I really would like to see more information given in the firewall logging, at the very least a source IP address of where the attack is coming from and the WAN port it is arriving on The current logs for the firewall are a bit useless - something happened and thats about it.
If i know the IP address I can at least then put a deny rule on the firewall to either an IP or network.
While on the subect of seeing what is going on an established NAT sessions table would alse be a useful addition.
The insights and logs are not particularly brilliant - work is needed - I would suggest having a look at the Unify interface which is way more intuitive and polished.
Hopefully this can be looked at.