this post was submitted on 08 May 2026
2 points (53.6% liked)

Technology

84490 readers
4626 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
2
Can we build our own software based firewall ? (www.fortinet.com)
submitted 2 days ago by MastKalandar@feddit.online to c/technology@lemmy.world
16 comments fedilink hide all child comments
 

Learn what a firewall is, why it is important, how it works, and firewall best practices. Learn how a firewall can ensure the data is harmless and prevent data from being stolen or compromised.

top 16 comments
sorted by: hot top controversial new old
[–] cmnybo@discuss.tchncs.de 30 points 2 days ago (4 children)

There are a number of good FOSS options like OPNsense, OpenWrt, and IPFire. That article looks like an ad for some commercial software.

[–] chris@l.roofo.cc 4 points 1 day ago

Well it is written by fortinet who has a well known commercial firewall appliance. So it probably is an ad.

[–] LeTak@feddit.org 6 points 2 days ago (3 children)

I used OpnSense, OpenWRT and PFsense. Can’t really complain for home lab. But OpenWRT should not be used as a full UTM FW. It is more of a router and AccessPoint software. OpnSense and PFsense are both good options. Where OpnSense goes more into UTM FW with Plugins IDS/IPS stuff. I used PFsense only for IP based filtering but I know it can do more than that.

[–] muusemuuse@sh.itjust.works 2 points 1 day ago (1 children)

I could never get opnsense or openWRT to perform at full speed on gigabit WAN

[–] LeTak@feddit.org 2 points 1 day ago (1 children)

I also had trouble with that. I had to build some QoS pipes and query’s in OpnSense to reach 1Gbit/s. By now I upgraded my setup with an Intel N100 and 16GB RAM. It’s more than enough for OpnSense

[–] muusemuuse@sh.itjust.works 1 points 1 day ago

I have tried on a Ryzen 5800xt virtualized and bare metal trying 3 different NICs. My firewalla purple still beats it and that infuriates me.

[–] anamethatisnt@sopuli.xyz 2 points 2 days ago (1 children)

You can run Suricata on pfsense too

[–] LeTak@feddit.org 1 points 2 days ago

Yes. Does PfSense have something like OpenCentral for stack management?

[–] MastKalandar@feddit.online 1 points 2 days ago (1 children)

Basically l'm looking for a firewall that can push out attacks...... Like spams.......

[–] LeTak@feddit.org 4 points 2 days ago

I use OpnSense with Suricata and CrowdSec for that kind of job. But nothing works out of the box in that segment. You have to learn how to setup your environment for your requirements. There a many tutorials and forums, you just have to dig around and find what you need.

[–] MastKalandar@feddit.online 3 points 2 days ago

Thanks for those links.

[–] dan@upvote.au 2 points 2 days ago* (last edited 2 days ago)

It's not FOSS, but MikroTik's RouterOS is pretty good. Decent alternative to opnsense. It's the exact same OS as on their routers and switches.

[–] solrize@lemmy.ml 2 points 1 day ago (1 children)

Iptables ?

[–] nibbler@discuss.tchncs.de 1 points 1 day ago (1 children)

Old school

[–] frongt@lemmy.zip 1 points 1 day ago (1 children)

ipchains is old school

[–] nibbler@discuss.tchncs.de 1 points 1 day ago

ipfwadm ftw