19 May Firewall Comparison
pfSense vs Untangle vs Ubiquiti
pfSense®, Untangle and Ubiquiti firewalls are among the most popular firewall used by SMEs and Enterprises. The table below should help understand the technical and commercial reasons why one solution may be chosen over the other.
Table based on the comparison published by: Lawrence Systems
VPN options (OpenVPN, IPSec and L2TP) are extensive in pfSense and Untangle but rather basic on the Ubiquiti USG, UDM and EdgeRouters. Ubiquiti have some known interoperability issue with VPN from other vendors. Untangle requires additional fees to enable some of the VPN options.
Policy routing is only truly available in pfSense and Untangle although it is possible to configure some level of policy routing on Ubiquiti USG and EdgeRouters via command line.
IDS/IPS is very advanced in pfSense and Untangle with slightly different way to fine-tune the configuration. Ubiquiti only have basic on/off switch with no way to granularly control how threats are dealt with in the background.
Filtering is where Untangle really shine. Web Filtering as well as DNS and GeoIP are easily configurable and manageable on Untangle compared to pfSense. These feature are almost completely absent in the Ubiquiti USG and Edge Routers.
WAN failover and Load balancing are extensive on both pfSense and Untangle but they are a paid feature with Untangle.
Overall, pfSense is the most complete solution in terms of features included even though it currently lack of a centralised management interface.
The Ubiquiti firewall offering is often appealing being well integrated within the Ubiquiti dashboard and it is often a solution of choice when only basic firewall functionalities are required. Untangle is often chosen when filtering is a key requirement for the design of a security solution.