You’ll likely be amazed by the Firewalla Blue or Blue Plus. Each is a tiny device that can do so much. Almost instantly.
Indeed, connect it to your router, and you’ll be able to monitor, manage, and view the status of your entire home network, in great detail, with ease. And the performance panned out well in my testing, for the most part.
In all, if you have 500Mbps or slower Internet and feel a bit cavalier about your privacy, or if you trust Firewalla, this little Blue cube is an excellent home protection investment for the one-time cost of some $180, or better yet pay another $20 for the Blue Plus. Get one!
Dong’s note: I tested the Blue Plus for this review, but you can expect a similar experience with the slightly lesser Firewalla Blue. As the name suggests, the former is essential the latter plus a bit more.
Firewalla Blue Plus
- Super easy to set up and use
- Lots of useful and well-designed network protection, monitoring, and managing features
- Intuitive mobile app and web interface
- Compact design
- No subscription required
- Privacy concerns
- Causes Internet to max out at sub-500Mbps
- No PoE support
- VPN is a bit hard for home users to set up
- Excessive notifications
Firewalla Blue / Plus: A colorful home firewall application
There’s nothing blue, as in depressing, about the Firewalla Blue. It’s an exciting product. But yes, it’s totally blue all around and does look a bit underwhelming.
Tiny design, simple setup
So yes, I had low expectations getting the Blue Plus out of the box.
This is a tiny cube — almost tiny enough to be a choking hazard — with a Gigabit port on the back to connect to an existing network (like a router or a switch) and not much else.
In fact, the Firewalla is so small that it’s such a shame not to be a PoE device. The included power adapter, which is smaller than that of a phone, seems a bit too big for the device itself.
The Blue uses a micro-USB port for charging and has another USB-A port currently of no use as far as I know. On the front, you’ll find a miniSD card slot already occupied by an included 16GB SanDisk card that works as its storage — don’t remove it!
And finally, on the underside, you’ll find a QR code for the setup process. And this code is all you need. Run the Firewall mobile app on your phone, scan this code when prompted and you’re all set.
Once set up, the Firewall Blue virtually inserts itself in between the router and the rest of your network. Virtually because it’s physically attached to the network at the same level as all other devices. Nonetheless, it functions as a firewall and, among other things, allows you to monitor your home via the mobile app.
Note on ease of use: By default, the Firewalla works via ARP spoofing and therefore is compatible with most home routers. If you happen to have one that is not compatible, you’ll have to opt for the DHCP Mode, where the setup gets more involved and only suitable for advanced users.
Firewalla Blue: Detail photos
Firewalla hardware specification: Red vs. Blue vs. Blue Plus vs. Gold
Other than the Blue, Firewalla comes in a few flavors. They all share the same set of core features and differentiate only in the capacities and advanced features.
|Packet Processing Speed||3Gbps||500Mbps||500Mbps||100Mbps|
|Memory||4096 MB||2048 MB||1024 MB||512 MB|
|Number of Network Ports||4||1||1||1|
|Active Protect Entries||40,000||20,000||10,000||1000|
|CPU||64bit Quad-Core Intel 2.2ghz (AES NI)||64bit Quad Core ARM 1.2ghz||64bit Quad Core ARM 1ghz||32bit Quad Core ARM 1ghz|
|VPN Encryption Speed||120Mbps||70Mbps||70Mbps||28Mbps|
|Storage||32 GB||16GB||16GB||16 GB|
|Power Usage (Watt)||~10W to 12W||~7W||~5W||~5W|
|Size||5.12 x 4.33 x 1.34 in (13 x 11 x 3.4 cm)||2.13 x 2.13 x 1.34 in (5.4 x 5.4 x 3.4 cm)||1.77 x 1.77 x 1.18 in (4.5 x 4.5 x 3 cm)||1.77 x 1.77 x 1.18 in (4.5 x 4.5 x 3 cm)|
|Weight||19.9 oz (565 g)||2.15 oz (61 g)||1.59 oz (45 g)||1.52 oz (43 g)|
|Operating Temperature||32°F to 122°F||32°F to 95°F||32°F to 95°F||32°F to 95°F|
|Common Features (*)||Yes||Yes||Yes||Yes|
|Site to Site VPN||10x connections||1x connection||1x connection||Client only|
|Geo-IP Filtering / Regional Blocking||no limit||10 countries||3 countries||None|
|Web Interface (beta)||Yes||Yes||Yes||None|
|Custom or 3rd Party Software App||Yes||Yes||Yes||Yes|
|Simple Smart Queue||Yes||Yes||None||None|
|Advanced Smart Queue + Rate Limit||Yes||None||None||None|
|New Device Quarantine||Yes||Yes (beta)||None||None|
|Can Work as a Router||Yes||No||No||No|
(*) Common features include: Active Protect, Deep Insights, Deep Insights, Ad Block, Device Management, Family Protect, Device Groups, Rules,
Alarms, Content Filtering, Bandwidth Monitoring, VPN Server, VPN Client, DNS over HTTPs, IPV6, DDNS,
Simple and DHCP Mode.
All of these are add-on devices that you connect to an existing network, except the Gold version, which is a full-fledged non-Wi-Fi router that can host a network on its own.
Which Firewalla to get?
For most homes, the Blue is a good fit.
If you have a home with lots of devices, the Blue Plus might be more suitable — it has double memory and, therefore, is more capable.
The Red virtually the same as the Blue but designed for those with sub-100Mbps Internet — so I’d skip it.
All the three above will give you the same core experience. Get the Gold only if you plan to add Wi-Fi broadcasters separately — it’s also the only one that can handle Internet speed faster than 500Mbps.
Excellent mobile app and sleak web interface
Like all add-on security devices, the Firewall Blue (as well as all other versions) requires the Firewalla mobile app to work. And to use the app, you need a login account with Firewalla and all that implies — more below.
In return, you can manage your home network from anywhere in the world, as long as you have Intenet on your phone.
The app worked well in my testing. On my Pixel 3 XL, it launched fast and was always responsive. Most importantly it allowed access to all of the Firewalla Blue’s settings and features with an excellent level of detail.
But if you’re like me and prefer the web user interface, you can have that too.
Here’s how: On an Internet-connected computer, navigate a browser to my.firewalla.com, and you’ll get to a page with a QR quote. Now on your phone, run the Firewalla app, hit the Firewalla Web button to scan the quote, and voila, you can access the device’s web UI. The whole process is quite neat.
The web interface makes working with things easier since you can use a big screen and a set of mouse and keyboard. However, it has the same level of access as the mobile app.
Effective features, flexible controls
The Firewalla Blue has a lot of features and settings but the following are the prominent categories:
- Protects home devices from cyberattacks
- Content filtering and safe search
- Detailed insights into your home network
- Ad-blocking and data usage monitoring
- VPN server and clients
I tried them all out, and they worked, though not as you might imagine.
For example, the protection feature, called Active Protect, can only be turned on or off. It works behind the scenes, and you generally have no say in what it does and how it does it. But it did prove to be a layer of protection for the entire network, in my trial.
Content filtering allows for blocking Internet access, porn, social, gaming, video, and so on. And that worked. However, you can’t block a particular website, nor can you set up a comprehensive schedule. Instead, you can quickly invoke it on any or all devices, for an hour at a time.
The Ad Blocking feature kind of worked in my trial. It wasn’t super effective. While it blocked text and image ads, the frame of the ads still appeared. So if you hope to keep a web page uncluttered, that’s not gonna happen. Also, most video ads still got through.
The VPN feature also took a bit of work for me to set up. It’s easy enough for advanced users but still far harder than the TelePort feature found in Ubiquiti AmpliFi routers, such as the Alien. The Blue can work either as a VPN server or a VPN client, where it turns the entire network to be part of another at a remote location.
In all, I loved the flexibility of the app. For any of the available features and settings, you can set it up manually and apply that to a certain number of connected devices or all of them. Or you can also tap on a device, view its details, and then apply a setting manually.
Another thing worth noting is the level of detail. The Blue treats each suspicious activity as an alarm. You’ll get a notification when each happens. Or you can proactively view them all on the Firewalla app’s interface. And when you tap on one, you’ll see a ton of information about the event.
For example, I used a couple of Arlo security cameras that upload recorded security footage to Arlo’s server. Each time this happened the Blue detected data being transmitted out of the network and referred to that as an “Abnormal upload” alarm.
When I tapped on the alarm, not only I saw the time when the upload happed, the IP address of the destination server, the amount of uploaded data, the port that was used, etc., but also the location of the server on a world map.
Yes, I could find out all that information manually, but the idea here is that you can see everything in one place via just one tap. You could get used to that convenience fast. I know I did.
For this review, I used Firewalla Blue Plus for more than a week, and it was overall a fun and positive experience. That’s not to say the device is perfect. Here are a few things to keep in mind.
The privacy issue
First of all, like all firewall devices, the Firewalla virtually puts itself in between your router and the rest of your network. That means all of your Internet traffic, inbound and outbound, goes through it. Consequently, folks at Firewalla can collect a lot of information from you.
Reduced Internet speed
The Firewalla Blue / Plus will throttle your Internet down to slightly slower than the speed it can handle, which is 500Mbps.
In my case, I had a cable plan with over 600Mbps download. With the Blue plugged in, my broadband immediately reduced to below 500Mbps and remained that way. When I unplugged the Blue, within half a minute, things got back to normal.
That said, keep in mind that you’ll have to sacrifice a portion of your Internet bandwidth when using this device. And if you have a super-fast broadband connection, chances are you’ll lose everything over 500Mbps and then some.
That’s quite normal, however, and also what I experienced with other similar devices, such as the TrendMicro Home Network Security.
So, pick the Blue or Blue Plus only if you have 500Mbps or slower Internet. Else you should go with the Firewalla Gold or skip this type of device at all.
The Firewalla app, as mentioned above, is a bit oversensitive and treats almost everything that takes place within your network as an alarm.
As a result, if you opt to have the notification turned on, which is the default setting, be prepared to get bothered constantly. It can be ridiculous.
Indeed, every time somebody in your home starts a game, stream a video, search for something even slightly controversial, or just do whatever online, you’ll get a notification on the phone.
In my case, the uploads of the Arlo cameras alone were enough to drive me nuts.
Yes, you can turn the notifications off (which I did), but then, you will get no update even when something bad happens, unless you check with the app. It’s a bit of a dilemma.
For now, the notification is an all or nothing approach. Hopefully, the app will allow for picking and choosing when and what you’d like to be notified via updates.
As a home firewall box, the Firewalla Blue / Plus is way ahead of the Trend Micro Home Network Security, on all counts.
The device works well and is super user-friendly. In a way, it puts your entire home network in your palm for you to manage, at any given time, no matter where you are. And for that, it’s worth the relatively pricey one-time cost.
So, the only sticking point is the matter of privacy and the Blue’s slight adverse effect on the Internet speed. And that the call you have to make.
Personally, I decided to stop using the Firewalla despite the positive experience. For one, I can do most of what it has to offer manually. Most importantly, it recently took me quite a bit of effort to get to the 600Mbps download speed. I’m not gonna give that up easily.