F5F Stay Refreshed Power Users Networks Network rules and security settings can influence ping performance.

Network rules and security settings can influence ping performance.

Network rules and security settings can influence ping performance.

Pages (2): Previous 1 2
C
chaospony
Member
Find
149
09-23-2025, 01:25 AM
#11
I noticed a loose or damaged coax cable connecting my modem to the ISP hub. This wasn’t on my radar before. I’m going to investigate further and find out what’s causing the issue!
Reply
Reply
C
chaospony
09-23-2025, 01:25 AM #11

I noticed a loose or damaged coax cable connecting my modem to the ISP hub. This wasn’t on my radar before. I’m going to investigate further and find out what’s causing the issue!

Reply
Reply
I
Infliction
Junior Member
Find
7
09-29-2025, 09:48 PM
#12
Now that you mention it... I believe you're correct. It was quite late in the evening.
Reply
Reply
I
Infliction
09-29-2025, 09:48 PM #12

Now that you mention it... I believe you're correct. It was quite late in the evening.

Reply
Reply
E
Ender_Girl_LAF
Member
Find
190
09-29-2025, 10:43 PM
#13
Haha, I noticed the same thing at the start too.
Reply
Reply
E
Ender_Girl_LAF
09-29-2025, 10:43 PM #13

Haha, I noticed the same thing at the start too.

Reply
Reply
M
MagicKitties1
Member
Find
145
09-30-2025, 02:58 AM
#14
The edge router logs indicate potential issues such as link drops and DHCP lease timeouts. Investigate the NAT configuration—whether it's at the modem, ERX, or double NAT. Use the CLI to check ARP entries and confirm your gateway's MAC address matches expectations. Ensure your modem isn't consuming the 10/8 IP space and that it's not leaking internally. If needed, disconnect the ERX interface hosting your gateway and verify the IP remains reachable.
Reply
Reply
M
MagicKitties1
09-30-2025, 02:58 AM #14

The edge router logs indicate potential issues such as link drops and DHCP lease timeouts. Investigate the NAT configuration—whether it's at the modem, ERX, or double NAT. Use the CLI to check ARP entries and confirm your gateway's MAC address matches expectations. Ensure your modem isn't consuming the 10/8 IP space and that it's not leaking internally. If needed, disconnect the ERX interface hosting your gateway and verify the IP remains reachable.

Reply
Reply
F
Fred10244
Posting Freak
Find
937
10-02-2025, 06:01 PM
#15
I'm focusing on the northern part of that device. I should check the routing and interface settings on your Netgear. It seems like it might be assuming it has the wrong IP address.
Reply
Reply
F
Fred10244
10-02-2025, 06:01 PM #15

I'm focusing on the northern part of that device. I should check the routing and interface settings on your Netgear. It seems like it might be assuming it has the wrong IP address.

Reply
Reply
M
Marinated
Senior Member
Find
666
10-02-2025, 08:48 PM
#16
This Netgear model doesn't support any configuration settings I've discovered so far. It doesn't function as a DHCP server either; that responsibility falls to Edgerouter. All updates and settings are pushed directly from my ISP. I've experimented with firewall adjustments and noticed a loss of access to speedtest.net via one of the ports. I'm unsure which port is affected: LAN-to-WAN: Allow as specified. HTTP and HTTPS (ports 80, 443) DNS (port 53) NTP (port 119, 123) email (ports 25, 110, 143, 465, 587, 993, 995) VPN (GRE, UDP 500, 4500, 62515, TCP 1723) iTunes (port 3689) WAN-to-LAN: Block all unrelated traffic and activate IDS. When I slightly relaxed the firewall rules, speedtest.net became accessible again: LAN-to-WAN: Allow all. WAN-to-LAN: Block as outlined and activate IDS. IDENT (port 113) ICMP requests for peer-to-peer apps: kazaa - (TCP/UDP 1214) bittorrent - (TCP port 6881-6999) gnutella - (TCP/UDP 6346) vuze - (TCP port 49152-65534). I also have additional policies in place, though they're limited to LAN-only and unrelated traffic. I genuinely hoped this issue stemmed from my own mistakes, but increasingly I feel I have to accept that cable internet isn't ideal. The pandemic has made throttling a major concern, especially with school online and many adults working remotely. I've confirmed with my ISP that my local node appears to be overloaded with traffic now that online learning is widespread.
Reply
Reply
M
Marinated
10-02-2025, 08:48 PM #16

This Netgear model doesn't support any configuration settings I've discovered so far. It doesn't function as a DHCP server either; that responsibility falls to Edgerouter. All updates and settings are pushed directly from my ISP. I've experimented with firewall adjustments and noticed a loss of access to speedtest.net via one of the ports. I'm unsure which port is affected: LAN-to-WAN: Allow as specified. HTTP and HTTPS (ports 80, 443) DNS (port 53) NTP (port 119, 123) email (ports 25, 110, 143, 465, 587, 993, 995) VPN (GRE, UDP 500, 4500, 62515, TCP 1723) iTunes (port 3689) WAN-to-LAN: Block all unrelated traffic and activate IDS. When I slightly relaxed the firewall rules, speedtest.net became accessible again: LAN-to-WAN: Allow all. WAN-to-LAN: Block as outlined and activate IDS. IDENT (port 113) ICMP requests for peer-to-peer apps: kazaa - (TCP/UDP 1214) bittorrent - (TCP port 6881-6999) gnutella - (TCP/UDP 6346) vuze - (TCP port 49152-65534). I also have additional policies in place, though they're limited to LAN-only and unrelated traffic. I genuinely hoped this issue stemmed from my own mistakes, but increasingly I feel I have to accept that cable internet isn't ideal. The pandemic has made throttling a major concern, especially with school online and many adults working remotely. I've confirmed with my ISP that my local node appears to be overloaded with traffic now that online learning is widespread.

Reply
Reply
O
OwnageHosting
Member
Find
60
10-03-2025, 05:23 AM
#17
It seems performance drops once the tracert leaves your local network and reaches the destination. This likely points to problems with the ISP’s network under stress. Think about these factors: Have you refreshed the firmware on the ER-X? Are there any intrusion detection or prevention systems active? You’ve turned on hardware offloading, but did you also configure Smart Queue Management?
Reply
Reply
O
OwnageHosting
10-03-2025, 05:23 AM #17

It seems performance drops once the tracert leaves your local network and reaches the destination. This likely points to problems with the ISP’s network under stress. Think about these factors: Have you refreshed the firmware on the ER-X? Are there any intrusion detection or prevention systems active? You’ve turned on hardware offloading, but did you also configure Smart Queue Management?

Reply
Reply
G
ghkth2121
Junior Member
Find
49
10-03-2025, 08:13 AM
#18
Yes, the ERX is using the newest firmware as per Ubiquity 2. What you observe in the thread matches what I see. I don’t rely on any extra software firewall besides the built-in OS.

I haven’t turned on smart queue. My experience shows it’s helpful when a single client or VLAN consistently uses most of the bandwidth, though that doesn’t apply to my setup.
Reply
Reply
G
ghkth2121
10-03-2025, 08:13 AM #18

Yes, the ERX is using the newest firmware as per Ubiquity 2. What you observe in the thread matches what I see. I don’t rely on any extra software firewall besides the built-in OS.

I haven’t turned on smart queue. My experience shows it’s helpful when a single client or VLAN consistently uses most of the bandwidth, though that doesn’t apply to my setup.

Reply
Reply
Pages (2): Previous 1 2