|
I'm beginning to wonder if the vendors make the modem/routers poo poo on purpose. The whole Actiontech scandal of having a tiny NAT table would only matter to people running torrents or accessing multiple game servers. For general surfing and email it's fine. It was only corrected after a majority of people bitched about it and it threatened to give FIOS a 'gotcha' over cable. Binary Badger fucked around with this message at 03:07 on Jun 9, 2012 |
# ? Jun 9, 2012 02:02 |
|
|
# ? Apr 24, 2024 00:13 |
|
Star War Sex Parrot posted:They're probably the exact same modem, just that the 6141 is brown-boxed as a TW OEM cable modem. Thanks. I'm normally a lot more willing to tweak with stuff, but I've been so frustrated by my mystery disconnections that I'm at my wits end. I installed the SB6121 today and it took about 30m on the phone with comcast to get it to work. Funny bugger assigned a 192.168.100.x address to my router until the network came up, and then gave it a public IP. In the mean time my router filled it's NAT forwarding table with the 192.168.100.x address, so when the IP changed to the real one it got very confused. Clearing the NAT translation tables fixed it, but it was pretty confusing to see 192.168.100.x outbound packets for a while. I was able to download a thing without being disconnected, so good news so far...
|
# ? Jun 9, 2012 02:02 |
|
Nostrum posted:I just upgraded to Time Warner's Wideband (50/5) internet, and it comes with a Surfboard SGB6580 integrated unit. It lasted 1 day because it was constantly resetting, it couldn't maintain a connection for more than 5 minutes. I took it back and forced them to give me a plain DOCSIS 3 modem (a Motorola SB6141) and it's been working perfectly ever since. Solid speeds and absolutely zero issues with my Netgear 3700. I have the same problem, same model in bridge mode on RoadRunner/TWC, but they refuse to replace it with anything but the exact same Motorola piece of poo poo. It's a firmware issue that effects users on other ISPs too. I'm fighting for them to allow me to install my own modem (apparently not allowed in my market?). Thottling the upstream seems to help a lot and that's how I've been using it for a while now.
|
# ? Jun 9, 2012 03:03 |
|
NOTinuyasha posted:I have the same problem, same model in bridge mode on RoadRunner/TWC, but they refuse to replace it with anything but the exact same Motorola piece of poo poo. It's a firmware issue that effects users on other ISPs too. I'm fighting for them to allow me to install my own modem (apparently not allowed in my market?). Thottling the upstream seems to help a lot and that's how I've been using it for a while now. I just plugged it in and it worked perfectly, no setup or anything. You might be able to just buy a modem and plug it in to see if it works. It probably will! gently caress 'em if they tell you they can't, the customer service people at TWC don't know poo poo about anything, especially the Wideband service. Literally most of them don't even know it exists.
|
# ? Jun 9, 2012 06:10 |
|
Most service reps I've talked to don't even know that installing your own modem exists anywhere. In my market the modem+installation is free so nobody ever asks about it. That being said, I still don't understand why I get contradicting answers, someone (or everyone) is just making poo poo up. I might give it a try but I still think I need to activate the modem over the phone.
|
# ? Jun 9, 2012 07:57 |
|
Fffff, so heres my deal, I've got a WRT310Nv2 that is giving random people on the network certificate errors, and giving error 400 (bad request) on common pages. Flushing the DNS works 3 times out of 7, and cycling the power works 4 out of 7, and its getting pretty frustrating. Updated the firmware, doublechecked that everything is passworded and locked up so only the select in the appartment have access but the router continues to be a pain. Anyone have any ideas as to what might be going on? Going straight through the modem yields must faster speeds and no errors.
|
# ? Jun 9, 2012 09:49 |
|
What kind of certificate errors?
|
# ? Jun 9, 2012 18:48 |
|
The OP has the WNR3500L for $65. You can get the WNR3500Lv2 for the same $65. Upgrades include 8mb->128mb of flash, 64mb->128mb of RAM. Otherwise it seems largely the same, but for the same price might as well get the current version. DemonMage fucked around with this message at 22:18 on Jun 9, 2012 |
# ? Jun 9, 2012 22:07 |
|
Ninja Rope posted:What kind of certificate errors? Invalid security certificates. Happening on three computers on the network, paypal, facebook, on top of the error 400 bad requests.
|
# ? Jun 9, 2012 23:26 |
|
I may be being paranoid but that is a lot like what you would see if you were being "attacked". Can you open up a cmd window and run: nslookup paypal.com nslookup facebook.com ping paypal.com ping facebook.com And paste the results here? There's nothing secret in the results, it's just where your computer thinks it should go to access those sites. Of course if someone is paying active attention, they'll read this post and yours before it and know you're on to them and stop what they're doing... Edit: And make sure the date on your PC is correct, while you're at it.
|
# ? Jun 9, 2012 23:59 |
|
Ninja Rope posted:I may be being paranoid but that is a lot like what you would see if you were being "attacked". Date is set up correctly, double checked. >nslookup paypal.com Server: UnKnown Address: 192.168.1.1 Non-authoritative answer: Name: paypal.com Addresses: 173.0.88.35 173.0.84.3 173.0.84.35 173.0.88.3 >nslookup facebook.com Server: UnKnown Address: 192.168.1.1 Non-authoritative answer: Name: facebook.com Addresses: 2a03:2880:10:8f01:face:b00c:0:25 2a03:2880:2110:3f01:face:b00c:: 2a03:2880:10:1f02:face:b00c:0:25 69.171.224.37 69.171.229.11 69.171.242.11 66.220.149.11 66.220.158.11 >ping paypal.com Pinging paypal.com [173.0.88.3] with 32 bytes of data: Request timed out. Request timed out. Request timed out. Request timed out. Ping statistics for 173.0.88.3: Packets: Sent = 4, Received = 0, Lost = 4 (100% loss), >ping facebook.com Pinging facebook.com [66.220.158.11] with 32 bytes of data: Reply from 66.220.158.11: bytes=32 time=85ms TTL=244 Reply from 66.220.158.11: bytes=32 time=85ms TTL=244 Reply from 66.220.158.11: bytes=32 time=85ms TTL=244 Reply from 66.220.158.11: bytes=32 time=86ms TTL=244 Ping statistics for 66.220.158.11: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 85ms, Maximum = 86ms, Average = 85ms
|
# ? Jun 10, 2012 00:06 |
|
Great. That all looks correct, but rather than just tell you what I think I'll what I did so next time this comes up you/whoever can check yourself. So according to your DNS server at 192.168.1.1, which nslookup queried, the IP addresses for paypal.com are 173.0.88.35 and 173.0.84.3. To check who owns those IPs run "whois" on each address. Linux and BSD and maybe OSX have a whois tool, or you can google for whois, or just go here (which is a front-end to ARIN, but ARIN doesn't seem to offer an SSL version). Punch in the first address and select the IP address radio button and this is what we get: https://www.networksolutions.com/whois/results.jsp?ip=173.0.88.35 posted:NetRange: 173.0.80.0 - 173.0.95.255 All that looks pretty legit. It could be fake, but it's not too likely. Do the same for the Facebook IP addresses (the ones with the dots, ignore the ones with the colons) and check those, but they also look okay. Now look at the output from the ping commands. Did the ping for paypal pick one of the IP addresses that nslookup printed out? Looks like it, same for facebook. This rules out any hosts file manipulation, WINS bullshit, and possibly bad cached DNS entries. It looks like your computer is at least resolving names correctly, at least right now. Are you using Firefox? Do you get the "This Connection is Untrusted" page? What does it say under "Technical Details"? There's still a bunch of other things to check for, like arp poisoning, proxy servers, bad LSP drivers, etc. But this is a start I guess.
|
# ? Jun 10, 2012 02:14 |
|
Ninja Rope posted:Great. That all looks correct, but rather than just tell you what I think I'll what I did so next time this comes up you/whoever can check yourself. I had to try a few times to get it to finally fail, it's pretty random, but across all of the browsers I have: Chrome: Can't open the page period, Bad Request Firefox: Can't open the page period, Bad Request IE: Gives the security certificate pop-up sometimes, others it just wont open The paypal link that fails constantly is an embeded link on another forum: https://www.paypal.com/cgi-bin/webscr Half the time it loads no problem, but for some reason I'm guessing its enough for the browser to refuse to open the page as a whole?
|
# ? Jun 10, 2012 02:25 |
|
Uber Kosh posted:Edit: Resolved. I was going to reply to your original post with suggestions, so just for my own curiosity, did turning off PPPoE on the computer and using DHCP fix your issues?
|
# ? Jun 10, 2012 03:15 |
|
DemonMage posted:The OP has the WNR3500L for $65. 128 mb of flash is rather spacious. I'll look at updating this in the next week.
|
# ? Jun 10, 2012 04:22 |
|
I flashed my router to dd-wrt a little while back, and it's working perfectly for the most part. I'm having trouble getting port forwarding set up, though. I have sshd set up on my desktop that I use for sweet sweet tunneling at work, but my connection always times out when I try to connect using my public IP address. I can always connect using the private IP when I'm at home, so it's not a server issue. Here's the rule I have set up: I've tried setting this up on both the Port Forwarding and the Port Range Forwarding tabs with the same results. What am I doing wrong here?
|
# ? Jun 10, 2012 05:36 |
|
Work bought me an E3200 to mess around with. The stock firmware (1.0.04) is marketed as 'IPv6 ready'. It's enabled by default with an 'automatic' mode that worked with my DHCPv6-PD test without any configuration. It's the first time I've seen IPv6 support that well integrated on a home router. TomatoUSB/Shibby has broken DHCPv6-PD, and DD-WRT lacks it completely
|
# ? Jun 10, 2012 06:43 |
|
stubblyhead posted:I flashed my router to dd-wrt a little while back, and it's working perfectly for the most part. I'm having trouble getting port forwarding set up, though. I have sshd set up on my desktop that I use for sweet sweet tunneling at work, but my connection always times out when I try to connect using my public IP address. I can always connect using the private IP when I'm at home, so it's not a server issue. Here's the rule I have set up: when you connect to the public address, are you pinging from your local computer or a computer on a remote network (like at work)? I'm guessing remote but if its on your lan, it might be a loop-back issue.. If its not that, is your router hooked to a modem or a modem all in one? If its an all in one, is it getting a public ip or a private ip, which would suggest double nat?
|
# ? Jun 10, 2012 06:57 |
|
fagalicious posted:when you connect to the public address, are you pinging from your local computer or a computer on a remote network (like at work)? I'm guessing remote but if its on your lan, it might be a loop-back issue.. Same behavior whether I'm remote or hitting the public address from within the lan. I may have been unclear before, but this was working fine on the stock firmware. Flashing to dd-wrt is the only thing that has changed. FWIW it's a plain old cable modem.
|
# ? Jun 10, 2012 07:39 |
|
Maybe a dumb question, but did you click "Save" and "Apply" at the bottom of the dd-wrt port forwarding page? Tried a 30/30/30 reset?
|
# ? Jun 11, 2012 01:56 |
|
Tapedump posted:Maybe a dumb question, but did you click "Save" and "Apply" at the bottom of the dd-wrt port forwarding page? Also, maybe SSH is enabled for dd-wrt under remote access, and it's conflicting?
|
# ? Jun 11, 2012 02:38 |
|
What's the best way for me to make sure my network is secure now that I've got a wireless AP supplementing my wired network? I'm running a Linksys WRT54G2, not broadcasting the SSID and have WPA2 personal security on with a 30-character mixed case alphanumeric password. Is that enough or are there other things I should be doing? Not running tomato.
|
# ? Jun 11, 2012 02:45 |
|
modeski posted:What's the best way for me to make sure my network is secure now that I've got a wireless AP supplementing my wired network? You should disable WPS That article says the WRT54G2 was still vulnerable to the WPS attack even when WPS was supposedly turned off. A third party firmware like dd-wrt or tomato doesn't support WPS at all, so you'd be ok that way. lazydog fucked around with this message at 03:19 on Jun 11, 2012 |
# ? Jun 11, 2012 03:16 |
|
Okay, networking is like voodoo to me, so excuse me if this is a dumb question. I've been burnt buying hardware before, since apparently it's cool to say your magic boxes can do stuff but then have them not do it once they're unpacked, and then to have your own support hotline call your customers liars when they tell you that menu doesn't god drat exist. I need some sort of super powerful access point to cover a huge old stone house. It needs to plug in to an existing wired network and then just use that to create a wireless network. Will http://www.scan.co.uk/products/netgear-wg103-100uks-prosafe-11g-access-point-inc-wds-and-snmp-for-advanced-network-management do that? And not have some stupid rear end Netgear Genie menu or whatever? (Most powerful thing I could find before spending £100+ on some D-link stuff).
|
# ? Jun 11, 2012 04:26 |
|
lazydog posted:Also, maybe SSH is enabled for dd-wrt under remote access, and it's conflicting? Nope, ssh is diasbled. I thought maybe it was actively refusing connections on that port, so I enabled sshd and moved it to port 2222, but still nothing. I've tried save, apply settings, and both. I would really hope that a 30/30/30 reset would not be required for something as simple as a new port forwarding rule, but I'll give that a shot later on.
|
# ? Jun 11, 2012 04:55 |
|
LittleBob posted:Okay, networking is like voodoo to me, so excuse me if this is a dumb question. I've been burnt buying hardware before, since apparently it's cool to say your magic boxes can do stuff but then have them not do it once they're unpacked, and then to have your own support hotline call your customers liars when they tell you that menu doesn't god drat exist. You seem to be wanting to spend a fair bit on a business class wireless router. Why not use a Netgear 3500L from the op or 3700 if you want 2.4 GHz and 5 GHz wireless? Cheaper, does what's marked on the box, more features, faster and there's no reason to use that genie program provided you can log into the router.
|
# ? Jun 11, 2012 04:55 |
|
Devian666 posted:You seem to be wanting to spend a fair bit on a business class wireless router. Why not use a Netgear 3500L from the op or 3700 if you want 2.4 GHz and 5 GHz wireless? Cheaper, does what's marked on the box, more features, faster and there's no reason to use that genie program provided you can log into the router. Simply because these offices seem to be some sort of horrible wireless trap, some of the internal walls are granite and so on. I asked if I could run cable and have several APs across the floors, but it's historical and they said no. Their current solution actually is a WNDR3700 with a WNR2000 repeater, and it's not giving them the coverage they need. So, I was basically looking towards more powerful business units since features aren't so important and hoping I can find something powerful enough without having to spend huge amounts of money (charity office).
|
# ? Jun 11, 2012 05:11 |
|
Not much you can do if the walls are a part of the heritage features. The issue with wireless is it's going to struggle, I know the 3700 doesn't necessarily have the most powerful wireless coverage but I'm not sure which ones do (it can change depending on hardware version, etc). The other solution to consider is power line networking. Depending on the quality of wiring in the office area you might be able to get it working with reasonable speeds then connect wireless to the network that way. I am assuming that there is some sort of appropriately installed power wiring to run the office. If the wiring is good you'll get a fast connection, otherwise the connections are similar to wireless performance. I am also assuming that something is better than nothing.
|
# ? Jun 11, 2012 05:38 |
|
stubblyhead posted:Nope, ssh is diasbled. I thought maybe it was actively refusing connections on that port, so I enabled sshd and moved it to port 2222, but still nothing. I've tried save, apply settings, and both. I would really hope that a 30/30/30 reset would not be required for something as simple as a new port forwarding rule, but I'll give that a shot later on. Do you need to add an allow rule to the firewall part, too? I don't know much about dd-wrt.
|
# ? Jun 11, 2012 06:48 |
|
Ninja Rope posted:Do you need to add an allow rule to the firewall part, too? I don't know much about dd-wrt. Did not consider that it might be firewall related, thanks for the suggestion. I just disabled it though, and I still cannot connect.
|
# ? Jun 11, 2012 07:02 |
|
Why are you using a port range forward for a single port? Edit: Oh. Edit The Second: Post the router model and maybe we can suggest a newer DD-WRT version for you to try!
|
# ? Jun 11, 2012 07:07 |
|
NOTinuyasha posted:Why are you using a port range forward for a single port? It's a dlink DIR-615, current dd-wrt version is DD-WRT v24-sp2 (11/21/10) std (SVN revision 15778).
|
# ? Jun 11, 2012 07:12 |
|
The DIR-615 has a bunch of different hardware versions, which one?
|
# ? Jun 11, 2012 07:19 |
|
NOTinuyasha posted:The DIR-615 has a bunch of different hardware versions, which one? Oh, right. It's E1.
|
# ? Jun 11, 2012 07:36 |
|
Then this would be the latest SVN build: http://www.dd-wrt.com/dd-wrtv2/downloads/others/eko/BrainSlayer-V24-preSP2/2012/06-08-12-r19342/dlink-dir615e1/dir615e1-firmware.bin They don't test individual models very well with each compile though so it could very well introduce worse issues or just break it completely. You don't need to 30/30/30, just check 'reset after flashing' on the upgrade page.
|
# ? Jun 11, 2012 07:43 |
|
I'm unimpressed with the new airport express. It's too expensive for too little features.
|
# ? Jun 12, 2012 00:48 |
|
OK, so I think this fits into home-class networking. Basically, I've got to supply internet to my fraternity house, a converted apartment building. Currently the Internet is really kludgy...mostly because it's Comcast Business with the incredibly lovely stock SMC gateway, and a pfSense-based router that utter morons have attempted to administer since I've left. I was thinking either of deploying some type of router that would let me take care of my own critical devices on their own network(a camera DVR box and access-control system), and just pass through a single cable for the residents to use their own router with. But recently, I've been thinking of just deploying a router and managing it remotely, I have not quite decided yet. I do need some effective QoS capability, because the bandwidth is limited and torrents will take it down very quickly. I would also need to isolate some devices on their own subnet/VLAN as well (camera DVR/access control/etc) to ensure my remote access is never disrupted. So I guess, suggestions on a good router that'll do what I need? I was recommended Juniper SRX or J-series by some friends who do IT for a living, but I was hoping to keep costs down.
|
# ? Jun 12, 2012 05:24 |
|
How much bandwidth are you going to do? Juniper gear isn't really in the same league as the stuff in the rest of this thread.
|
# ? Jun 12, 2012 07:18 |
|
Ninja Rope posted:How much bandwidth are you going to do? Juniper gear isn't really in the same league as the stuff in the rest of this thread. That's what I thought (it being a little too high-end). I think Comcast Business maxes out at 50Mbps or so, so maybe 50/10 at most?
|
# ? Jun 12, 2012 14:49 |
|
|
# ? Apr 24, 2024 00:13 |
|
movax posted:So I guess, suggestions on a good router that'll do what I need? I was recommended Juniper SRX or J-series by some friends who do IT for a living, but I was hoping to keep costs down.
|
# ? Jun 12, 2012 14:51 |