10/14/2019 - Released production version of Firewalla Box: version 1.965
10/10/2019 - Released production version of Firewalla iOS App: version 1.32(15) or greater
10/10/2019 - Released production version of Firewalla Android App: version 2.44 o greater
New Features:
1) Device Network Flow summary
Able to show 30 days and 60 minutes network flow summary for each device.
2) Blocking by IP Range, Port, Region/Geo Block (Beta)
Create Blocking Rules supports Creating rules to block Region (Beta), IP Range, Remote Port.
Geo-IP Filtering / Block Region (Beta): Tap on Rules -> "+" create a new rule -> Set a target -> Region -> Select a Region, then select a device to apply the blocking.
* Due to performance issues, the Region blocking will initially only be available on Firewalla Blue and limited to only 3 countries max. This limitation may change in the future.
* Geo IP Filtering only work with IP addresses. For example, if you have a domain name foo.usa, and foo.usa points to an IP address in Canada, then you block region USA, foo.usa will not be blocked, since its IP is in Canada.
Block IP Range: Users can set the blocking target to IP address range, then type the IP range in CIDR notation to block a group of IP Addresses.
Block Remote Port: Users can block a type of application by blocking a port or a range of ports. For example, block remote port 6881-6889 will block p2p traffic (typical p2p traffic uses these ports).
Tutorial: How to manage Blocking Rules?
3) Per Device control of Family Protect, Ad Block, DNS Booster
Family Protect, Ad Block, DNS Booster feature supports applying to All Devices / Specified Devices.
DNS Booster will cache DNS results locally to make DNS queries faster. Users can selectively turn off the feature on any devices, but it cannot be turned off globally.
Feature Introduction: Family Protect
Feature Introduction: Ad Block
4) VPN Client - Username/Password Authentication (beta)
It requires a beta mode. Tap on settings->advanced->beta program
VPN Client now supports connecting to a 3rd-party VPN server using username/password authentication. Users can import an existing VPN server profile or fill in configuration from scratch. The VPN profile is not editable once created.
VPN services we've already tested with:
- ExpressVPN
- IPVanish VPN
- NordVPN
- PureVPN (Requires additional configuration)
- Smart DNS Proxy
Tutorial: What is Firewalla VPN Client and how to use it?
5) VPN - Site to Site VPN (beta)
It requires a beta mode. Tap on settings->advanced->beta program
VPN Client supports creating a VPN Connection with another Firewalla Box (Firewalla Blue with VPN Server enabled), to establish a bi-directional site to site VPN, devices on the two sites can inter-connect with each other through an encrypted VPN tunnel.
Tutorial: What is Firewalla VPN Client and how to use it?
Known issue: If the VPN server is unavailable for a period of time, device traffic will re-route back through local ISP. It may expose your traffic to the ISP.
In the future, we will provide an option to pause device traffic when the VPN is down.
Improvements:
-
Safe search now supports all Google regional domains. (e.g. www.google.co.uk)
- Able to manage Device Online/Offline Alarm in Alarm settings.
-
Improved reliability of VPN Client
-
Improved accuracy of Abnormal Upload Alarm
-
Improved reliability of auto port forwarding on Firewalla VPN server
- Improved reliability of port forwarding in DHCP mode
-
Improved stability of safe search
-
Improved accuracy of device discovery
-
Able to detect more types of security activity alarms.
-
Able to refresh DDNS much faster when public IP is changed.
- iOS removed internal and external scan buttons. Once you have a firewalla box installed, that function is now included with the box.
Major Bug Fixes:
-
Fixed a bug that box's IP address may be deleted under some condition in DHCP mode.
-
Fixed a bug that port forwarding on TCP port 80 may not work in DHCP mode.
- Fixed a bug that muting a specific open port in Open Port Alarm may not work.
Comments
4 comments
Sweet! any idea when this will roll out to Beta? Really keen to test this out on my gazillion IoT devices
Sorry should have said, specifically the VPN Username/password part.
Excelent. Every improvement is welcome, mainly on VPN and ad blocking.
@Andy, likely next week. We need to make sure at least the iOS app is ready for beta users.
Please sign in to leave a comment.