you are not an average user anymore
The skill to setup PFsense with Snort is out of reach of a basic home user.
Frankly setting up pfSense (which is an enterprise grade firewall) is certainly not for the general home user. But people, mainly IT pros, with clear networking concepts and familiarity with basic Linux/FreeBSD commands can certainly configure the firewall. There is plenty of help available on the 'net and on various IT forums including one from the publishers of pfSense.
pfSense is a pretty complex software and can be deployed by SOHO, SME or even enterprises in nearly any networking scenario. I have a dual WAN setup, with IDS/IPS, domain/IP range blocking, a RADIUS server for Wi-Fi client authentication plus a few more add-ons. All this and I have BARELY scratched the surface!
The best part of all? It's free, has excellent support (paid support is expensive) but one can find plenty of help on the Internet. I also dual boot OPNSense (
OPNsense® - Open Source Firewall - High-end Security Made Easy™ , another open source enterprise grade firewall) and do comparisons once in a while. But pfSense gets my vote every time.
With pfSense the hardware requirement is minimal. The firewall software, OS (FreeBSD) & all add on packages are free. It is inexpensive to provision and setup. You could use an old clunker of a PC, even a Core 2 Duo for e.g., with at least 2 LAN NICs. I run it on a dedicated appliance that I purchased from Netgate the publishers of pfSense. This appliance came without pfSense preinstalled. A DIY install saved me US $150 (why not?) but that option is not available any longer. All current pfSense hardware now comes with pfSense pre-configured and optimized making it easier for the end user to setup and deploy. A purchase also funds development of the open source software.
EDIT:
@Umbra, I am sure you already know all this but I just gave an elaborate reply for the information of other members who may be interested.
