Pfsense/OPNsense with Airtel?

Messages
423
Location
Pune
ISP
Airtel, Tata Sky
@Ashbro I am dual booting both. They are simple to set up with just the basic functions, in case you are not familiar with router setup process there's a wizard that guides you through the basics. If you have specific question(s) please ask.

I do not believe there's a step by step procedude detailed on this forum that helps noobs. But you can visit either pfSense and OPNSense documentation on their website for details on basic and advanced options. The firewall software is powerful and flexible too, way more so than the normal household WiFi routers that most use.

PS - I am running it on a spare old PC but I am thinking of alternatives that use less power.
 
Last edited:
Messages
20
Location
Gurgaon
ISP
Airtel XStream
Thank you for your response!
Configuration of pfsense/opnsense I can handle with the documentation and YT tutorials.

I was also thinking how my overall setup would look like?
I suppose it would be ISP Router (which would now act as a modem only) -> OPNSense -> external router (TP-Link in my case, to broadcast the wifi network). Is my understading right or am I missing/wrong about seomthing?

Also, will it be possible to discuss this with you on a phone call or probably on discord?
 
Messages
423
Location
Pune
ISP
Airtel, Tata Sky
@Ashbro the way I have configured my network (with CAT6 cabling as a "back haul" in the home) is as follows:

Airtel/TPBB -->pfSense/OPNSense -->LAN switch/WiFi APs-->LAN or WiFi Clients

pfSense WAN connections are set for load balancing and fail over functions. In addition I have installed Snort and Suricata on pfSense and OPNSense respectively. There are plenty of setup instructions available on YT and on other sites, but if you need authoritative help visit the help pages or even the forums where some of the development/design staff visit and offer help frequently.

After having dual booted both I prefer pfSense for ease of configuration and operation.
 
Messages
423
Location
Pune
ISP
Airtel, Tata Sky
@WieldyBinkie to me it is, YMMV of course. ET Pro is very very expensive and mostly targeted at corporates not individuals.
Any IPS/IDS may have an impact (depending on the machine) otherwise how will it do it's job? Ditto for firewalls, AV scanners on PCs etc. There's always a small tradeoff when you choose security solutions.
 
Messages
423
Location
Pune
ISP
Airtel, Tata Sky
Yes, Snort was single threaded and Suricata is multi threaded. Works best on multi core processors. However Snort 3 is multi threaded. Read more here: Snort 3

What do I prefer? Snort. Why? Only because it works flawlessly with pfSense. I have not tried Suricata on pfS but only on OPNSense which I boot into rarely. I have not done any meaningful comparison yet because TBH I don't really care. There may be detailed comparisons elsewhere on the 'net. Snort, Suricata and pfBlockerNG require additional configuration and fine tuning which you can get on the appropriate forum. I assume you are familiar with the basics of firewalls, routers, network configuration etc. If you have a specific query please feel free to ask.
 
Messages
118
Location
Pathanamthitta, Kerala
ISP
BSNL FTTH
I am probably gonna switch to pfsense once I get hold of the hardware (shipping time from China is bad now). I have it running on a vm, getting my feet wet before I dive in. I was particularly curious about snort because I tried it once on OpenWRT and couldn't get it to work properly. Anyway thanks for the info, I'll ask if I get stuck with something.