Most modern firewalls have great reporting, but the way eBlocker works the firewall sees a lot of the traffic for devices as coming from the eBlocker so the stats and analysis are all off. I would love to either see the eblocker functionality changed so that the firewall knows the actual source device or have some of the reporting capabilities on the eblocker so you can better determine which devices are doing what. For example:
- DNS resolution requests by device so you can see which devices are trying to get where.
- Connection destinations by device for the cases where a device connects directly to an IP with no DNS request.
- Data transfer target IP, direction (in/out) and amount of data by device
- List Blocks by category (ad, tracker, malicious, all) by device for each device
This would allow you to get a real understanding of what is happening on your network.
DNS resolution requests by device so you can see which devices are trying to get where.
This is coming up as Personal Device Firewall with eOS 2.7. Next to the DNS analytics you can individually block certain domains device individually.
Connection destinations by device for the cases where a device connects directly to an IP with no DNS request.
We actually discussed if users would understand blocking IPs, certain ports or protocols. We decided to keep focus on regular users rather than network geeks with demand to block ICMP to XYZ IP. That's rather pfsense feature scope - which can be used with eBlocker jointly btw.
THX for you great contributions!