This page is a constructive area to point out significant limitations in pfSense. All software has limitations, we're just more up front than others about them and put them out here in hopes people will help contribute to resolve them. This list has grown much shorter with each release, and 1.3 should remove most of these remaining things. More information about limitations can be found on www.pfsense.org on the Features page.
Current items/areas that suck:
- PPTP issues - Cannot have more than 1 pptp sessions outbound through nat at the same time to the same server. This only applies to outbound sessions to a single PPTP server. You can connect a million clients to a million different PPTP servers, but only one client at a time to the same PPTP server. If you have the PPTP server enabled on pfsense you cannot connect out to any PPTP server on the Internet. Fix in progress for 2.0.
- FTP on multi-wans do not work w/ the FTP helper. Fixed in 2.0.
- Higher layer capabilities - no existing ability for any layers higher than L4. Application layer inspection would be a substantial improvement. Fixed in 2.0.
- The build scripts are a big mess. Maybe we should start looking forward to 3.0 and improve the build system to make it more elegant, maybe start a Git branch to follow FreeBSD SVN, and simplify, simplify, simplify. The builder menu is great, but the stuff behind it should be as nice.
Have feature requests? Post them at http://redmine.pfsense.org