Your Firewalla automatically discovers all devices that connect to its network. The Firewalla App allows you to explore the details of each device.
Device List
Tap on the 'Devices' icon, and it will bring up the device list. The list will show all the devices in the network, all device groups you've created, and all the local networks (if you are using Gold, Purple, or Orange).
In App 1.68 or later, the Devices button will be located on the new Navigation bar at the bottom of your Firewalla's home screen.
From the devices list, you can:
- Search for Device: If you have many devices on your network, instead of scrolling up and down to find the one you are looking for, you can type the device name in the search bar.
- Create a Device Group: Here is a detailed guide.
- Rename Devices: Here is a detailed guide.
Device Status Dot
Each device will have a dot to indicate its status, depending on the color:
- Green: The device is online and monitored
- Yellow: The device is online, but unmonitored (tap into the device to turn on/off Monitoring)
- Gray: The device is offline
Device Control Icons
When you apply certain features or block specific categories, each device (or group/user) will display an icon on the Device List to indicate which controls are applied.
Each icon is defined below:
Icon |
Block |
Icon |
Feature |
|---|---|---|---|
Internet |
|||
Gaming |
|||
Social |
|||
Video |
|||
Porn |
|||
Device Active Protect |
|||
View Options
If you tap on the icon in the top right corner of the page, you can see all the view options for the devices list. From here, you can:
See Devices with Reserved IPs
Like any other router, Firewalla allows you to reserve IP addresses for devices. Devices with reserved IP addresses will have a small pin next to their name on the Devices list. Furthermore, if you tap Show Devices with Reserved IP from the View Options menu, you will find all devices with reserved IPs listed together.
See Past Devices
To prevent too many devices from appearing on your box, Firewalla automatically hides devices that have been offline for more than seven days. You can reveal all the hidden devices by tapping Show Past Devices from the View Options menu.
Your Past Devices will appear at the bottom of your devices list, and from there, you can update their settings, migrate them to another box, or delete them completely.
Group by Device Type
Tap Group By Device Type from the View Options menu to list devices together by type, allowing you to quickly check if any of your security devices are down, or see what the personal devices on your network (phones, laptops, tablets, etc) were doing last.
Note that with Firewalla Wi-Fi (via Firewalla AP7 or Firewalla Orange), you may have other visibility options available.
Sort Devices
Tap on the sorting icon on the top right to sort devices by various attributes. For example, you can sort devices by Top Download/ Upload to find out which device is consuming the most amount of data in the last 24 hours.
Note that with Firewalla Wi-Fi (via Firewalla AP7 or Firewalla Orange), you may have other visibility options available.
The device list also shows individual live throughput while you're connected to your local network. You can watch our video tutorial for step-by-step instructions.
Device Details
Tap on any Device/Group/Network in the list, and it will bring up the detail page. It is divided into the following sections:
Devices (on Group/User/Network details)
For each Group/User/Network Detail Page, if you tap Devices on top, you can view all the devices in the group/network. For groups/Users, tap Manage Device to add or remove devices.
To create a Device Group, please follow this guide.
If you are using Firewalla Gold, Purple, or Orange series boxes, here is a guide on the Network Manager.
Network Flows
WAN Network Flows
The network flow section shows graphs of 60 minutes, 24 hours, or 30 days' bandwidth usage.
If you want to see the upload and download details, just tap on Network Flows under the graph, which lists all the top uploads, downloads, and the history of what your device has been doing. You can tap any entry to see more details. If you find any of the flows to be suspicious, you can simply tap Block to block the destination or add a Route for that flow.
To focus on only the important flows, you can Exclude some traffic from view, such as:
- Inbound Flows: Flows that are coming from outside. These are typically blocked.
- Blocked Flows: Flows that have been intercepted by Firewalla.
- System Noise: Background traffic on your OS system and commonly seen apps (including ads, tracking, telemetry, software updates, analytics, NTP, and public cloud services). Excluding system noise will help you focus on important activities within your network.
- Specific Target: Flows to or from a certain target.
You can also sort your flow history by a set of common categories: Gaming, Social, Video, Porn, and VPN. Simply tap one of these filters to apply it to your list of blocked flows. See our tutorial video for step-by-step instructions.
If the App is connected to Firewalla's local network, you can view the Live Throughput chart on the detail page of each device and network.
Note: If you are using iOS, and not able to see the live throughput chart when connected to the local network, the "Local Network" Access for Firewalla App is turned on:
- On your iOS device's home screen (iOS 14 or later), tap Settings > Privacy & Security > Local Network
- Turn on local network access for the Firewalla app.
Local Network Flows
The Local Flows section includes stats such as Data Transferred and the number of Local Flows for the past 24 hours.
Local flows are supported when:
- Your Firewalla unit is in router mode and has more than one local network configured, or
- You have Firewalla Wi-Fi (via Firewalla AP7 or Firewalla Orange).
Tap the chart to see which device sends or receives the most data to or from other devices on your network.
Firewalla records local flows when:
- Traffic flows between devices on different LANs or VLANs, or
- Traffic flows between wireless devices connected to the Firewalla AP7, even if they're on the same LAN or VLAN.
Local flows are not displayed when:
- Traffic is between wired devices on the same switch and passing internally through it, or
- Traffic is between wireless devices connected to non-Firewalla access points.
Learn more about Local Network Flows.
Control
The Control section shows the shortcuts of often-used device control features and all rules applied to the device.
Control Buttons
With a tap on the button, you can either block all Internet access on the device or partially block a certain category of Internet access (e.g., Gaming, Video, Social, Porn, Facebook, Youtube, TikTok, etc). These always accurately reflect the status of the target, allowing you to easily determine whether a target is blocked on a certain device, group, user, or network.
Depending on whether a target is being actively blocked, you can use the control buttons to either block or pause a block for 30 minutes, 1 hour, a custom amount of time, or permanently.
You can also turn on/off features like Safe Search, blocking features such as Ad Block, and VPN for the device in the control section. Tap on "…" to view/configure more features.
Rules
Tap on "Rules" under the shortcut, which brings up all rules applied to the device or the group/network this device belongs to. You can create rules or manage the existing rules from here.
Information
This section shows the basic information about the device/group/network. For devices, it includes the device's Name, Notes, IP Address, Local Domain, MAC Address, Manufacturer, and Status, etc.
Device Type
Firewalla can identify the type of devices in your network more quickly. You can also change your device's device type if Firewalla's identification isn't correct. See our video tutorial for detailed instructions.
Local Domain
Firewalla creates a local domain name for each device; you can use the local domain as a more "friendly" way to access your devices instead of IP address.
The local domain name can only be changed on Firewalla Gold/Purple/Orange series boxes.
FAQ: What's the difference between Local Domain and Search Domain?
IP Allocation
In DHCP mode and Router mode on Gold and Purple series boxes, Firewalla allows you to switch the IP allocation method of a device between:
- Dynamic: Firewalla will assign a random address within the IP range of the network the device joins.
- Reserved: The device will always get a static address you choose in the Firewalla App.
- Do Not Allocate: Firewalla will not assign an IP address. In this case, you must set the IP on the device itself.
To change this setting, open the device in the device list and scroll down to find the IP Address of the device.
Device Status & Wake-On-LAN (WOL)
Status shows if this device is currently connected to your network (Online) or not (Offline). You can tap on Status to change notifications about the status of the device.
- When enabled, Firewalla will send you an alarm every time this device is disconnected (Offline) or re-connected (Back Online) to your network.
- These notifications are disabled by default.
You can also send a Wake-On-LAN (WOL) Message to a Device directly from the Firewalla App. Just tap Wake Up from the Status page. Watch a video tutorial for step-by-step instructions.
Ports
Firewalla's Scan feature can inspect your network's ports and see if they can be reached from the Internet. From the Scan page, you can also enable Device Port Scan under the Device Open Ports to actively scan for open ports on internal devices.
You can also view the Ports under the device detail. Two types of ports will be listed here:
- Ports Forwarded: These are ports forwarded to the external either by you (manually) or by UPnP (automatically).
-
Ports Not Forwarded: These are ports the device is "listening" on, but not forwarded on Firewalla, found by Device Port Scan.
- For example, if Port 22 is found in the "Ports Not Forwarded" list, it means the device will respond to requests sent to its port 22 only from inside your network.
- Requests from outside your network will not reach this device because port 22 is not forwarded to the device.
Open Ports on the LAN are often much less risky than those from the outside. Most devices will require these ports to operate; hence, having ports open on the LAN is not necessarily a concern. These ports are opened by the device on your LAN network; unless they are port forwarded, these ports are not accessible on the WAN side.
In Router mode, you can tap Add Port Forwarding to add forward ports on this device to any external port. Port forwards can be managed under Network > NAT Settings as well. Learn how to create port forwarding on Gold/Purple/Orange series.
Main screen shortcut
The Main Screen Shortcut allows you to add your most frequently used devices, groups, and networks to the Firewalla main screen. This allows you to block/unblock internet access, or dive into the device detail with one tap.
Up to three devices, Groups, Users, or networks can be added.
Monitoring and Emergency Access
The Emergency Access button is used to control whether a device's internet access is controlled by Firewalla. When turned on, it means Firewalla can no longer block you from accessing any site.
The Monitoring button is used to control whether the device is monitored by Firewalla or not. When turned off, no traffic to that device can be monitored, flows will not be recorded, and no connection can be blocked by Firewalla.
Scheduled Emergency Access:
Similar to pausing rules, emergency access can be enabled temporarily or for any custom time you'd prefer. At the end of the specified period, Emergency Access will automatically be turned back off, so that you don't need to worry about remembering to turn it back on.
Delete Device
Tap Delete This Device on the device detail page to delete a device. You may delete a device when it's no longer in your network, and you want to remove all information about it.
Be aware that Firewalla will discover the device as new when it connects to your network next time.
Comments
0 comments
Please sign in to leave a comment.