UDM pro: How to modify or delete firewall rules?

There is an api but otherwise point and click.

https://github.com/Art-of-WiFi

@slooffmaster

Even the USG CLI would not help as your rules are stored in the controller and would just come right back the next time it provisioned.

@joostman if you want CLI based mgmt, that's the edge line of router.

manually blocking IP's ? you should use groups.

I did it the wrong way 😊 I first blocked a lot and now found out that using groups would save me a lot of rule-lines.

Now I have implemented those blocking groups (like 40 networks I have added) but now I want to clean up the mess, by removing the duplicates (the ip addresses which are in a blocked network) I still have from this action.

I have done some looking around on bulk removal of firewall rules in the SDN app also and not found it. Same reason as @joostman I blocked by grouping and need to delete a stack of individual IP's now. Even my old basic crap ISP provided modem allowed me to select multiple firewall rules and delete them all at once.

Is there a way to do this in the SDN Application? If not, we really need this added.

To the OP Not sure the UDM Pro is "more advanced" than cisco or other routers. It is an entirely different product as it works on Software Defined Network (SDN) rather than each switch being individually configured in what is essentially a firmware. You do need to do it in the GUI as there is no effective CLI way to do it with the UDM Pro or similar Unifi OS devices.

I tend to agree but would add that if would be great if unifi added a custom only rule set radio that returned the firewall to a default deny all state from where a complete set of custom FW rules could be constructed.

In the normally unchecked state it would continue to auto load the current set of intervlan routing allowed accounting rules as exists by default now.