My school has two campuses. One uses a pfSense firewall and one uses a Ubiquiti UDM Pro firewall.
With the pfSense, it seems that random services don’t work based on certain ports being blocked. We’ve had to open up ports for sending emails on iPhones, using live chat support, making phone calls over wifi, and various other items.
With UDM Pro, most things just seem to be open and work out of the box, more like how a consumer router would work.
I’m guessing there are different default starting policies between the two firewalls. I’d rather have things fairly open, so my users don’t keep getting blocked randomly. I do want to keep security in mind, but users take their laptops home all the time so I’m already taking the risk of them connecting to any network they want.
How would you handle this?