I finally decided to buy a mini PC to make it as a pfsense router and I was wondering witch option is more suitable for my needs

First I was thinking of doing with proxmox so I could install pi-hole and wireguard in it but looking more into pfsense I see that there is PfblockerNG and also a Wireguard package that could be installed inside.

What does everybody in here use? I’m curious to know if thinkering in proxmox to run pfsense is more efficient than just installing bare-metal.

Thank you

Conclusion: will go with sole pfsense since I never used it in the first place, once accustomed will switch to proxmox, thank you everyone I hope there will be more posts like this in this platform

  • ProctorZeuss
    link
    fedilink
    arrow-up
    11
    ·
    edit-2
    2 years ago

    I’m currently running OPNsense virtualised in Proxmox. It’s a little confusing if you haven’t run a custom firewall before but the setup was relatively simple and works flawlessly now that I understand it a bit better. The only downside being if you are running it on the same machine as your services and need to restart, your network will go down as well. Ideally I will get another machine just for network services as it sounds like you are doing.

    • beep@infosec.pub
      link
      fedilink
      English
      arrow-up
      6
      ·
      2 years ago

      Same here, opnsense on proxmox. I’m very happy with it. Snapshots mean I don’t have to worry about a “bad” update and I appreciate the easy console access through prox gui without needing an ipkvm or similar in scenarios where I’ve screwed something up and can’t hit the gui or ssh. Plus, if you backup your *sense config after any changes you make, in the event you need to setup a new physical box it’s a quick iso install and restore config. For me the pros outweigh the cons, even if a bit of performance is lost.

    • -RYknow@sh.itjust.works
      link
      fedilink
      arrow-up
      2
      ·
      2 years ago

      I’m seriously debating switching to opnsense. I’m in the process of upgrading my homelab to 10g, and wonder how pfsense will play with my 10g nics. I think I read before that pfsense plays with it fine… But if not, I’ll jump to opnsense.

      I also wonder how long pfsense will keep things going for CE… Seems like the writing is on the wall that it isn’t going to last, but we’ll see.

      • ProctorZeuss
        link
        fedilink
        arrow-up
        1
        ·
        2 years ago

        pfsense and OPNsense are incredibly similar as it’s a fork of pfsense but I can’t recommend it highly enough. It’s been amazing. Very stable, powerful, and easy work to work with.