Firewalla Gold Plus (4x2.5Gbit) Updates
The Pre-Sale is over as of 12/6/2022. The Firewalla Gold Plus can now be ordered like any other Firewalla product.
The Firewalla Team is proud to bring you the Firewalla Gold Plus Pre-Sale.
- 4 x 2.5 Gbit Ports
- 4GB RAM
- Packet Processing 5 Gbit
- Same great software as the Gold
- This unit is perfect for the fast internet of the future.
Pre-Sale Starting: 8/23/2022 8 AM Pacific Time
- Product page https://firewalla.com/goldplus
Other Facts:
- The unit price will increase as we are closer to the shipping date.
- Tentative Shipping Dates: 1/12/2023 to 2/25/2023. If we reach 200% of the minimum order, shipping date: 12/12 to 1/12/2023
- Shipping is first come, first serve
Presale terms:
- The is a presale, your credit card will be charged after ordering the unit.
- You can cancel the order before it is shipped for a full refund. (email help@firewalla.com)
- When the unit is shipped, you will receive a tracking number.
- All units can be returned within 30 days.
FAQ:
Will there be a trade-in program?
Unfortunately no, we do not have the capability to create such programs.
Will WiFi SD work with the Gold Plus?
YES!
Will I be able to migrate settings?
Yes, you can. We will likely enhance this so more configurations can be migrated. https://help.firewalla.com/hc/en-us/articles/360015356093-How-to-migrate-data-from-one-Firewalla-Box-to-another-
SIM Slot?
This board does not have cell support. The SIM slot is just left over on the prototype board. It will likely get removed when manufacturing.
9/27 Final Sample
-
Received yesterday (fantastic delivery service this time!), configured just now, starting from scratch (no migration, I usually avoid migrating something to one thing to another, this applies for smartphone and everything else).
For you to know, below first two speedtest, made using cli installed via ssh, so to avoid any kind of bottleneck in my home network and devices:
Eolo Milano: https://www.speedtest.net/result/c/9b3525e2-996d-4887-bd06-ba1abcf7fa95
Vodafone Milano: https://www.speedtest.net/result/c/04b8d045-a3a7-43c7-9059-a5c67ff9f4feISP is PPPoE, IPv6 enabled (first server "Eolo" use IPv6).
Just made also a speedtest using the app on my Pixel 7 Pro, connected to a Zyxel NWA510 access point (5ghz, ax, 160mhz, 2.5gbit LAN connected to a ubiquiti switch enterprise 8 POE, 2.5gbit lan the same), reached 1.2gbit in download. So far, FWG+ is AMAZING!!!!!
-
@Firewalla
Can Firewalla team please have a setp-by-step procedure on migration process? For example, update the Firewalla firmware and Alpha App to which version? power off old Gold first? Connect the ethernet cables to Gold Plus exactly like the way we connected the old Gold? etc....
(I am just guessing the steps, I know they are not accurate)
-
@Michele Pancrazzi
ciao, there are few ISP currently offering a REAL 2.5gbit connection without asking for unsupported protocol such as MAP-E (Iliad).
You'd better look at smaller ISP, personally I definitely suggest Dimensione Fibra, which is offering both Open Fiber and FiberCop connections. They maybe are more expensive than the average but:
1) they're very skilled and use best of breed hardware
2) in case you need some technical support, you'll talk directly with their technical team, not a first-level customer centre
3) they provide ipv6 and dynamic public ipv4 free of charge. Ipv6 specifically, is deployed to ensure the maximum level of compatibility which, when a Firewalla is in use, it's pretty important (I had some serious problems in the past months with another ISP)
4) last, but not least, you can easily check the speed now that my post has been published with speedtest links :)
if you want to know more, take a look at Fibra Click Forum
-
Send me your details at ball654@live.com and I’ll buy it off you.
Unless there’s someone that has one available in Canada? -
I am going through the process of testing these three scenarios:
- As a router for a gigabit connection
- As a router for a multi-gigabit connection
- As a router for two ISPs with gigabit and multi-gigabit connections (total of 3Gbps of bandwidth)
I'm currently testing item #2 right now (I have an earlier post on #1).
I now have ATT and Google fiber connecting through the ATT Gateway and the Google ONT. Both are symmetrical 1gbps connections.
I have them going into port 4 for the ATT connection and port 1 for the Google connection. I have a link aggregation group (LAG) bonding port 2 and 3, which connect to ports 1 and 2 on my core switch (Ubiquiti USW-Enterprise-8-PoE). My core switch has eight 2.5GbE ports and two 10G SFP+ ports. All four ports on the FWG+ show as having 2.5Gbps links (yay!).
The LAG works perfectly between the FWG+ and my core switch. The core switch reports a 5GbE uplink. Woohoo!
Setting up multiple WAN connections was a breeze. I chose the Load Balance Multi-WAN setting (why not take advantage of 2gbps of internet bandwidth). I have them set for 50%/50% distribution across the two WAN links.
Unplugging either of the WAN ports and the FWG+ seamless moved the traffic from one WAN to the other. And the device had the horsepower to max out the two 1gbps WAN connections. Very nice.
Not everything is perfect. For example, Firewalla's Network Performance reporting doesn't seem to work properly. Whenever I do an internet speed test from the box I get reports that the throughput is less than half of what is reported from a wired client on the network (about 500 down and 250 up). I wonder if this is a bug with the multi-WAN, an issue with the target test server, or some combination. I submitted feedback, through the app, for the inaccurate result.
Further, it would be nice if Firewalla showed the internet speed of each WAN individually and then reports it aggregated. I want to be able to compare the performance of Google and ATT over time. It would be nice if Firewalla stored this data and presented it to me nicely.
I can't believe how truly powerful yet simple to use FWG+ is. You can do the same thing with a slightly less expensive box that runs pfSense or OPNsense, but the configuration experience on those software packages is a nightmare, is confusing enough that I would probably make some type of configuration error, especially when compared to the pleasant, friendly experience on the FWG+. I just hope that the Firewalla mulit-WAN management capabilities on the device grow over time.
-
@FW, in new Gold Plus will the PPPoE speed improve? Currently FWG downgrades the speed due to faulty implementation.
In existing FWG when using PPPoE directly connected to ISP's gateway modem it reduces the download speed by 100-200 Mbps. Upload seems unaffected.
Therefore, the ISP does advise customers to connect FWG via their supplied router Zyxel C4000XG or older C3000Z first. That works over DHCP and the speed is unaffected in any way.
-
@R see the previous comment, link here https://help.firewalla.com/hc/en-us/community/posts/8657015925011/comments/8684385206035
The FWG+ PPPoE should be faster, and can hit 1.7Gbit and 2.2Gbit Upload. PPPoE always have issues with QoS, so you will see that lower a bit.
-
@FW Any chance that better Multi-WAN functionality will come about the same time as my Gold Plus? As many have posted including myself, when you enable Dual-WAN Failover mode, then specify a Policy-based Route for some devices routing to WAN 2, you discover that "when secondary wan fails the routes don’t failover back to primary wan; the devices are stuck without internet". The Gold Plus will be my first Firewalla router and will replace a Multi-WAN router which has this and more.
I recently saw FW say "we are designing this part now. Will take your input" in a posting and gave my input there: https://help.firewalla.com/hc/en-us/community/posts/10047475139347-Dual-Wan-failover-with-Firewalla-Wi-Fi-SD.
(I also cross posted that input on my Feature Request: https://help.firewalla.com/hc/en-us/community/posts/7652680908819-Need-Policy-based-Routing-to-handle-when-secondary-WAN-is-down)
-
Can anyone help me and provide and answer for this?
I have several subnets using designated VLANs. By default I have enabled a blocking rule "Traffic from/to all local networks", so I have fully isolated the traffic.
For example I want to be able to log into DVR from my home PC which is on different VLAN. When I go about creating any new allow/block rule inside a LAN - for the address it seems I must enter local IP under a "matching"... I can pick the device by name only for a target machine under "On". So, I did enter 192.168.x.y as an IP of a DVR and I had put DESKTOP-XYZ under "On device" and ticked "Allow". This is all does work fine and it is not a problem. The issue is in managing the local IPs.
With Gold Plus arrival I will be re-subnetting all devices soon and I will face massive rule re-do. First I need to find out what is each of the devices in existing rules by matching its local IP to the device/network icon on the main screen.
Is there a way to be able to pick a device by name from a list of connected devices instead of remembeing each IP. FWG should then manage any DHCP changes, etc.
Or can I enter the FQDN of a local device under "Matching" like the ones FWG auto assigned with possibility to alter, i.e. "dvr.lan"?
Please enlight me on this.
-
@ R
yes, on FWG app you can pick up single device connected to network(s) by selecting it's name. You can also rename devices, in case the automatic name it's not verbal (happens with my chromebook for instance). And of course, DHCP of FWG will let you play with assigned IPs
Edit: for your questions about PPPoE performance, you should take a look at my speedtests done using cli via fwg+. On a 2,5/0,5 pppoe connection, I can reach 2,3gbit in down and 0,47 in up.
-
@Radagast82, thanks, but are you sure it is the same option? Go ahead, create a new rule and tap "MATCHING" (NOT "Target") then we have the choices like "Target List", "IP", "Domain", etc. In there I could only pick "Local Network" and then see the list of all my named VLANs, but when I click the name there are only options like "Traffic FROM LAN to" or "Traffic TO LAN", but device names are nowhere to be found. Please try. Maybe I need little bit more guidance or a screenshot perhaps?
Regarding PPPoE, I do understand on a 2.5 GBit PPPoE connection - since hardware's max throughput is 3 Gbps - it is expected to drop 8% as it needs processing power on the other Ethernet ports, too.
I do have 1 Gbit connection only and my question: is there enough performance in the entire hardware to not drop download speed by 100-200 Mbps at 1G, but keep very close to 940-980 MBps like when using the same with DHCP (through Zyxel C4000XG). So, my speed drop is about 10-20% with FWG under PPPoE, would it be less like 1-5% drop maybe for Gold Plus?
Please sign in to leave a comment.
Comments
188 comments