MikroTik

What about group rules (in firewall filter, nat, mangle - and may be other rules lists)?
For example groups like Forefront TMG 2010.
Or different colors for rules (the rules in the same / similar purposes can be the same color).
The colors of course can be disabled ("classic style") in WinBox interface.

and please, please, PLEASE, can you make grouping addresses in ip-firewall-address list? If some address lists has more than 1000 addresses, it would be very useful.

What do you think?

Some kind of grouping for firewall rules can be achieved using different chains. And then you can use filter to see only selected one. I'm sure it could be improved in some way, but I don't know how exactly. Because now it's the choice between seeing everything (which can be too much) or just one chain (possibly too little) and nothing in between.

Colored rules could be useful. It would allow users to make it look like circus, but it would be everyone's choice. When used responsibly, it could sometimes help.

The issue is resources. nice to have, highly desirable, essential and assign resources appropriately.
I am sure that if the OP pays for a programmers wages for 6 months, Normis may make an exception LOL

what about color comments like in pfSense? It is also will be helpful.

Some kind of grouping for firewall rules can be achieved using different chains. And then you can use filter to see only selected one. I'm sure it could be improved in some way, but I don't know how exactly. Because now it's the choice between seeing everything (which can be too much) or just one chain (possibly too little) and nothing in between.

Colored rules could be useful. It would allow users to make it look like circus, but it would be everyone's choice. When used responsibly, it could sometimes help.

Colored rules could be useful. It would allow users to make it look like circus, but it would be everyone's choice. When used responsibly, it could sometimes help.

++

I normally split my firewall rules into different chains and I insert rules like this as separator:

add action=log chain=------------ comment=------------------

These can serve the same purpose as the colored lines in the above example and you could use a descriptive text as part of the comment.
By grouping firewall rules into different chains you can also often improve the performance over having everything in a single chain.

(e.g. you put a rule like "add action=jump chain=input in-interface-list=internet jump-target=input-inet" in your input chain and then have
a separate chain input-inet for all input from internet, which does not have to check the input interface for each match, and also is not
called at all for traffic from your LAN)

Nice one, in absence of anything better, that is very good!

You are very hopeful I must say
Cause it's 2023 and still no native way of having dark mode enabled in WinBox on windows and you are hoping for colored rules

I almost exclusively use WinBox, so this was tailored to look good in WinBox.

I use a bunch of chains, and most of them end with a "Drop everything" rule. I follow that with one more rule that never sees any packets (since the previous rule is a drop everything) that has a really long comment that is massively obvious in WinBox. I originally put the really long comment on the drop everything rule, but because of the way WinBox displays the comment on the row above the actual rule, it made it look like the Drop everything rule was part of the next chain. So for example, here is the end of my Input chain.