Blue - block internet traffic for all? (ad-hoc or schedule)

Comments

3 comments

  • Avatar
    Firewalla

    It is fairly easy for us to implement this, the reason we are NOT supporting this is, is to prevent bad things from happening to your network. Including when you want to manage firewalla and your phone is blocked ... And in case you have critical devices, blocking the internet may have very bad consequences. 

    0
    Comment actions Permalink
  • Avatar
    John Stock

    It should be quite easy to make exceptions though - for the firewalla device itself and for any critical devices, without it causing network problems.

    This is a function that is provided by many other devices.   I generally like firewalla, but the lack of this functionality makes me not want to recommend it to anyone.

    I know that firewalla can almost do this via "groups", but the problem is that it doesn't apply to new devices and/or changed MAC or IP for existing devices.   I'd like for default for any new devices to be part of this control.   Then if I add something that's a critical service (e.g. Ooma or Nest), it could be left out of this control; new devices that are "unknown" would default to being under this global-control group.

    Edit:

    Actually the "groups" functionality is not good - it doesn't work right at all, since making a device part of a group removes the ability to apply rules to the individual device!!!  ???   Also any given device cannot be a member of multiple groups it appears.   Not sure why these choices were made, but it basically makes Groups useless.

    0
    Comment actions Permalink
  • Avatar
    mozarella

    New devices could be blocked due to quarantene new devices-function. Maybe this will be interesting? So each new device should be moved to another group manually. And there won't be "free" internet-access if MAC changes for example.

    Yes, the group-feature is a bit tricky. Because different devices could be organized in different groups. logically groups (parents / kids) and device groups (media player, tv, IoT) should be possible. So i can maybe block internet for kids but not for the kids media player...

    i'm thinking, if a device could be member of more than one group, things could be easier to manage. Especially when using rules quite a lot.

     

    If a device could be member of more than one group, also the topic of blocking internet for "normal" devices could be easier. Just place each device in a "devices"-group. And then block internet for "devices"-group.

    Important devices, like the smartphone which is managing firewalla or some IoT-things (doorbell or so) could be outside of this group and then they won't be affected.

    0
    Comment actions Permalink

Please sign in to leave a comment.