I looked into opnsense when some others moved over around the time plus was been planned.
The problem for me is there is differences, its not feature equivalent.
Ultimately two things were a blocker for me on the migration.
As you guys know I made a wiki guide which centres around the system patches package, from what I can observe there is no such package on opnsense, which means anything I dont like I cannot easily patch around it, all patch management is manual.
The second issue snowballs it because opnsense has fairly frequent updates, after each update I have to repatch manually.
There is a fair amount of things I would need to patch as well, as opnsense does some things differently, and some things it cannot do at all, without me implementing the feature itself. Without a system patches package it just makes it too hard to work with. Thats why I stayed on pfSense.
I also do feel there has been a over reaction on CE, as some are acting like its dead, not maintained etc. when its still working as it was and still gets fixes (Ronski's issue I reported and was patched quickly). Its a firewall, it doesn't need major updates regularly like a desktop OS. So that's why I stuck with the CE, the plus idea just never made sense to me. People were jumping over when it was practically the same code but having to jump through weird licensing steps whilst CE is a bog standard download and install process. As it turns out CE is still here, whilst plus home+lab is now gone.
If a system patches package was added to opnsense it would be a game changer, as I currently have just under 20 patches I use on pfSense ( I didn't post the more complex one's). I also would have to accept a more rapid update model which I am not keen on for my firewall.
I do like the more modern opnsense interface though especially the traffic graphs. It's dashboard also seems to use way less resources vs pfSense dashboard.
