A year ago I swapped my pfSense box for a MikroTik at the edge, mostly out of curiosity and partly because the little hEX runs on a few watts rather than the small space heater pfSense lived on. Twelve months in, here is the honest scorecard.
The good: it has not fallen over once. RouterOS is dense and the configuration is terse, but once you stop fighting it and learn the firewall chains properly it is genuinely powerful for the money. VLANs, a sane queue tree for traffic shaping, BGP if I ever want it, all in a box smaller than a paperback. The CLI is consistent enough that I now reach for it before Winbox.
The bad: the learning curve is real and the documentation assumes you already know. pfSense holds your hand; MikroTik hands you a loaded firewall and trusts you not to lock yourself out, which I did, twice, in the first month. And I miss the pfSense package ecosystem. pfBlocker and the easy Suricata integration were genuinely nice, and replicating that on RouterOS is more manual.
Would I switch back? No. The power draw alone justifies it, and I have learned more about how routing actually works in a year of MikroTik than in three years of clicking pfSense's web UI. But I would not recommend it to someone who wants their firewall to be boring, and there is no shame in wanting a boring firewall.