Your Firewalla box automatically discovers all devices that connect to its networks. The Firewalla App allows you to explore the details of each device.
- Device List
- Network Flows
- Device Information
Tap on the 'Devices' icon, it will bring up the device list. The list will show all the devices in the network, all device groups you've created, and all the local networks (if you are using Gold).
Here are several things you can do on the device ist:
- Search for Device: If you have many devices on your network, instead of scrolling up and down to find the one you are looking for, you can type the device name in the search bar.
- Sort Devices: Tap on the sorting icon on the top right to sort devices by various attributes. For example, you can sort devices by Top Download/ Upload to find out which device is consuming the most amount of data in the last 24 hours.
- Create a Device Group: Here is a detailed guide.
- Rename Devices: Here is a detailed guide.
Additionally, as part of the 1.53 app release (currently in Beta), the device list now shows individual live throughput while you're connected to your local network. You can read more about this feature and how to test it out in our Firewalla App Release 1.53 notes.
Tap on any Device/ Group/ Network in the list, it will bring up the detail page. It is divided into the following sections:
- Devices (on Group/ Network details)
- Network Flow
For Group and Network, if you tap Devices on top, you can view all the devices in the Network or device Group. For groups, tap Manage Device to add or remove devices.
To create a Device Group, please follow this guide.
If you are using Firewalla Gold, to manage Local Networks, here is a detailed guide.
The network flow section shows graphs of 60 minutes, 24hours, 30 days' bandwidth usage.
If you want to see the upload and download details, just tap on Network Flows under the graph, it will list out all the top uploads, downloads, and the history of what your device has been doing. You can tap any entry to see more detail. If you find any of the flows to be suspicious, you can simply tap Block to block the destination.
If the App is connected to Firewalla's local network, you can view the Live Throughput chart on the detail page of each device and network.
Note: If you are using iOS, and not able to see the live throughput chart when connected to the local network, the "Local Network" Access for Firewalla App is turned on:
- On your iOS device's home screen (iOS 14 or later), tap Settings. Privacy -> Local network.
- Turn on local network access for the Firewalla app.
The Control section shows the shortcuts of often-used device control features, and all rules applied to the device.
With a tap on the button, you can either block all Internet access on the device or partially block a certain category of Internet access (Gaming, Video, Social, Porn). Each of the buttons can be toggled between
- Block off (not block)
- Block for 1 hour (temporary block)
- Block on (permanently block)
You can also turn on/off features like safe search, VPN for the specific device in the control section. Tap on "…" to view/configure more features.
As of Firewalla App 1.44, we've introduced Application blocking to Firewalla, so you can now block applications like Facebook/Youtube/Tictok with a single tap.
Tap on "Rules" under the shortcut, it brings up all rules applied to the device or the group/network this device belongs to. You can create rules or manage the existing rules from here.
This section shows the basic information about the device/group/network. For devices, it includes Device Name, IP Address, Local Domain, MAC Address, Manufacturer and Status of a device, etc.
Firewalla creates a local domain name for each device, you can use the local domain to access your devices instead of IP address.
The local domain name can only be changed on Firewalla Gold/Purple.
FAQ: What's the difference between Local Domain and Search Domain?
In DHCP mode and Router mode(Gold), Firewalla allows you to switch the IP allocation method of a device between
- Do Not Allocate
Open the device in the device list, scroll down to find the IP Address of the device, switch to “Reserved”, you can reserve the current IP Address for this device directly or change it to other IP Addresses.
Note: Reserved IP address is static, not dynamic. It won't be changed when LAN network settings is reset.
"Status" shows if this device is currently connected to your network (Online) or not (Offline). You can tap on "Status" to set if you want to be notified about the status of this device. When enabled, Firewalla will send you an alarm every time this device is disconnected (Offline) or re-connected (Back Online) to your network. This feature is disabled by default.
With the 1.52 app release, you can now send a Wake-On-LAN (WOL) Message to a Device directly from the Firewalla App. Just navigate to a device's detail page, scroll down to the bottom, tap Status, and tap Wake Up. Read more about this feature in our 1.52 App Release Notes.
Many of you are familiar with the open ports button that shows external ports. We also have another feature called Device Port Scan, enabled by
- tapping on the "+" button on the main screen
- tap on "Device Port Scan"
This will actively scan open ports on your LAN. You can view the "Ports" under the device detail.
Two types of ports will be listed here:
- Ports Forwarded: These are ports forwarded to the external either by you (manually) or by UPnP (automatically).
- Ports Not Forwarded: These are ports the device is "listening" on, but not forwarded on Firewalla, found by Device Port Scan.
For example, if Port 22 is found in the "Port sNot Forwarded" list, it means the device will respond to requests sent to its port 22 only from inside of your network, any requests from outside of your network will not be able to reach this device because the port 22 is not forwarded to the external.
Open Ports on the LAN are often much lesser risky than those from the outside, most devices will require these ports to operate, hence, not always an issue to have ports open. These ports are opened by the device on your LAN network, unless they are port forwarded, these ports are not seen by the WAN side.
In Router mode or DHCP mode, you can tap Add Port Forwarding to add forward ports on this device to any external port. Here is a general guide on How to set up port forwardings in DHCP mode.
If you using Firewalla Gold, Port forwardings can be managed under Network -> NAT Settings as well.
Main screen shortcut:
As of App release 1.44, you can add your most frequently used devices, groups, networks to the box main screen. It allows you to block/unblock internet access, or dive into the detail with one tap.
Up to 3 devices/ groups/ networks can be added.
In addition, if a device is recently viewed or edited, it will show up on the main screen as "recent" for your convenience.
Monitoring and Emergency Access
The Monitoring button is used to control whether the device is monitored by Firewalla or not. When turned off, it means no traffic can be monitored, and no connection can be blocked by Firewalla.
The Emergency Access button is used to control whether a device's internet access is controlled by Firewalla. When turned on, it means Firewalla can no longer block you from accessing any site.
Scheduled Emergency Access:
Similar to pausing rules, emergency access can be turned on for 15 minutes, 1 hour, always, and more importantly, any custom time you'd prefer. At the end of the specified period, Emergency Access will automatically be turned back off. No more forgetting to turn off Emergency access.
Tap on "Delete This Device" on the device detail page to delete a device. You may delete a device when it's no longer in your network, and you want to remove all information about it.
Be aware that Firewalla will discover the device as new when it connects to your network next time.