Firewalla is able to block any device's internet access either at IP address level, site domain level, or certain category of sites. When you block something, a rule will be generated under "Rules".
*NOTE. We redesigned the interface about "Allowed" rules in the latest release of Firewalla app. All the "Allowed" rules are moved from "Rules"-> "Allowed" into "Specific Setting" -> "Mute" under each alarm category. This is a correction of our old confusing logic -- "Allowed" rules are really not explicitly allowing any domain, they just prevent the system from generating any alarm on it, since all traffic are allowed by default.
Create a Rule:
Tap on the "+" on the top right of "Blocking Rules" Page will bring up the adding a new blocking rule UI. To add a new rule, you need to specify three things:
- Block target (what to block)
You can set to block any Domain/IP address, a certain category of internet access, or all internet access.
- Apply to (taking affect on which device)
A blocking rule can be applied to either all devices or one specific device in your network, a selected group of devices is not supported yet.
- Schedule (duration of the blocking)
The active time of a blocking rule can be set as "Always" (never expires unless deleted), "One-Time Only" (expires after configured time), or scheduled to be active during a certain period in every day or certain days throughout every week.
Demo of Scheduling a blocking rule:
All category-based blocking rule set is automatically managed by Firewalla cloud's intelligent AI agent. The categories include:
If you have a rule that blocks "All Video sites", you can tap on the block target to view all destinations in this set that has been blocked, you can remove any single destination from this rule set.
For example, you've blocked "All Video Sites" for your phone, yet iTune Apple store is in the "All video sites" rule set, and it caused your device not able to access iTune Apple store. You can easily remove this destination from all video sites.
Delete a Rule:
All blocking rules can be viewed or deleted, yet the latest release (1.29) has not supported modifying any existing rules.
*NOTE. We have noticed that in some cases, user maybe overly cautious about alarms, which results in blocking websites that shouldn't be blocked. In case some of your normal internet access is blocked, check your rules first.
In addition of manually creating rules from Rules UI, we also provide easy ways of creating rules from device UI and alarm UI:
Blocking from Devices UI:
1. Enter the device list, tap on the device that you want to control.
2. Locate the "control" section and tap on what to block.
You can either block all internet access on this device or only block certain category of internet access (e.g. Games, Social, Video activities). Each of the buttons can be toggled between "Block off" (not block), "Block for 1 hour" (temporary block), "Block on" (permanently block).
All blocking rules regarding this device will appear in "More Rules" under the device detail page. You can also create additional rules on this device by tapping the "+" icon on the top right. The rest of the process is the same as creating rules from the "Rules" page.
Blocking from Alarms UI:
Under the alarm that you want to Block, tap "Block" button. Determine whether to block for one time only, a specific domain, or a certain kind of activity, then tap on the choice.
By blocking access, Firewalla will create a blocking rule to the little box for determining how to handle similar activities when it shows up again, active time of the rule will be set as always, you can manage it in "Rules" page.