Ответ: Что выбрать?
You must be registered for see links
pfSense is a open source firewall derived from the m0n0wall operating system platform with radically different goals such as using OpenBSD's ported Packet Filter, FreeBSD 6.1 ALTQ (HFSC) for excellent packet queueing and finally an integrated package management system for extending the environment with new features.
Minimum hardware requirements
All platforms:
128 megabytes of ram
Embedded:
128 megabyte compact flash card
Full installation:
2gb hard drive or larger
LiveCD:
USB Keychain for configuration storage
Features:
* FreeBSD 6.1 - CURRENT with ALTQ
* Wireless a/b/g wpa_supplicant, turbo, WEP, WPA-E/PSK and WPA2 (TKIP)
* Incoming load balancing pools
* PPPoE Server
* Themes
* setup wizard using xml -> web gui toolkit
* package xml -> web gui toolkit. RAPIDLY create packages and GUI's
* rebootless changes of settings
* multiple WAN Support
* outgoing load balancing pool
* pf (openbsd's packet filter)
* CARP - for failover and clustersyncing (rules, trafficshaper, nat, IPSEC SAs...)
* failovercapable DHCP-Server with advanced settings (specify gateway, DNS, WINS)
* advanced support for wireless devices (including WEP, WPA, HostAP-mode, hardware-encryption if supported by driver, mac-filtering, hide SSID, ...) with by freeBSD6 supported wireless devices (atheros recommended for full functionality)
* Systemstatus with realtimegraphs including SWAP usage monitor
* ALTQ traffic shaping with integrated magic shaper wizard
* Queuegraphs for Trafficshaper
* Edit file option
* Execute command now in menu
* SSH Support
* Console support on COM1
* FTP-Proxy
* enhanced ALIAS-system
* enhanced configuration-system featuring a configuration history and partial config down-/uploads
* a lot of small "helpers" that make admins life easier
Packages:
o pfflowd - converting PF-status-massages to Cisco NetFlow-Datagrams
o PFStat - Graphing
o NTOP - Enhanced network history data
o STunnel - wrap standard ports with SSL
o Squid Transparent Proxy
o arpwatch - watch ethernet/ip-adress-pairings
o assp - Anti-Spam-Proxy
o freeradius - Radiusserver
o mtr - enhanced traceroute
o nmap - networkscanner for security auditing
o siproxd - proxy/masquerading for SIP-protocol
o spamd - fake SMTP-Server as Spam-Tarpit
o iperf - bandwidth-measuring
o netio - bandwidth-measuring
m0n0wall base features
* web interface (supports SSL)
* serial console interface for recovery
o set LAN IP address
o reset password
o restore factory defaults
o reboot system
* wireless support (access point with PRISM-II/2.5/3 cards, BSS/IBSS with other cards including Cisco)
* captive portal
* 802.1Q VLAN support
* stateful packet filtering
* block/pass rules
* logging
* NAT/PAT (including 1:1)
* DHCP client, PPPoE, PPTP and Telstra BigPond Cable support on the WAN interface
* IPsec VPN tunnels (IKE; with support for hardware crypto cards and mobile clients)
* PPTP VPN (with RADIUS server support)
* static routes
* DHCP server
* caching DNS forwarder
* DynDNS client
* SNMP agent
* traffic shaper
* SVG-based traffic grapher
* firmware upgrade through the web browser
* Wake on LAN client
* configuration backup/restore
* host/network aliases
You must be registered for see links
. А так и гентуу покатит . У меня на с333 с 96 метрами рамы стоит вообще трустикс 
