About 98% of all flows through my FWG are blocked. These are from a single device (a network video recorder) which tries to phone home to China, the US, anywhere of about 15 destinations it tries at a rate around one per minute. This block is what I designed to happen so I am happy with that, and my configuration gives me external access to the NVR (via VPN). However, it would also be good to have a way of telling the Firewalla not to bother displaying those reports so I would have greater clarity to read the other 2%. This would involve hiding "blocked flow" messages from a single source such as a net (10, 172, or 192), or subnet, or IP address or MAC address. Any one of those targets would do the trick.
I assume the specific report data would be retained, just able to be hidden when reading. It might also be done with more difficulty by target IP but this is not Muting an Alarm, it is hiding part of the data in the blocked flows report.
Is there a feature I have missed that does this? If not, might there be?
Please sign in to leave a comment.