I'm very angry with almost all firewall distros, because I think creators are sc*mbags who advertise their product as free but set their sights on selling service by making the webui so counter-intuitive that it would require a diploma to administrate properly or the user has to buy service or help from the company.
if anything I found OPNSense's interface to be even more counter-intuitive than others, although the webGUI of OPNSense was a lot nice to look at. Firstly, I couldn't find how to view connections, it was hidden under Firewall -> Logs -> something else. Why the f*ck can't you idiots make these easy to find?
I was banned until 20 January 3021
I think they developed a grudge on me because of these things and hacked my IP Fire to make rules ineffective.
Well, to some degree that is not to aggravate users. Networking and security come from computer science and have been considered by sales forever as "products in need of explanation". This is where you can't skip the handbook/documentation unless you know what you are doing.
IPFire is nice in this regard as it tries to break down a lot. The possibilities of OPNsense will just add to the fact of being overwhelmed more than required maybe.Cheers,Franco
Are you serious?
I'm not really surprised and I would really appreciate a ban here, too. Do you think someone will help you in a support forum driven mostly by the community if you insult everyone in the first post?
I think it's merely because of your incompetence and ignorance of manuals.
I'm serious, you ask a Phd computer science student specializing in networking and security, where they'd expect to see connections and under what heading and they'll tell you they would expect it to be under connections or traffic, not in states, or logs and live view, etc. It is only firewall distros which put them under unknown labels because making it easy will not allow them to sell service.
A product must be easy to use and understand, even then if it is impossible to configure and administrate, a support forum driven by community will be appreciated. Yes, I think I was justified by insulting everyone in my OP, you people are the ones who is making OPNSense hard to use, you people have been using OPNSense from many years, wouldn't you have encountered these problems or thought it was difficult to use? I'm sure some of you did, they could have given feedback and improved but no, you supported the counter-intuitive interfaces and labels. You'd support a ban on me because you don't want to hear what kind of sc*mbags firewall distros and community you are?
Not because of my incompetence, you can view the attached image and see the rules I created, they are simple and straightforward, I've applied them and rebooted and they are not working, earlier they were working, what does it say? Before firewall distros, I've application firewalls in Windows, so I have experience with creating rules, you'd like to make yourselves feel like geniuses over using simple concepts like IP addresses, ports and zones.
I don't think many complicated concepts are involved to administrate firewall, creation of rules mostly involve IP addresses, Ports and Zones. Not difficult for people to understand and apply
I couldn't get it to work, I think I typed the correct IP address for LAN interface, gateway and setup a DHCP server to issue IP addresses on LAN, but the client wasn't getting any IP addresses.
I don't know if this is trolling, but I couldn't stop laughing at cognitive dissonance here:
and then:My uncle had a dual-compressor bi-turbo high-performance BMW - that NEVER worked well. He spent most of his time under the bonnet, tinkering with advanced car electronics, screaming how car engines are actually very simple: you squirt some gas in a chamber, you ignite the gas, you turn the shaft. Not difficult for people to understand and apply.Except it never worked. He didn't understand timing belts. He didn't understand turbo. He didn't understand anything that makes a modern car engine work. Yet, it was all BMW's fault. Greedy Germans made car engines stupidly complex so my uncle with rudimentary understanding just couldn't figure them out and was ripping components he didn't understand.People can either be consumers or (semi) professionals. There are products targeting each group.Don't be like my uncle, unless you enjoy being frustrated when consumer-level knowledge clashes with professional-level products. Because stuff just won't work. And you will blame everyone else but yourself.
It's just a place you need to know. Nothing to rant about user interface being counter-intuitive.
No, I'm not supporting a ban for constructive criticism. I'm supporting it because of your bad attitude and insults. A product needs to work in the first place. Whether a WebGui is intuitive or not is not important. If you ask 10 people about an user-interface you'll get 12 opinions about it. I don't have any problems with the UI. But I'm reading docs when I'm unable to find what I'm looking for. No UI is perfect. Every Firewall has its own philosophy about how to guide the user. If you're not feeling comfortable, that's fine, go on and try another one. Your list is missing Sophos XG. It has a free version, too.
In this attached image I can't see anything useful to decide if this should work or not. I'm not using IPFire. Maybe you misconfigured something at another screen. Using pfSense or OPNsense was always a pleasure for me. Never had an issue installing them or getting them to work with a basic setup. Problems came with more complex setups and then this forum was a big help for me. There is a lot of competence in this forums. But most of them are helping in their freetime based on good will. So insulting people won't help you here.
No, configuration of firewall is not equivalent to driving a car - it is the equivalent of SERVICING a car.
When firewall works, you do not press pedals, hold the steering wheel or tinker with it. All the engineering efforts are channeled into tuning, optimizing, enriching, and updating the CORE engine. User-serviceable interfaces are really low on the priority. (check VyOS and their CLI-only interface and tell us how do you feel about them...)You think that a specialized professional firewall needs to be as user-friendly as all-in-one consumer boxes that ISPs give away for free. Well, they are not. Pro-level Wifi GUI, pro-level switching GUI, pro-level Synology GUI - neither of them is meant to be opened daily and used by non-experts.Why I mentioned BMW? Besides the fact that my uncle did have BMW, they use the same product mentality that you are complaining about: all focus goes into top-level performance of the engine, but when you need service, BMW absolutely expects you to take the car to professionals and not mess with it on your own. "No user-serviceable parts inside" - applies both to high-performance cars and high-performance firewalls.