We just raised a $30M Series A: Read our story

OPNsense OverviewUNIXBusinessApplication

OPNsense is #19 ranked solution in best firewalls. IT Central Station users give OPNsense an average rating of 8 out of 10. OPNsense is most commonly compared to pfSense:OPNsense vs pfSense. The top industry researching this solution are professionals from a comms service provider, accounting for 46% of all views.
What is OPNsense?

OPNsense is an open source, easy-to-use and easy-to-build FreeBSD based firewall and routing platform. OPNsense includes most of the features available in expensive commercial firewalls, and more in many cases. It brings the rich feature set of commercial offerings with the benefits of open and verifiable sources.

OPNsense Buyer's Guide

Download the OPNsense Buyer's Guide including reviews and more. Updated: November 2021

OPNsense Customers
CompuNet Systems GmbH,

Archived OPNsense Reviews (more than two years old)

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
BM
Owner at a construction company
Real User
A user-friendly solution with an easy configuration and good stability

Pros and Cons

  • "The initial setup is easy. It only takes 15-30 minutes to deploy."

    What is most valuable?

    The solution is easy to use and is accessible. I can also use it without paying. The configuration is very easy, and the website makes it easy to find help if you need it.

    What needs improvement?

    So far, everything is okay. We've just started using the solution.

    As long as they continue to ensure that we are protected, it will be perfect.

    For how long have I used the solution?

    I've been using the solution for one month.

    What do I think about the stability of the solution?

    The stability of the solution is good.

    How are customer service and technical support?

    We haven't had to contact technical support. If we have questions, we're typically able to find answers via the website.

    Which solution did I use previously and why did I switch?

    We did previously use another solution, but I don't recall the name. We didn't like the performance we were getting out of it.

    How was the initial setup?

    The initial setup is easy. It only takes 15-30 minutes to deploy.

    What about the implementation team?

    I handled the implementation myself.

    What other advice do I have?

    We use the private cloud deployment model.

    I would advise others thinking of implementing the solution to be aware of what you have to do to, and to plan it out beforehand. The solution is not for everybody, but it's not difficult to set up or maintain.

    I would rate the solution ten out of ten.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    MK
    Consultant at INCONSYS GmbH
    Reseller
    Has good performance but I want to see a friendlier user interface

    Pros and Cons

    • "The feature I find most valuable, is that the program helped me to realize all the requested functionality that was needed."

      What is our primary use case?

      Our primary use case of this solution is for VPN connections. We are currently supporting an SAP company, which has many customers, and most customers need a site-to-site active set connection for maintaining the SAP systems. We currently have round about 200 VPNs.

      What is most valuable?

      The feature I find most valuable is that the program helped me to realize all the requested functionality that was needed:

      - IPsec VPN connections to remote gateways from various Vendors

      - IPsec VPN connections with SNAT (our local network in use at remote site)

      - IPsec connections with DNAT (remote network in use at our local site)

      - Let's Encrypt certificate for WebGUI

      - SSH Access by Putty to the device

      What needs improvement?

      Something that needs to improve is the translation. This comes into play when you have a remote and a local site and you have to work with two different transfer networks for each direction. What I'm missing is user portal for downloading the configurations for SSL VPN clients. It's still not implemented so it seems that this product is still in a developing process. 

      Sometimes it's a little difficult to find some examples for special scenarios. But we have to keep trying and I believe it is possible. It's quite a suitable possibility to use it for VPN connections.

      The monitoring is a little complicated and I have tried to use a plug-in, but it's quite complicated to configure. I had to write my own script.

      With the VPN solutions, it is possible  to cover up all the scenarios which we have. For instance, if you have a customer and your local network is already in use, you have to work with source nat. It is possible and it works. Another issue that customers sometimes have Networks, which are already in use on out local site. It means you have to work with a destination nat but it is possible to create. 

      I would, therefore, like to see the monitoring of the firewall being easier to configure, or to have more templates for this so that you can download the configurations for each scenario and get more detailed descriptions like how all the available plug-ins are performing.

      What do I think about the stability of the solution?

      I am currently running it on Hyper-V and so far I have had no problems. It is currently stable enough.

      What do I think about the scalability of the solution?

      We have 250 people in our company using this program who are able to run the SAP systems with side-to-side connections between the company and the customers. We have six people for deployment and maintenance. I am responsible for the networking. 

      How are customer service and technical support?

      There is no technical team in the Netherlands, but so far I fixed my own issues by reading up on the internet.

      Which solution did I use previously and why did I switch?

      We are using several VPN gateways. We are using our primary solutions in our company, making all the IT for the complete caller group. The caller group has around about 1,600 people in 10 companies. They are part of this group. We have one, main office and several branch offices.

      We are using Juniper SSG Firewalls for Site2Site IPsec connections to customers and this Equipment is working really good. Unfortunately this devices will be running out og supprot soon, so we have to look for some alternatives.

      The central equipment we use is Sophos UTM/SG and Sophos XG configured as high availability. The branch offices are connected by Sophos RED and we mainly use Sophos RED 50 with the AP 55 access points configured as WPA2 Enterprise. For central management, everything is managed in the main office. We are using SMTP proxy with anti-span and anti-virus on SG solutions. This is the only one that doesn't work because we have a problem in that our exchange users are too many, and there are too many accounts - this fact caused the Appache runnig out of ressources.

      An example would be if you have one workstation with two smartphones, and each person has maybe three or four sessions opened on the exchange. If you have 1,400 accounts, you can reach 8,000 sessions. If the Appache message scoreboard is full is comming up, no further users can connect. We have contacted Sophos support to solve this but they were not able to do this - the only effect was a correction of the sizing guide from Sophos. 

      How was the initial setup?

      The setup was straightforward and the only mistake you can make is not to log in at the installer during the setup. I made this mistake once and configured a lot of features. After doing this I could not save the configurations on a disc. Generally, it was quite easy to install and to configure. 

      The initial deployment took about two hours but figuring out how it works in detail and to run a roundabout took two or three days. 

      What's my experience with pricing, setup cost, and licensing?

      There are no licensing costs for OPNsense.

      Which other solutions did I evaluate?

      We had to evaluate other solutions because our primary solution was Juniper SRX, but we were not happy with the features. So we had no other choice and we were forced to look for something else. We use the Sophos XG firewall because we can configure it directly from Azure

      We found the OPNsense solution interesting because there are no costs. In Azure, you only pay for the virtual machine. 

      What other advice do I have?

      My advice would be to compare all the solutions because they all offer something different. Find out what's available and get a feeling for the product and look at the configurations on the firewall. 

      In the next version, I would like a friendlier user interface where the users can look at and download the configurations for the OPNsense clients.

      My rating for this solution is a seven out of ten.

      Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller.
      Learn what your peers think about OPNsense. Get advice and tips from experienced pros sharing their opinions. Updated: November 2021.
      552,695 professionals have used our research since 2012.
      Ercan Aycan
      Founding Partner, General Manager at emsteknoloji
      Real User
      User-friendly, has a lot of reports and easy settings

      Pros and Cons

      • "I find the solution to be user-friendly. It has a lot of reports and easy settings."
      • "On the customer-side, because I'm a small business, I need a cheaper or free solution option."

      What is most valuable?

      I find the solution to be user-friendly. It has a lot of reports and easy settings.

      What needs improvement?

      On the customer-side, because I'm a small business, I need a cheaper or free solution option. 

      To scale, you need a different package application. It's not compatible with pfSense. Maybe there should be a different package or a different setup, but it's a problem. I need a little package because I'm a small business.

      It would be nice if the solution offered virtual servers in the future. Compatible mutual servers with firewall specifications.

      For how long have I used the solution?

      I've been using the solution for 6 months.

      What do I think about the stability of the solution?

      The solution is stable. There are about 10 people using this solution.

      What do I think about the scalability of the solution?

      This solution is scalable. I may scale in the future.

      How are customer service and technical support?

      I don't contact technical support. I don't need to.

      Which solution did I use previously and why did I switch?

      I compared pfSense vs OPNSense. I used to use pfSense. I switched because OPNSense is modern and new. The graphic interface is good. And sometimes pfSense is not stable. Sometimes it breaks the line and stops.

      How was the initial setup?

      The initial setup was easy. Deployment took about one day, maybe two. I do the deployment and handle the maintenance myself, so you only need one person to manage it.

      What about the implementation team?

      I did the implementation myself.

      What's my experience with pricing, setup cost, and licensing?

      It costs about $1000.

      What other advice do I have?

      I would rate this solution 10 out of 10.

      Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
      AB
      CIO at a tech vendor with 1-10 employees
      Real User
      Solved problems with VPN support for a small office network and is easy to use

      Pros and Cons

      • "We can open a new VPN connection easily. It's much easier than with Fortinet in our experience."
      • "OPNsense showed me some problems when using it in different environments. The problem is integration with a virtual server."

      What is our primary use case?

      Our primary use case for this solution is using it as a VPN to connect our data centers and our offices with Windows servers. 

      Also, we use OPNsense as a general firewall for protocol warnings on IIS.

      How has it helped my organization?

      OPNsense has been useful. It's easy to use. We can open a new VPN connection easily. It's much easier than with Fortinet in our experience. It is open source licensed. 

      Open source software operates well. It's a good product. It's what FortiGate was with licensing. You need new licenses for it now. OPNsense is much more flexible.

      What is most valuable?

      The feature that we found most valuable is the flexibility. It has nothing to do with operating the firewall. It's that we can program it the way we want. 

      There is no need to fight with the user interface.

      What needs improvement?

      In our experience, OPNsense showed me some problems when using it in different environments. The problem is integration with a virtual server. 

      In general, OPNsense is sweet, pretty, and neat. It's still in development. I expect the next release in the fall. Maybe they are going to polish it more.

      I would love a buy a new VPN. We experience problems with the old one. In high variables, it shuts off. We want to switch to a new one.

      For how long have I used the solution?

      We have been using OPNsense one year and a half.

      What do I think about the stability of the solution?

      With the stability of this solution, we have had no problems except with high availability when we switch remote machines on.

      Sometimes, it disconnects the VPN. That's the only problem we have experienced so far.

      What do I think about the scalability of the solution?

      We don't have too much traffic. With our traffic, it's working great. We don't expect to have a very big traffic load. Directly within our offices, maybe 20 or 30 people. 

      For the internet server, they are using our service. We have people on 100 home VPN connections. The final users are in the thousands. We are using it in all our offices.

      We only use OPNsense now. We migrated from FortiGate. We removed all FortiGate software. That is the only problem we had using the tool.

      How are customer service and technical support?

      We did not require any help from the support team.

      Which solution did I use previously and why did I switch?

      Previously, we used the Fortinet FortiGate switch because of the devices we have. They were limited to maybe 100-200 MB and were slowing down very drastically with Fortinet. 

      For many different reasons and because I need to do IP implementation that was not very compatible with our VPN, we switched. Now we have no problem integrating the VPN. 

      We switched to this open source solution and so far we are happy with it.

      How was the initial setup?

      The initial set up was very easy. We had it working in one week or so. It was pretty fast.

      What about the implementation team?

      We did the initial setup only by ourselves.

      What's my experience with pricing, setup cost, and licensing?

      We are not paying any licensing fees. OPNsense is completely free for us.

      Which other solutions did I evaluate?

      We evaluated other products for defense similar to OPNsense. We weren't happy with the whole difference. We were happy with the company behind OPNsense. 

      We will pay for OPNsense if required, but that is the main reason we chose it.

      What other advice do I have?

      My first advice is to check the recommendations. They have online information to spec it out in general. OPNsense is a great tool for problem-solving with a VPN. It's very nice.

      On a scale of one to ten, I would rate this product an 8. It still needs to mature. It's new, only two years or three in the market. They are doing great improvements. They still need to fix little things with the high availability and the user interface. That needs to be polished, but they are doing a great job.

      Disclosure: I am a real user, and this review is based on my own experience and opinions.
      Product Categories
      Firewalls
      Buyer's Guide
      Download our free OPNsense Report and get advice and tips from experienced pros sharing their opinions.