As an Intrusion Detection System (IDS), Firewalla monitors your network and alerts you when it detects malicious activities and vulnerabilities. As an Intrusion Prevention System (IPS), Firewalla will automatically identify and block risky connections.
That'd be a neat trick on a mere 2GB device (Firewalla Purple SE). I already get the majority of those benefits by using Quad9's anti-malware filtering, DNSSEC using dnscrypt-proxy via DOH. They update their threat lists faster than any single hardware provider, I'm sure.
Keep in mind GL.iNet doesn't even support QOS ATM I wouldn't hold my breath. That's the only major distinction I'm seeing enough to care about... beyond not being tied to a blasted phone app to use a glorified router permanently tethered to 'cloud services' for its functionality.