Firewall extended logging and configuration
I would really appreciate it if the logging would contain more information.
I can see that for example large ping attacks it drops the packets and thats great but i miss information like the IP-address from which the attack originated.
This kind of information is helpful to block future attacks and narrow down the attack spectrum.
Further more i miss the ability to have an advanced firewall config. ACL's are nice but not the same as the firewall rules.
I want to be able to say -> Allow from source (internal device) to Destination (internet) these ports and protocol's. Now i am unable to do this.
Also is the ACL not really something that is easy to understand and offcourse it doesn't have to be easy but for example in Ubiquity this is way easier to handle.
Also if the Firewall was more configurable i could arrange for example that specific VLAN's or devices are not allowed to connect to internet.
Thank you for reading.