Does bridge mode monitor or control traffic?
Hi everyone. I'm looking into options for a friend that will add a Firewalla box onto his existing set up --it will be placed between his firewall and lan--. Can you tell me if bridge mode simply monitors/informs you of traffic related information or does it provide blocking, etc. based on the rules you set? (yes I'm aware it won't be a full-on firewall as such when in bridge mode) Thanks, hopefully my question makes sense.
-
It can do both monitoring and control. More on this here https://help.firewalla.com/hc/en-us/articles/1500012304202-Firewalla-Transparent-Bridge-Mode
-
Piggybacking on this... do the firewall rules still apply when it comes to ingress traffic or is it passing all traffic from the edge router/FW? Specifically, using port forwarding as an example, which is setup on the external router/FW. Do I also need to setup forwarding on FWG to allow this traffic or is it passed? Also wondering if GEOIP blocking still works.
-
Anything that's going through the bridge can be controlled and monitored. See this article for details https://help.firewalla.com/hc/en-us/articles/1500012304202-Firewalla-Transparent-Bridge-Mode
-
I have read that doc and it answers the second question about GEOIP since it is egress traffic. However, it doesn't answer the first with regard to port forwarding. I think the answer is that I do not need to setup forwarding on Firewalla since the forwarding on the edge router/fw will be NAT'd to the internal address which will be passed by the Firewalla bridge. Do I have this correct, or do I still need to setup the port forwarding in Firewalla also?
Please sign in to leave a comment.
Comments
10 comments