this post was submitted on 08 May 2026
4 points (57.7% liked)

Technology

84478 readers
3962 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
4
Can we build our own software based firewall ? (www.fortinet.com)
submitted 1 day ago by MastKalandar@feddit.online to c/technology@lemmy.world
16 comments fedilink hide all child comments
 

Learn what a firewall is, why it is important, how it works, and firewall best practices. Learn how a firewall can ensure the data is harmless and prevent data from being stolen or compromised.

you are viewing a single comment's thread
view the rest of the comments
[–] LeTak@feddit.org 6 points 1 day ago (3 children)

I used OpnSense, OpenWRT and PFsense. Can’t really complain for home lab. But OpenWRT should not be used as a full UTM FW. It is more of a router and AccessPoint software. OpnSense and PFsense are both good options. Where OpnSense goes more into UTM FW with Plugins IDS/IPS stuff. I used PFsense only for IP based filtering but I know it can do more than that.

[–] muusemuuse@sh.itjust.works 2 points 1 day ago (1 children)

I could never get opnsense or openWRT to perform at full speed on gigabit WAN

[–] LeTak@feddit.org 2 points 1 day ago (1 children)

I also had trouble with that. I had to build some QoS pipes and query’s in OpnSense to reach 1Gbit/s. By now I upgraded my setup with an Intel N100 and 16GB RAM. It’s more than enough for OpnSense

[–] muusemuuse@sh.itjust.works 1 points 1 day ago

I have tried on a Ryzen 5800xt virtualized and bare metal trying 3 different NICs. My firewalla purple still beats it and that infuriates me.

[–] anamethatisnt@sopuli.xyz 2 points 1 day ago (1 children)

You can run Suricata on pfsense too

[–] LeTak@feddit.org 1 points 1 day ago

Yes. Does PfSense have something like OpenCentral for stack management?

[–] MastKalandar@feddit.online 1 points 1 day ago (1 children)

Basically l'm looking for a firewall that can push out attacks...... Like spams.......

[–] LeTak@feddit.org 4 points 1 day ago

I use OpnSense with Suricata and CrowdSec for that kind of job. But nothing works out of the box in that segment. You have to learn how to setup your environment for your requirements. There a many tutorials and forums, you just have to dig around and find what you need.