Quote:
Originally Posted by sniper007
Hi Andy, can you explain what this bug is on the SPI firewall? I am seeing logs all the time of "LAN-side UDP Flood" and then always "Illegal TCP Header". I'm not sure it causes me issues as network performance remains ok I think...how can I check if this is causing me problems?
|
No, not exactly, but it currently seems that the SPI firewall is reacting to lan side activity, and then locking some things down (though other activities may well continue at proper speeds). It either needs to be far less sensitive or just on the WAN-side.
It is likely triggered, I suspect, by the kind of extra activity generated by some new Windows 7 or Internet Explorer 9 activity, possibly even Windows Live activity. I suspect Windows 7 Homegroup activity incombination with IE9 myself, though it could be in combo with Windows Live Mesh too, but not everyone has that stuff turned on. It may be different activity triggering it for different people.
When it is triggered it knackers that activity. If you are getting these lan-side messages it will be gumming up some type of traffic somewhere. In my case the web browser grinds to a halt, well, it does work but at narrow band speeds and some pages just give up half way through loading. Including the Superhub settings pages, though they do work just very slowly until I disable the firewall setting. It may slow down different types of traffic for different people though.
If you get lan-side blocks going on then there is a problem because, unless you believe someone on your lan is trying to attack you, you know there is no correct reason to see these messages in the log.
Turn it off and those messages will go away. When we get a fixed firmware, you can turn it back on again.