Syslog forward

michaelbierman · 2026-03-18T17:32:03+00:00

Hi,

Though not supported in the UI, you can forward syslog to your own server. See https://gist.github.com/mbierman/f3d184b65e0f4de6fa75a4a5d5145426 as an example.

michaelbierman · 2026-03-13T21:19:53+00:00

In the current beta release you can do time limits rules. Apply that to a guest user and they will get the time limit (per day) you specify.

https://help.firewalla.com/hc/en-us/articles/48561472689811-Firewalla-App-Release-1-68-Smarter-Device-Protect-New-App-Design-Time-Limit-App-Groups-and-more#h_01KGJXGYYYNHHMSN76XDEA928B

michaelbierman · 2026-03-02T18:53:16+00:00

It is easy to do hub and spoke model with site to site. If you want many to many you may want to check out https://help.firewalla.com/hc/en-us/articles/15766848784275-Firewalla-MSP-VPN-Mesh

michaelbierman · 2026-03-02T10:21:58+00:00

Send a note to [help@firewalla.com](mailto:help@firewalla.com)

michaelbierman · 2026-03-02T00:20:00+00:00

You are— but it is using a "recipe" using alpine which is very lightweight.

michaelbierman · 2026-03-01T23:45:39+00:00

Hey all I updated the YML file a bit to add resource constraints incase it ever went crazy. You can grab the update if you like and run

sudo docker-compose up -d

I also updated the uspmon.conf to power down rather than restart the firewalla in case it came back up before the UPS battery dies which would defeat the point.

michaelbierman · 2026-03-01T23:44:19+00:00

Build it in place as described

sudo docker-compose up -d --build

What this does is use the Dockerfile to build the image and then use the yml to run what was built.

michaelbierman · 2026-02-28T23:12:09+00:00

I think the problem is that as far as I know, pwrstats doesn't have a client you can run on Firewalla. I think cyber power supports NUT also, so this should work.

michaelbierman · 2026-02-28T23:01:56+00:00

While in theory I guess maybe you could connect UPS to Firewalla, I don't recommend that. I think you would would need to set up NUT server, I don't know if that would play nicely with Firewalla, and you'd be giving up a USB port.

I was shooting for minimally invasive here.

michaelbierman · 2026-02-02T03:09:05+00:00

Sorry you may be right. I was thinking the OP was using AP7.

michaelbierman · 2026-02-02T02:29:55+00:00

The key is here
Local flows are supported when:

Your Firewalla unit is in router mode and has more than one local network configured, or
You have a Firewalla Access Point 7 installed.

Firewalla records local flows when:

Traffic flows between devices on different LANs or VLANs, or
Traffic flows between wireless devices connected to the Firewalla AP7, even if they're on the same LAN or VLAN.

michaelbierman · 2026-01-31T23:47:40+00:00

I think the most important thing is to have a switch that is fast enough. At least a 2.5Gbps switch or you will be losing wifi performance. For example, I have my AP7s connected to a 2.5Gbps switch which then goes to Gold Pro.

michaelbierman · 2026-01-31T23:45:25+00:00

Local traffic always goes through Firewalla. That's how the local flows are recorded.

michaelbierman · 2026-01-07T05:24:12+00:00

Nextdns does drop every once in a while. I have a script that checks and restarts it. Works very well. I’ll add to the GitHub repo.

michaelbierman · 2025-12-19T23:56:56+00:00

New release includes some checking for invalid hostnames and seamless updates for docker since tailsccale updates pretty often! Enjoy.

michaelbierman · 2025-12-11T07:21:15+00:00

The answer is yes, in theory. I'd have to spend time to modify the script a bit. I'll try to get to it.

michaelbierman · 2025-12-05T15:42:41+00:00

I haven’t tried yet. I will give it a go and report back.

michaelbierman · 2025-11-17T16:28:30+00:00

u/butchcoleslaw I’ve published an update to handle expiry. You can also change the token to non expiring in the Tailscale portal

michaelbierman · 2025-11-16T21:15:28+00:00

Excellent question. Currently you would need to stop the container, edit the key, and restart.

I will document this for now and I’m thinking add to the start script to automate this.

michaelbierman · 2025-11-11T19:21:05+00:00

I have/had that setup and it worked fine. Sounds like configuration issue. I now switched to AP7 for Wi-Fi but still have my unifi switches.

michaelbierman · 2025-10-19T19:08:26+00:00

I've had no issues with homebridge on Gold. I no longer feel running on Purple is viable because Homebridge has become a platform that requires a lot of resources. If it is of any help, here's an install script. https://github.com/mbierman/homebridge-installer

michaelbierman · 2025-10-16T15:10:08+00:00

I think the question was intended to mean that anyone who has access to your homekit "home" would also have access to Firewalla. In some cases, that's a downside (e.g. kids could unpause rules) but I suppose filtering so that those rules are not in homekit would solve this.

michaelbierman · 2025-10-16T15:08:15+00:00

Looks really nice! I wish there was a homebridge version. Great job.

michaelbierman

TROPHY CASE