router / firewall with PF and carp.

[Kevin Kobb]

Both would probably be fine. However, I would recommend taking a look at 
pfsense if I were you. It is made to do what you want without as much of 
the overhead as a full blown *BSD install.

It is easier to configure, update, the documentation is good, and you 
can get top notch paid support from the developers if you want.


On 9/30/2010 6:19 PM, Patrick Lamaiziere wrote:
> Hi,
>
> We are in the process to replace two Cisco Pix firewalls and one Cisco
> router with two servers running PF with carp. The network is large
> (it is an University) and all will depend on this two machines.
>
> We have made some tests with OpenBSD, PF and OpenBGPD and it looks to
> work (but we have to make a lot of more tests to validate this).
>
> I think that the support for an OpenBSD release is very small (only one
> year) and I'm suggesting to use FreeBSD instead (we can expect ~3/4
> years of support if we follow a stable branch).
>
> I am an happy user of FreeBSD since some time - I mean that I know it is
> not perfect and there are some bugs! - but I dont have any experience
> running it as a router on a large network. So, are PF and carp expected
> to work fine on FreeBSD or are there some known problems?
>
> Do you think that OpenBSD suits better for this?
>
> Thanks, regards.
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"