Out of curiosity, how much bandwidth is YouTube using? Vince On 03/05/2013 12:44 PM, greg whynott wrote: > I've a pfsence box in production for the last 2 years. No issues to > report, but we are in transparent proxy mode, no auth. For report > generation we use sarg and map the IPs to workstations. workstations > have a year long leases, and since people don't move around, it > works. I've never been asked for a report beyond "how much bandwidth > is youtube using?" > > I use pfsence's QoS features to allocate total bandwidth for browsing, > and the different vlans get different priorities and limits > (exec/art/admin etc), and ntop for general usage reports. > > -g > > > > > On Tue, Mar 5, 2013 at 12:36 PM, Robert Mason > wrote: > > Hi all, > > Have been working on a replacement firewall solution for our office > for a couple months now and am finally on the verge of > implementation but the higher ups were wondering how stable and > secure this machine would be. > > I've used the v2 branch of pfSense and have been working towards an > LDAP integrated squid setup with squidguard. Anyone else out there > with a similar setup in production? > > Thanks > > To unsubscribe from the list send a blank e-mail to > mailto:studiosysadmins-discuss-request@studiosysadmins.com > ?subject=unsubscribe > > > > > To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe > To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe

I actually ran OpenBSD for over 10 years as a firewall/VPN/proxy server with absolutely no issues. Super stable, uber secure ;) shawn On Tue, Mar 5, 2013 at 10:30 AM, Pete Smith wrote: > Used it at two shops now. > > Shop one, it replaced a Smoothwall. Served a transatlantic site-to-site VPN, > several "roadwarrior" users, and performed transparent proxy duties with > nary a whimper. LDAP integration for VPN is bloody useful! > > Shop two, it's a VM providing VPN access for, erm, just me. ;-) But I'd swap > our Juniper jobby for a packet of crisps and put in pfSense without any > hesitation. > > Both rock solid. Super stable. Planning to have one at home when I double up > on ISPs. CARP is awesome. :-) > > How many users you got? LDAP? ISPs? Requirements for FTP, SFTP, HTTP, DMZ > etc.? > > Happy to answer any other questions ... > > HTH > > Pete > > On 5 Mar 2013 17:36, "Robert Mason" wrote: >> >> Hi all, >> >> Have been working on a replacement firewall solution for our office for a >> couple months now and am finally on the verge of implementation but the >> higher ups were wondering how stable and secure this machine would be. >> >> I've used the v2 branch of pfSense and have been working towards an LDAP >> integrated squid setup with squidguard. Anyone else out there with a >> similar setup in production? >> >> Thanks >> >> To unsubscribe from the list send a blank e-mail to >> mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe > > > To unsubscribe from the list send a blank e-mail to > mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe

We use to use pfsense and I loved it! but then we increased our bandwith and filtering.. and auditing of IM and all webtraffic , blocking of p2p etc.. and I found only a fortinet could do all of that. On Tue, Mar 5, 2013 at 10:50 AM, Steve Ovens wrote: > I'm also using pfsense without issues, actually I like it quite a bit. > We don't do much exotic configurations, squid and some outside access with > ldap auth is about as complex as I get over here. Still no complaints, for > simple to moderate setups I would recommend taking a look at it the very > least > > Steve > > > On Tue, Mar 5, 2013 at 1:30 PM, Pete Smith wrote: >> >> Used it at two shops now. >> >> Shop one, it replaced a Smoothwall. Served a transatlantic site-to-site >> VPN, several "roadwarrior" users, and performed transparent proxy duties >> with nary a whimper. LDAP integration for VPN is bloody useful! >> >> Shop two, it's a VM providing VPN access for, erm, just me. ;-) But I'd >> swap our Juniper jobby for a packet of crisps and put in pfSense without any >> hesitation. >> >> Both rock solid. Super stable. Planning to have one at home when I double >> up on ISPs. CARP is awesome. :-) >> >> How many users you got? LDAP? ISPs? Requirements for FTP, SFTP, HTTP, DMZ >> etc.? >> >> Happy to answer any other questions ... >> >> HTH >> >> Pete >> >> On 5 Mar 2013 17:36, "Robert Mason" wrote: >>> >>> Hi all, >>> >>> Have been working on a replacement firewall solution for our office for a >>> couple months now and am finally on the verge of implementation but the >>> higher ups were wondering how stable and secure this machine would be. >>> >>> I've used the v2 branch of pfSense and have been working towards an LDAP >>> integrated squid setup with squidguard. Anyone else out there with a >>> similar setup in production? >>> >>> Thanks >>> >>> To unsubscribe from the list send a blank e-mail to >>> mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe >> >> >> To unsubscribe from the list send a blank e-mail to >> mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe > > > > > -- > Red Hat Certified Engineer > Ubuntu Certified Professional > Novell Datacenter Specialist > Novell Certified Linux Administrator > LPIC-1 Certified > Linux+ Certified > > To unsubscribe from the list send a blank e-mail to > mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe