Hey so I've had my ISP out multiple times to help try and isolate a recent packet loss problem that has been reoccuring for the last month or 2 now. At first it would happen during the day and then settle down the later it got in the night. They've replaced Coax cables and a wire from the house to the pole. I have also followed their recommendation of updating my hardware and so I did and I know both pieces support my internet speed (blaze from xfinity) (RAX48 and a SB6190 Modem) I have also noticed in my logs that I am receiving many fraggle attacks as well, is this something I should be worried about? I'm honestly out of ideas.
I am now for the first time receiving blocked Denial of Service notifications from NETARMOR on 'Wyze camera' the jank security system my mother installed for the house. Again I don't know if I should be worried and I really want to know if this could even be linked to my packet loss issues.
I'd recommend getting into a broadcom based modem first off.
Look up where those IP addresses are coming from using a WHOIS service.
Ask your ISP and see if they can change your WAN IP address.
Try a full reset of the router and setup from scratch. I would leave Armor disabled for a short period and see if the problems still happen.
@FURRYe38 Hmm. That is interesting to find out. I will definitely be returning this at some point for sure. However my old Modem was a SB6141 from a few years back. I don't see that one in the list but I had began getting the packet loss with my old hardware (asus rtc3100 and that 6141 modem). Now the issue is still here, ISP is coming out a 3rd time with a more equipped tech they say, lol. I have yet to call the Cyber Agency side of Xfinity, which they told me to do for the DoS things. They said they couldn't change my IP when I asked on the forum.
Now after using WHOIS I found out
United States Chicago Akamai Technologies Inc. Comcast Aurora And a new attack I haven't noticed yet [UDP FLOOD] that ip comes from United States Atlanta Service Provider Corporation
Starting to believe these are truly false-positives. It seems they must've failed to find the noise that's giving me troubles on their end. Or I can't seem to find out the issue on my end. Either way it's been a month or so and my online-gaming is subpar.
Some of the logs being seen on NG routers has been know to be false positives or just what the router is reporting. However id say get the ISP to replace the modem first thing, something with a broadcom chip set.
NGs CM1000 thru 2000 are all broadcom based.
They can change the IP address on the modem, they can do that at any time. Though they change it automatically, or if you keep the modem fully OFF maybe over night, this can trigger a new lease on the WAN IP.
Some of the logs being seen on NG routers has been know to be false positives or just what the router is reporting. However id say get the ISP to replace the modem first thing, something with a broadcom chip set.
NGs CM1000 thru 2000 are all broadcom based.
They can change the IP address on the modem, they can do that at any time. Though they change it automatically, or if you keep the modem fully OFF maybe over night, this can trigger a new lease on the WAN IP.
SHow the tech these WHOIS entries...
Gotcha. They won't be replacing the modem. I will be returning the one I bought and doing the replacement myself. I will never use ISP given modems. I would like to mention this packet loss only appears during the day and stays clear around 11PM-11AM then it begins again. I have a forum group chat with xfinity support and they told me to contact CSA 'as this is a security issue' when i showed them the WHOIS entries. Their Supervisor Tech is set to visit this thursday as well since the last 2 couldn't isolate it.
Ok, check with the ISP to see what brand and model modems they support by users before you buy. Same here, I prefer my own modem.
Ok, seems like this problem is going higher than the ISP. Since this happens during the day and not might time, tells me something someone is activaly doing this during the day. Something you might try, power OFF the modem for as long as you can when this happens during the day.
I'd also power OFF as many devices you have connected as well...then power a device on 1 at a time while checking the router logs. Just checking to see if something from the WAN side is trying to access or ping someting on the LAN side. If you have time.
Ok, check with the ISP to see what brand and model modems they support by users before you buy. Same here, I prefer my own modem.
Ok, seems like this problem is going higher than the ISP. Since this happens during the day and not might time, tells me something someone is activaly doing this during the day. Something you might try, power OFF the modem for as long as you can when this happens during the day.
I'd also power OFF as many devices you have connected as well...then power a device on 1 at a time while checking the router logs. Just checking to see if something from the WAN side is trying to access or ping someting on the LAN side. If you have time.
Ok I settled with the CM1000. I have it hooked up and I still am receiving the loss. I have no blocked everything except my PC. I don't know if I can do the modem off all day with my family but for now I can mess with the devices since nobody is home.
ALSO. For those time frames it can be completely random when it's good and bad BUT always in that time frame.. and during the day it's for sure the worst. Night time I can play with pretty much no interruption. Just to reclarify that.
No matter if its just my PC allowed to connect, the packet loss is still there. I noticed when it was only the PC allowed on there I get a [DoS attack: Fraggle Attack] from source UNKNOWN,port 58052 Sunday, Nov 07, 2021 15:47:29
No matter if its just my PC allowed to connect, the packet loss is still there. I noticed when it was only the PC allowed on there I get a [DoS attack: Fraggle Attack] from source UNKNOWN,port 58052 Sunday, Nov 07, 2021 15:47:29
When I allowed my phone I received [DoS attack: Fraggle Attack] from source 174.-.-.-,port 58052 Sunday, Nov 07, 2021 15:55:04 i removed the IP for safety reasons but it comes back from comcast in the area of course.
