Not sure if I'm supposed to break these up into multiple requests or not, but I have a few feature suggestions after using the Firewalla for a few months. Most of these are features from previous firewalls that I miss on the Firewalla.
1. Show Top Destinations by number of connections (i.e. how many times is a domain contacted vs how much data does it up/download.) I can get this partially from my DNS provider, but there are a number of connections that are direct to IP and do not use DNS.
2. The ability to search/filter log/records for more aspects of the collected data: all requests/connections by source device, requests/connections to target IP, all DNS requests, etc. Some of this is available by only certain data is reported. For example, total data upload/download per device or per target, but not by device/IP.
3. Provide a readout of the actual WAN connection speeds/quality from the Firewall itself. Maybe refresh it daily at night.
4. Longer time filtering on insights data. On the dashboard currently most reports are for 24 hrs and cannot be changed. Data graph can be switched from 24 hrs to 30 days, but most of the other charts/graphs cannot.
5. Provide the region as a filter option in the "insights" report. Destination host is there, but region is not. "Top Regions" are shown on the dashboard, but only the top few and you can't filter it to show the devices communicating with that region. Similarly, include "block events" or "blocked flows" in the insights. Again, there's some information on the dashboard but it's just the total number. I can't do any analysis with that.
6. Provide the ability to point to a curated list of sites that should be blocked. There are maintained lists available of malicious sites, of tracking sites, of ad serving sites, etc. (For example: https://adaway.org/hosts.txt, https://v.firebog.net/hosts/Easyprivacy.txt, etc) Currently the "target lists" require you to copy/paste the list contents, which aside from being a pain, the list is static.
7. More options for using multiple WAN connections. In addition to failover or specific allocation percentages, use things like quality of connection, bandwidth requirements per direction, automatic load balancing, etc. For example, I have an asymmetric default WAN connection that is very fast down (700Mbps) but relatively slow up (20Mbps) and a secondary WAN that is symmetric that is higher up (150Mbps) but slower down (150Mbps). It would be great if outgoing Video chat or VoIP traffic could be directed to the connection with the higher upload speed/quality, where as high bandwidth downloads (netflix) would be directed the other way. Or if traffic could automatically be load balanced if the main WAN is experiencing high usage.
8. This may be possible and I've just not figured out how to do it, but it would be great if we could export the contents of the log data. I'd love to be able to get the data into excel or similar and be able to do more analysis or cross-reference the data with the data from other sources for more detailed insights.
I hope at least some of those are good ideas.
Please sign in to leave a comment.