Hello from a pfSense user

Started by chudak, August 28, 2025, 07:38:18 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
August 28, 2025, 07:38:18 PM
Hello

I've been on pfS CE and plus for last 8 years.
Due to some technical issues I am considering to update my h/w (bought Glovary 4 port box) and also thinking maybe it's time to move to OPNSense.

Can someone share experiences and clues how easy/difficult this move may be?

TIA
August 28, 2025, 10:09:18 PM #1 Last Edit: August 28, 2025, 10:26:26 PM by coffeecup25
Quote from: chudak on August 28, 2025, 07:38:18 PMHello

I've been on pfS CE and plus for last 8 years.
Due to some technical issues I am considering to update my h/w (bought Glovary 4 port box) and also thinking maybe it's time to move to OPNSense.

Can someone share experiences and clues how easy/difficult this move may be?

TIA

I did this recently. Actually I now go back and forth because 1 is in use while the other is a lab that later goes back into use.

OPNsense has everything in a different place. That was the biggest problem. Once you find what you want it mostly works the same.

ISC is also being depreciated in OPNsense. I settled on KIA as it seemed better for my purpose. The only problem with KIA is if you use an override DNS server. This would occur if you used pihole or Adguard Home on a 24/7 server.  .You have to UNCHECK a box for the entry field to appear. I don't remember the name of the box at this time.

I also use Adguard Home on OPNsense. It works great. With one LAN the setup is fairly easy. With 2 LANS you need to edit AdguardHome.yaml for Adguard Home to see both subnets. Normal unbound works fine in this configuration if AdguardHome.yaml is edited.

I also have AdguardHome working in pfSense on the same box. I found some instructions from someone in India that covered it.
August 29, 2025, 03:36:13 PM #2
You'll find open sense UI superior to that of pFS. I believe you can migrate your config but do not hold me to it. Some XML transform may be involved. I'll let more knowledgeable members correct me on this.
August 29, 2025, 06:35:37 PM #3
User and passwords don't import well because the storage was changed on the other end for no good reason. ;)

In general we're way past easy import, but if you must try via partial import section by section.

And of course: welcome!  :)


Cheers,
Franco
August 30, 2025, 10:19:48 PM #4
I'm in a similar position, as for import, what I've found is manual is best.
Browser with pfSense gui up, Browser with OpnSense gui up.
Walk through the sections and configure things.
The OpnSense GUI is different from pfSense but after using, I think the layout is more logical on OpnSense.
The biggest problem I had was enabling DHCP Server on LAN interface;  I couldn't get the DnsMasq/KEA working, but ISC DHCP worked fine.  I know the problem is "me" not the software, so grain of salt.

I'd like logout to be a bit more global, but there are a few threads here that imply future versions of OpnSense will have it changed, so I can wait.

One of the items on my "to try" list is OpnSense on NetGate hardware.
Print
Go Up Pages1
User actions