxying for TCP, HTTP and HTTPS-based applications.
Network Services: Dynamic DNS, DHCP Server, DNS Forwarding, DNS Filtering
Management: GUI, full suite of configuration, user authentication, system security, resilience/reliability, and system reporting/monitoring features See the full feature list here: https://www.netgate.com/solutions/pfsense-plus/
ABOUT NETGATE Netgate is the company behind the pfSense project and the only official source for pfSense Plus and Community Edition (CE) software. As the primary contributors, our developers work hard to provide the best firewall security technology for your cloud infrastructure.
Highlights
- The leading open-source driven firewall, router, and VPN (OpenVPN/IPsec/WireGuard) solution for network edge and cloud secure networking.
- Over seven million installations protecting homes, businesses, governments, educational institutions and service providers.
- Made possible by open source technology. Made into a robust, reliable, dependable product by Netgate.
Details
Typical total price
$0.436/hour
Features and programs
Buyer guide
Pricing
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.micro AWS Free Tier | $0.12 | $0.012 | $0.132 |
t2.small | $0.12 | $0.023 | $0.143 |
t2.medium | $0.12 | $0.046 | $0.166 |
t2.large | $0.12 | $0.093 | $0.213 |
t3.micro AWS Free Tier | $0.12 | $0.01 | $0.13 |
t3.small | $0.12 | $0.021 | $0.141 |
t3.medium | $0.12 | $0.042 | $0.162 |
t3a.micro | $0.12 | $0.009 | $0.129 |
t3a.small | $0.12 | $0.019 | $0.139 |
t3a.medium | $0.12 | $0.038 | $0.158 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
Hourly users may cancel or stop using this service at any time. Annual subscriptions may be cancelled for a full refund within 48 hours of purchase or a prorated refund within 14 days.
Custom pricing options
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
An instance may be managed via ssh or https. Most of the system configurations may only be adjusted via the https interface. To access the instance via ssh: log in as the admin user using the SSH key associated with the instance. E.g. run the command 'ssh -i my_aws_rsa_key admin@instance_host_name'. Substitute the file your private SSH key is stored in for my_aws_rsa_key and the hostname of the instance for instance_host_name. To access the instance via https, use a web browser: Type admin for the account name. The password can be set to a value of your choice when you start the instance by setting a value of the form 'password=your_desired_password' in the "User Data" field of the "Advanced Instance Options" section of the launch screens. If you don't set a password, a random password will be set. The random password can be viewed by choosing Get System Log from the Actions menu for the instance. To set a password during the creation of an instance: On the "Configure Instance Details" screen expand "Advanced Details". Make sure "As text" is selected for "User data". In the "User data" field enter a password of the form 'password=your_desired_password'.
Resources
Vendor resources
Support
Vendor support
Get expert technical support via email, portal, or phone with a four (4) or 24-hour initial response SLA from the Netgate Technical Assistance Center (TAC). Learn more about our support options at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Customer reviews
Solid product
We're using pfsense in AWS for ~80 IPsec tunnels. Works well. Upgrades have been easy and the support team at pfsense have been supportive when we've had questions.
no direct HA support
If you are happy to run a single appliance in a single AZ and don't care about high availability, you can take risk of running this appliance. But I don't understand why businesses will do this.
This appliance does not support HA, or atleast does not seem to on AWS cloud. Without an HA solution this becomes only working for non-enterprise users for testing on AWS.
Businesses trying to deploy this on AWS will not have out of the box HA solution and hence will not have the ability to failover connections/VPN which does not make it useful.
Pfsense company should publish an article on how to provide HA solution for multi-AZ deployment.
Very disappointed.
L2TP vpn stop flowing traffic after http request
Hi there,
I am trying to configure L2tp with Linux fedora as client, I am able to ping any remote host however once I hit any Http destin from client, l2tp vpn stop working vpn stayed connected however no traffic flow even ping stop working
Great Openvpn Fireewall Router
As usual pfsense is one of the top freebsd based router/firewall/ids systems available,ahrd to fault and the interface doesnt lack anything.
This AMI image provided by netgate and amazon ec2 is up and running for multiple users within an hour if you are familiar with openvpn and pfsense,with the amazon ec2 interface making ease of the process.
Throughput , lack of loss and scalability even on the t2nano ec2 is superb and certainly exceeded our expectations considering other testing on bare metal configurations with more ids and other applications.When looking at the this machine vs the required bare metal to to normally achieve this hypervisors performance its great value.
Looking forward to the arm version of this and other additions.
Filter you ssh channel in the ec2 console for your address or dont enable the ssh console on pfsense until or when needed.
One of the best Firewall Appliances in the Market
Best value for money. pfsense has never failed me to date. It's powerful and in par with industry leaders. Matter of fact, there are many instances where industry leaders are behind in some technologies that pfsense support. Keep up the good work guys