I really enjoy homelabbing and playing with Linux (Servers/Networking devices). I have a few mini PCs, Raspberry Pis and other devices around the house that I thinker’ with.
In 2020, I discovered Firewalla, and this company had everything I wanted in a Firewall, a beautiful phone app and web interface.
I was hooked, I’ve always wanted a Firewalla device but I had a hard time justifying the price tag as I’ve been accustomed to open source firewalls such as Pfsense and opnsense. While Pfsense is great to use, I found that trying to fine-tune the IDS/IPS in pfsense was a PITA and also monitoring blocked traffic/allowed traffic in the logs was decent at best (slow to load)
thus my decision become clear, I needed a firewall that just worked!
I’m here to say that the price is worth it. The features built into the phone app are amazing and the control over traffic is great! The process was really simple, plug and play as described. No issues at all, and within minutes I had a better insight into my network and what device was calling what. I really like the groups feature. it will allow you to group devices together and apply rules to them, very easy to use.
I set up the FWB+ on my IOT/DMZ network. The network consists of a GL.inet router, FWB+, Raspberry Pi and a mini PC. I use this network for the following devices: security cameras, Nest, Wifi outlets, and my Linux test servers.
My favorite feature about the device must be the network monitoring, activity upload alerts and quarantine feature.
Monitoring my network has been a breeze with Firewalla. I can monitor my ping, bandwidth and daily Speedtest. It helped me identify that my internet speed was really bad in the afternoon (3 pm). Also, it helped me figure out that my VPN provider was the reason for my high ping, thus crappy Zoom calls. I also use it to monitor my linux servers. Sometimes, I need to grab a older container off docker hub and random other projects off git, with the flow feature, its really easy to see what ip the vm/container is reaching out too!
Getting alerts on activity is a must for a modern firewall. This was my biggest issue with opensource firewalls, I would get alerts via email, but could not take action. This is where the Firewalla shines as I can block the traffic from the alert.
One thing I noticed was how much data these off-brand cameras upload to the cloud and ping back home. I was able to block some of these requests for fun, but no harmful requests ever appeared. I also tested out some games on my phone and firewalla was able to detect and alert. The device does need some time to ‘learn’ what the sites are, but otherwise, much better than other firewalls.
The quarantine feature is great! I’ve always wanted to restrict access to my network via hardwire or wireless but never could with other firewalls. With Firewalla, it’s such a breeze as it’s done automatically. The best part is, that I can unblock a device from my phone, without logging into a PC. With Wifi password sharing being so easy these days, I love the fact that I can control access to the network.
I do have one small issue, at times, the notifications from Firewalla are delayed. If an upload alert occurs at 12 pm, I might only get a notification at 1:30 pm, which kind of sucks.
Also, I couldn’t get routes to work with my VPS Wireguard network. Trying to route my 10.10.10.x address out the WG client on Firewalla didn’t work.
Overall, I really loved the device and it’s been a great addition to my home lab. I will post a pic of my home lab tomorrow, just need to clean it up,