Firewalla is a networking device that sits in between your connected devices and the main router. By sitting in between, Firewalla is able to ‘see‘ and block all traffic going through your network. (Firewalla does not monitor your local traffic, only those traffic going to the internet)
Traditional Method (the old/complex method)
Traditionally to make such thing happen, we will need to add an in-between device and another router.
Here the device M is inserted into the network after your main router. Since more devices are needed to connect, you will need either add another router2 or M has to have a build in router. Which means M is a lot more expensive.
Use Hacker Tools Against Hackers!
The traditional way of interception traffic is obviously an overkill for the consumer. Plus it is unlikely consumers will buy an extra router just for security …
Hence, we start to explore ‘other’ ways to monitor and block traffic, given, we want things to be simple, and also keeping the consumer cost down
We were inspired by existing companies using ‘hacker’s method to make security better. Isn’t that amazing? using ‘their’ tools against them! (We are not the first doing this, and will not take the credit for this inspiration)
So we started to innovate and turning some of the well-known hacker tools into ‘good use’. See below.
Firewalla Simple Mode
To make life easier for consumers and at the same time making our solution affordable, we use the behavior of ARP protocol to route traffic virtually from connected devices to the Firewalla box.
Firewalla once started, will start to tell each of the connected devices that it is the router and tell everyone”please send all network traffic over”. This essentially will divert all live traffic to Firewalla to be monitored and managed.
Professionally, this method is called arp spoofing. A ‘creative way’ to do a man in the middle. In our case, the ‘good’ man is Firewalla. And we modified a few things to make this work better at home. (This method was an inspiration from another product on the market, we take no credit inventing this)
Since the ARP protocol to do this is supported differently on different routers, this mode may not be compatible with all routers. Please take a look at our compatibility http://firewalla.com/compatibility
If your router is on the list, please don’t worry, we have you covered with another technology. Continue below.
Firewalla Overlay LAN mode:
The second model we support is the Overlay LAN mode. (This is a bit different than VLAN in networking).
In this method, we have Firewalla create another network over the existing network. So if you have 10.0.0.x network on your main router, you will also see 192.168.168.x network from Firewalla.
You can statically point your devices to this Overlay network, or disable/modify the existing DHCP service on your main router and have the Firewalla serve DHCP request.
Since there is the ‘disabling or limit DHCP’ on the main router, this method will require a bit of router knowledge.
The advantage of this method is all traffic will guarantee to go through Firewalla.