I've finally had a chance to do some testing of V7 (all production sites still on V6). Here is a list of things I would like changed:
1. NTP server can only synchronize to a single host. Any real NTP server should use at least 2 upstream NTP servers and preferably 3 or more, especially if you are going to rely on Astaro to serve your LAN clients.
2. When managing Definitions, if you search for something, after adding/deleting a definition, you lose your search. This is highly annoying if you have a couple dozen items to delete or add, you constantly have to research.
Edit: This appears to be OK now as of 7.104 when editing definitions, but packet filter rules still don't do this.
3. You can't upload your own SSL certificate. Frankly, I find it mind-boggling that you can't do this with a product that calls itself a "Security Gateway". This has long been an issue with me (not just with ASG, but ACC as well, yes, we have opened trouble tickets on this one).
4. Being able to only view 10 definitions at a time is a severe limitation. This makes viewing any complex set of definitions or packet filter rules very difficult. I very frequently use the "View All" function in V6 and am sad to see this go.
5. No more network groups of network groups. This makes migrating from V6 a pain and is also makes managing complex rulesets much more cumbersome.
6. Limited support for multi WAN configurations. Currently Astaro only supports basic policy routing. There are dozens of multi WAN routers out there which are fairly inexpensive. You can do it with pfSense. But having to purchase / manage another device do perform this task is a pain!
That's all I can think of for now. What do you guys think?
This thread was automatically locked due to age.
