Defensive performance comparison of firewall systems

Abstract

This paper introduces the attack detection performance comparison between two famous firewall systems, Endian and pfSense. The non-paid unrestricted versions with basic default configuration were set up to be attacked from the outside network. The attack scenarios included port scanning, ping of death, flooding, and password attack in different conditions. The results showed that pfSense performance was better in overall. Basic setup of Endian could detect more attacking categories but fewer occurrences. Therefore, Endian could be suitable for non-commercial, home, small enterprise with less important network and data. On the other hand, pfSense could be worth using in a wider variety of organization, however, with some configuration modification.