LOL. That's hilarious. I can name two decent sized local biz's (One of which being a major University) that swear by FOSS. Are you a PHB?No Offense to Steven, but you are running business, do you really want your sites security/reputation to be at the mercy of an Open Source Community? All of the businesses that I do work for dont use FOSS based UTMs (IPfire, pfsesne, etc.) They use Cisco, Juniper, Fortinet, Arbor Networks SonicWall, because when things go wrong and they eventually will, you have a support contract, and someone to call that can fix the issue.
The reason you need a software contract, is because they lock you out of your own appliance, and make things so absurdly complex and not user friendly, that you'd be crazy to buy one of their magic black boxes without an agreement.
Have you ever admin'd a FW? It's really not that difficult, and software such as OpenBSD (or Free) and PF are rock solid, and bullet proof. You aren't going to have a remote kernel exploit, or ssh backdoors to worry about (Thanks Barracuda!) Running Open/FreeBSD with CARP is silly easy to admin and debug, what with the system being well documented and open source. It is highly unlikely in a standard use case that you're going to run into some obscure bug that requires custom code to fix, and most of the time the pf devs are pretty good about getting odd issues sorted.
Having personally admin'd Fortitrash, I couldn't recommend it to anyone with a straight face.
If you are having to log into your router/fw on a regular basis, you're doing it wrong.
At home, I'm lazy and currently run a peplink balance 580. I've spun up a pfsense 2.x vm and plan on migrating to that for my Multi-wan setup.
Last edited: