OpenBSD people ... I have a question as I am preparing an article for the next episode about OpenBSD in general and PF...
Just exactly/approx. how good of a firewall You can build out of OpenBSD? Should I simply think of pFsense or it can go way beyond that (more secure, more features, IDS/IPS)?
@viktormadarasz pf is a stateful packet filter. Pretty versatile, with an easily readable configuration language, but still a packet filter. It won't give you any fancy "NG" firewall features or much in the way of IDS/IPS - though some of the statistics-based options like max-src-conn-rate can take you in that direction.
Setting up clusters is not too hard, and IPSEC works well enough.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!