Block new device until approved

Comments

14 comments

  • Avatar
    Firewalla

    Stacy

    We did that first, but the problem is, consumers often forget to tap on allow ...  So the easiest and most logical way is do the opposite.  allow until blocked. 

  • Avatar
    Stacy Haven

    I can see that logic. That was why I was thinking that it could be an option that you only turn on when you want to make sure that nothing on the network can "call home" when you are in this mode. I guess if all my devices were showing in the firewalla devices list I wouldn't be so worried, but the fact that my router is showing them, but the firewalla isn't makes me nervous.

  • Avatar
    Firewalla

    We are curious on the devices that only shows up in the router.  Firewalla does pretty deep scans, and pretty sensitive to any kind of packets.  Do you happen to know what these devices are?  (we have seen virtual interfaces inside the router works this way)

    I've logged your request already, will see if someone want to work on it. 

  • Avatar
    Stacy Haven

    I don't. Those devices aren't showing on the network currently that I can see. I was originally thinking that they might be from my vmware esxi box, but the mac addresses from that are in sequence. Or at least the first three octets are anyway. The weird part is that if I see a notice for any device I always make sure I know what it is before I approve it. But I don't check everyday so maybe it showed as an alert and then I didn't allow it. My hope is that it would show up under devices approved or not, but signify as such. However, the ones in question aren't even in the list of devices so the only way to know is to catch the device.

  • Avatar
    Firewalla

    Stacy

    The device will show up regardless in the device list.    One possibility is router may be tracking IP addresses, and the same device may have different IP's.  We can dig this further if you want.  Feel free to send us a email at help@firewalla.com, we likely will ask you for support access to your box

  • Avatar
    FK

    I would also like to see a switch where you can at least choose to decline new devices.

  • Avatar
    Simon Cutting

    +1 from me for the blocked until allowed switch. :)

  • Avatar
    Didier Salembier

    +1

    for now I'm still using FingBox to block all new devices "until proven otherwise" but I hope this could be an option we can enable on Firewalla!

  • Avatar
    Eduardo

    +1 it would be great to have

  • Avatar
    Damon

    +1 I'd like the option to block until approved, but make it optional to enable this mode.

  • Avatar
    Firewalla

    We had this type of feature before ... but the problem with that was, people always forget and then you get connection problems ... then problems come to us.   So, we revert it back to allow and block if you care.   Having these knobs also costs engineering, so we decided to go with allow and if you care, block it, model.

     

  • Avatar
    Damon

    When I first purchased my blue this functionality was in place, and it was one of the reasons purchased the product as my router was failing miserably at this functionality. It's a bit disappointing that the feature was stripped out without being an option, and the suggestion to disallow after connected is very different in both management of devices and end user perception. Now I'm back to looking for a device that will support the deny until allowed.

  • Avatar
    Didier Salembier

    FingBox does the job and a combination with firewalla is possible!

  • Avatar
    Firewalla

    We are working on something that's a lot better ... stay tuned.  It will make things a lot more secure.

Please sign in to leave a comment.

Powered by Zendesk