I apologize for bad English, I use computer translation.
The product is just great, greatly simplifies the administration process.
But there are a few comments and questions.
- Firezone works with nftables firewall. Previously, we had firewall rules configured to prevent unauthorized access. After installation, Firezone behaved a little differently than expected - the settings of the “Rules” tab did not affect the work of clients in any way. We simply took the source code of the nftables config script and added the name of the physical interface to the rules wherever necessary so that they only affect that interface and not everything that is discovered (including wg-firezone). This allowed the system to operate within the established fire zone rules for nftables. As such, I would recommend doing the same for the “wg-firezone” interface in Firezone’s auto-enforced rules.
- I did not find a description of the version upgrade process in the documentation. Maybe I didn’t search well. If it doesn’t make it difficult, tell me how to update the Firfezone version?
- There is still a lot of work to be done on the statistics pages for users and their devices. If possible, I will talk with our programmers, maybe they will join the discussion of this issue. But it all depends on the desire and employment of our programmers. I have not discussed this issue with them yet.
Good luck! Firezone deserves a lot of popularity.