Enterprise Grade Reports in my Home?!

Comments

21 comments

  • Avatar
    Firewalla

    Super!   We have been waiting for these kinds of requirements.  Out of my curiosity, will a simple webpage that does this be sufficient?   or do you prefer just a REST API call?

    3
    Comment actions Permalink
  • Avatar
    Will

     Oh man this makes me very excited!  Ideally, I would have both, a website that I could go to and get the data file, and also the REST API or SOAP for that matter.  I would be more than willing to jump on a couple calls with you guys and offer up my ServiceNow Instance to mess around and get things working.  THANK YOU!

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    We are scoping what to do in this area, there is absolutely no commitment on what we will be doing.  But ... whatever you say can sure influence us.  :)

    For example, we are thinking of duplicating the same functions on the app the web, but that's expensive to maintain.  Hence we want to build whatever runs best for your particular business case.  

    Do you value the web interface more than the API's?   Say if we only to make one, which one you will like?

    Next, if we just make web for functions that doesn't exist on the app, is that something usable?

    1
    Comment actions Permalink
  • Avatar
    Will

    Thank you for getting back to me! Right now, I think the Excel document would be perfect.  Later we can focus on others.  Yes, having the ability to do more complex functions which most likely require a computer within a web UI would be rather beneficial.  Thank you so much!

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    We will likely launch a forum topic on web interface, once you see it, please chime in, we want to build stuff ... that works for you (all of our users)

    0
    Comment actions Permalink
  • Avatar
    Mike Kizerian

    I'd like an API. I think that'd be great to pull data down and control how I view it. Or to be able to use it so I can pull into something like Kibana. 

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    ++API :)

    0
    Comment actions Permalink
  • Avatar
    Simon Cutting

    +1 for web from me. :)

    0
    Comment actions Permalink
  • Avatar
    Will

    I would agree too, API would be fantastic.

    I assumed some sort of file would be easier to implement.  Thank you!

    0
    Comment actions Permalink
  • Avatar
    Joe

    +++ access via web /api

    Just got my firewalla and it looks pretty good. 

    Open up a web / api and you'll generate a whole lot of interest from tinkerers like home-assistant, open-hab - imagine blinking a hue light red if a firewalla alarm triggers.

    I'd put some of the firewalla dashboard / info on a page on my wall mounted HA tablet... and can think of a whole bunch of reports I'd generate to keep track of what's going on on my network. 

    As you're working on this stuff, is there any way I can grab the discovered device info?... maybe a file or script via ssh (I looked and couldn't find it). I'm building a dnsmasq server with reserved addresses and it would be great to get all the info firewalla has to cut and paste into my configs.

    Thanks for the great work! I can't wait to see where this thing goes. I think I already got you 2 more sales this weekend by just telling people about the cool new toy I found :-)

     

    1
    Comment actions Permalink
  • Avatar
    Firewalla

    Joe

    What specifics you want to do with dnsmasq?  we probably can provide that function, firewalla has a dnsmasq server.

    As of api's, what will be some of the important things that you will want from it?   Are you more interested in scripting or just tired of the phone?  (more of, is API more important than web interface?)

    Json reports should be easy on the devices, we are designing something now. 

    0
    Comment actions Permalink
  • Avatar
    Joe

    I moved my dnsmasq from dd-wrt to a RPi. I'm using it for local DNS and DHCP. I think the firewalla is doing pretty good with just the IDS/IPS functionality and look forward to you continuing to improve and add additional security functionality without bogging it down with other things like dnsmasq on it.

    The phone platform is nice for what it is - ever handy, quick look at what is going on but there are times you want a bigger screen, keyboard, easy cut-and-paste, etc.

    Some ideas I'd like to do:
    See the devices in a table so I can cut-and-paste MAC addresses into dnsmasq config or more easily spot new devices or devices that don't have names configured correctly.
    Easily do some searches against the apps or history in the network flows to further investigate who's talking to who (e.g. cut and paste into google)
    Possibly integrate alarms with smart home so if some threshold is hit… say very large abnormal upload have tts announce it or flash a light if a new device is attempting to get on my network.
    Create a top-talkers or top uploaders/downloaders report
    Sort the netflow history to see if I could optimize by caching anything.

    I’ve had the firewalla only a couple of days so I’m just thinking through possibilities. I know you probably want to make the firewalla easy for people who just want to have it run, not fuss with it and show their “cool” phone screen to friends 😉 but it looks like it would attract tinkers and more serious-minded people to buy with the potential of what it could do and they could do with it.

    Thanks for your consideration!

     

     

    1
    Comment actions Permalink
  • Avatar
    Anthony Bolan

    +1 for API
    Would love web admin but API Would be much more useful
    Pull and edit device details
    Pull history for analysis
    Pull alarms for external action

    On a side note snmp would be cool too

    1
    Comment actions Permalink
  • Avatar
    dougwc

    I would also very much like this kind of reporting capiubility.  The simplest report that would be very beneficial to start with it to be able to just export the Devices information to a spreadsheet, showing device name, IP Address, Mac Address and Manufacturer (a simple known devices inventory).

    0
    Comment actions Permalink
  • Avatar
    saud

    +API

    Would love to access activity logs and try to do some analysis with the activities on my network.

    Would love to check my DDNS.

    Would love to check how many threats have been detected last 24 hours or so.

    Would love to automate some processes like stop specific IP from the internet on a specific time.

    If there are beta API would love to be part of it. Thanks!

    0
    Comment actions Permalink
  • Avatar
    Bret Palsson

    Would love an API endpoint, REST, GraphQL, or even a prometheus exporter

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    BTW, we love it too ...  some people can't wait to code these up ... but we are too busy with little things that feed us, because we are a little startup 

    0
    Comment actions Permalink
  • Avatar
    Kadon Hodson

    Do you have any additional information or timeline on when being able to export data might be available? If you do come out with these capabilities, will they be available for the Blue?

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    We are seriously hoping to accelerate these features.   These features are only important to a small set of users, and the only way we can support this is likely to have it as an addon feature that will also cost extra.   This can be both a reasonable one time fee or a small on going fee to support the enhancements. 

    2
    Comment actions Permalink
  • Avatar
    networker5

    Would it be possible to implement any of this so that it could connect with some open source software or packet sniffer on the desktop? The main issue is who is attacking the network and some ability to further investigate. Your tools don't have to do everything but work with other tools that specialize in that sort of thing. I find the information interesting but not very actionable.

    0
    Comment actions Permalink
  • Avatar
    Giovanni Francesco

    was this ever implemented?

    0
    Comment actions Permalink

Please sign in to leave a comment.