Netgate pfSense Plus Firewall/VPN/Router
Netgate | 23.09.1Linux/Unix, FreeBSD 14 - 64-bit Amazon Machine Image (AMI)
External reviews
External reviews are not included in the AWS star rating for the product.
Solid product
We're using pfsense in AWS for ~80 IPsec tunnels. Works well. Upgrades have been easy and the support team at pfsense have been supportive when we've had questions.
- Leave a Comment |
- Mark review as helpful
Great Openvpn Fireewall Router
As usual pfsense is one of the top freebsd based router/firewall/ids systems available,ahrd to fault and the interface doesnt lack anything.
This AMI image provided by netgate and amazon ec2 is up and running for multiple users within an hour if you are familiar with openvpn and pfsense,with the amazon ec2 interface making ease of the process.
Throughput , lack of loss and scalability even on the t2nano ec2 is superb and certainly exceeded our expectations considering other testing on bare metal configurations with more ids and other applications.When looking at the this machine vs the required bare metal to to normally achieve this hypervisors performance its great value.
Looking forward to the arm version of this and other additions.
Filter you ssh channel in the ec2 console for your address or dont enable the ssh console on pfsense until or when needed.
One of the best Firewall Appliances in the Market
Best value for money. pfsense has never failed me to date. It's powerful and in par with industry leaders. Matter of fact, there are many instances where industry leaders are behind in some technologies that pfsense support. Keep up the good work guys
Works well with AWS networking
I used the pfSense Netgate firewall/VPN/Router to help study for the AWS Advanced Network Specialty exam. Simple to set up, I used it to build VPNs w/BGP between two VPCs and a remote network using pfSense on two sides and a VGW in the middle. The latest version supports VTI interfaces so you can use route-based VPN instead of policy-based VPN. Without VTI interfaces you can set up a VPN but BGP doesn't work as expected. I had no problems setting up VTI interfaces in the VPN configuration, installing OpenBGPD, and routing traffic using CloudHub VPN and BGP to connect the two VPCs and my remote network together.
In my opinion, the pfSense firewall was easy to set up and the interface is fairly intuitive if you're familiar with networking and security. I've used the community edition for a while and the AWS version has the same look-and-feel. There's also a number of open source options that can be added to extend the functionality of the product.
I think the only downside is the pricing. I wish the t2.nano and t2.micro were both priced the same. The t2.nano is great for a trial run. However, if you install any options you'll probably want something larger than a t2.nano and that will create a significant price increase. Then again, Netgate's pricing seems to be much lower than comparable products in AWS marketplace so it looks like it cost less to run than other products with similar functionality.
I would recommend Netgate pfSense if you are looking for a low-cost stateful firewall that is built using open source software and can do VPN and routing too.
Great for Site-to-Site
Very easy to use.
The UI is Intuitive.
Site-toSite VPN is very stable.
You can upgrade to a newer version from the UI.
Strongly recommended!