NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
SRX5308 Throughput Reduced with Firewall Rules
I will narrate the issue just so that it can be documented. I hope it can be passed along as far as it needs to be fully resolved. My Gigabit Fiber WAN is very stable and does not fluctuate.
SRX5308 Router Problem with LAN<--> WAN throughput. If the router is booted with any firewall rules enabled, throughput is limited to a rather jittery 95 - 120 Mbps down and under 100 Mbps Up. When booted with all firewall rules disabled and nothing else changed, the throughput is very solid and stable 850 - 930 Mbps down and 900 - 950 Mbps Up.
This problem is entirely dependent on the boot configuration having any firewall rules enabled. If the router is booted with any firewall rules enabled then the situation persists (after boot I cannot disable and then re-enable rules to fix it). If the router is booted with all firewall rules disabled then I can enable, disable, enable them without having the problem and it persists (throughput is as expected until there is another reboot). No other settings in the router affect the throughput issues.
I have experienced this issue with both firmware versions 4.3.0-19 and 4.3.1-22. I did not have the Gigabit WAN Connection before the 4.3.0-19 version. I have set the router back to manufacturer defaults and then restored settings from .cfg file and it has not changed the issue with either firmware versions. I have even restored the defaults and entirely set up all settings manually from scratch on each firmware revision. Nothing changed and it was many hours of wasted time.
This is an escalated issue that must have the “bug” resolved as fiber WAN Links can routinely be had over 100 Mbps
SRX5308 Router Problem with LAN<--> WAN throughput. If the router is booted with any firewall rules enabled, throughput is limited to a rather jittery 95 - 120 Mbps down and under 100 Mbps Up. When booted with all firewall rules disabled and nothing else changed, the throughput is very solid and stable 850 - 930 Mbps down and 900 - 950 Mbps Up.
This problem is entirely dependent on the boot configuration having any firewall rules enabled. If the router is booted with any firewall rules enabled then the situation persists (after boot I cannot disable and then re-enable rules to fix it). If the router is booted with all firewall rules disabled then I can enable, disable, enable them without having the problem and it persists (throughput is as expected until there is another reboot). No other settings in the router affect the throughput issues.
I have experienced this issue with both firmware versions 4.3.0-19 and 4.3.1-22. I did not have the Gigabit WAN Connection before the 4.3.0-19 version. I have set the router back to manufacturer defaults and then restored settings from .cfg file and it has not changed the issue with either firmware versions. I have even restored the defaults and entirely set up all settings manually from scratch on each firmware revision. Nothing changed and it was many hours of wasted time.
This is an escalated issue that must have the “bug” resolved as fiber WAN Links can routinely be had over 100 Mbps
31 Replies
- Please don't post the same text in multiple threads and multiple forums. Keep your issue yours. Feel free to comment in other threads, just don't copy and paste your entire issue.
- Really?
I posted the same issue with SRX5308 to two different forums because they both cover that model device.
Maybe you should read my post instead blathering extraneous noise. - There is no reason to offend Mods. You do not need to post multiple thread of same regardless of you change some phrase somewhere looks like it is not same
If you need help be humble and follow the policy said. If you you can not then you are in forum to bash people - This is exactly why forums such as this don't work.
I posted an incredibly in depth analysis of a deep rooted bug. It is not specific to extraneous scenarios.
When you offer nothing but a tack on it is just noise that gets in the way of resolving the problem.
This is a problem with SRX5308 and how it boots with firewall rules enabled.
The forums list this model under Wired Firewall and VPN device. So I posted the problem to both forums relating to the SRX5308.
By all means if you know something please contribute if not please don't offer distractions. - Yes, 2 different forums, and multiple threads. Post it in one spot and we'll get a look at it. Posting in a bunch of spots, bash mods, and hassling other forum members is not the way to ask for assistance. This is a user forum. We are not Tech Support. None of us work for Netgear. If you are trying to escalate an issue you are having, you are in the wrong place. Contact Tech Support directly via phone or online trouble ticketing. The last sentence of your first post is confusing. "This is an escalated issue that must have the “bug” resolved as fiber WAN Links can routinely be had over 100 Mbps" Did you already escalate the issue and are just letting us know? Or are you making some sort of a demand here on the forum?
- Yes I have been working with Netgear Engineering.
My hope is that the workaround I have been able to find works for others, and more people escalate this issue to engineering at NetGear.
The router is very capable of over 900 Mbps Up and Down. WAN Links 100Mbps and under probably show no signs due to the fact that when the condition is present it is still showing up to 120Mbps Up and Down.
This problem is 100% dependant on the status of firewall rules at boot time. If there is even a single firewall rule enabled either Inbound or Outbound the problem is there and is not remedied unless rebooted with all rules enabled. After this disabled rule boot is accomplished then firewall rules can be enabled and throughput is at native speed 900+ Mbps Up and Down. - You should be continue to work with support .
Per said forum is user to user. If you already put trouble ticket in best work with them been router will support 900Mbps - Yeah I know I should continue to work with them.
The reason I am posting here is so that other people with the same problem can easily find a direction, Quick Workaround and know that NetGear is working on things.
I don't even know what you are trying to say it makes no sense. - Hi,
I got the same problem here, but the Solution of TalmageHolt is not working here.
I have now a 200 mbit line but download is limited to appr. 100 mbit.
I tried to enable all rules and rebooted, then I disabled everything and rebooted and it worked, but after enabling all rules it went back to 100 mbit.
I tried everything again, but now it doesn't work at no time.
Please help me out here, I hope theres somthing I can do.
Thank you so much. - The workaround still works for me. Netgear has not fixed anything...
I'm moving away from Netgear to SonicWall because of their lack of enterprise support. Especially the worthless "experts" that fill them with nonsense...
Workaround: Disable *all* firewall rules, both incoming and outgoing. Use the select all option and then disable. Reboot router. Enable all firewall rules.
I have 1 Gb fiber and when the problem is present router has between 80 - 95 Mbps throughput up and down. After using workaround 900 - 950 Mbps both up and down.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
