FVS318N WAN to LAN throughput and performance

Hi,

Recently upgraded my DSL connection 8M/1M to Cable 130M/30M. I changed from using PPoE to direct connection and modified the MTU size back to the default 1500 as per the provider recommendation. I have some 30 outbound rules and one site to site VPN to a FWG114Pv2.

When I connect iover wired gigabit ethernet to the LAN port. I get speed tests results limited to 30M down and 30 M up. When I disconnect the WAN cable of the FVS318N and directly connect the Cable modem I get the promised 130Meg down and 30 Meg up. I backed up the FVS318N config and ran a factory default. Speed tests using the FVS318N result in 130Meg down and 30 meg up. This puts the

trouble shooting effort into the config differences. Im running the following version of the software. During speedtests and downloads, the Webgui is unresponsive.

As the FVS318N is rated to be 250Mbps LAN-WAN performance, I'm wondering what may be affecting the throughput so much.

Hope that you can help!

I have 31 rules outbound, all have logging enabled, but disabling logging doesnt seem to affect performance

I have 10 inbound rules. all logging enabled

VLANs: 3 defined, including default

SSIDs: 3

I diffed the config backup files between the default and my config:

Despite the web gui reporting Autosense on the WAN port, this is in my config:

PortMgmt[9]["DuplexMode"] = "0"
PortMgmt[9]["AutoNegEnable"] = "1"
PortMgmt[9]["PortSpeed"] = "10"

the default config shows:

PortMgmt[9]["DuplexMode"] = "1"
PortMgmt[9]["AutoNegEnable"] = "1"
PortMgmt[9]["PortSpeed"] = "1000"

the 10 Mbit port speed doesn't make sense and would actualy limit the trouhhput to 10 Mit, but I'm getting 30 Mbit..so this should not affect it.

I have syslog enabled:

sysLogInfo[1]["Enable"] = "1"
sysLogInfo[1]["_ROWID_"] = "1"
sysLogInfo[1]["severity"] = "8"
sysLogInfo[1]["serverName"] = <removed>

What's more: Attack checks. The default configuration shows that the webgui and manual report TCP and UDP flood protection are enabled, bnut the config fiel shows otherwise:

AttackChecks[1]["TcpFlood"] = "0"
AttackChecks[1]["ExternalPingAddress"] = "0.0.0.0"
AttackChecks[1]["StealthMode"] = "1"
AttackChecks[1]["UdpFlood"] = "0"
AttackChecks[1]["DropInvalidResetPacket"] = "1"
AttackChecks[1]["PingReplyOnLan"] = "0"
AttackChecks[1]["DnsProxy"] = "0"
AttackChecks[1]["IpsecPassthrough"] = "1"
AttackChecks[1]["_ROWID_"] = "1"
AttackChecks[1]["udpConnLimit"] = "25"

In my custom config:

AttackChecks[1]["TcpFlood"] = "1"
AttackChecks[1]["ExternalPingAddress"] = ""
AttackChecks[1]["StealthMode"] = "1"
AttackChecks[1]["UdpFlood"] = "1"
AttackChecks[1]["DropInvalidResetPacket"] = "1"
AttackChecks[1]["PingReplyOnLan"] = "0"
AttackChecks[1]["DnsProxy"] = "0"
AttackChecks[1]["IpsecPassthrough"] = "1"
AttackChecks[1]["_ROWID_"] = "1"
AttackChecks[1]["udpConnLimit"] = "100"

diabling attack checks does not change the throughput however. has been tested.

Logging, nothing fancy

FirewallLogs[1]["LANToDMZAccept"] = "0"
FirewallLogs[1]["BandwidthLimitLogs"] = "0"
FirewallLogs[1]["LANToDMZDROP"] = "0"
FirewallLogs[1]["LANToWANAccept"] = "1"
FirewallLogs[1]["SessionLimitLogs"] = "0"
FirewallLogs[1]["DMZToLANAccept"] = "0"
FirewallLogs[1]["DMZToWANDrop"] = "0"
FirewallLogs[1]["SourceMACFilter"] = "0"
FirewallLogs[1]["LANToWANDrop"] = "1"
FirewallLogs[1]["WANToDMZAccept"] = "0"
FirewallLogs[1]["WANToLANDrop"] = "1"
FirewallLogs[1]["WANToDMZDrop"] = "0"
FirewallLogs[1]["WANToLANAccept"] = "1"

Hope that anyone knows the answers to this riddle.