New Member
Posts: 3
Registered: ‎06-27-2017
Accepted Solution

ER-X has slow speeds. Is it because I used the wizard to bridge eth1-4 to switch0? eth0 is WAN.

[ Edited ]

I have Comcast and Ookla connects to an Xfinity server in SLC (about 40 miles away), so my test is over the same network, roughly.  I was only getting 50 mbps on a 100 mbit connection.  It was bumped to 200 mbit and the onsite tech used Ookla to hit 230 mbit on my connection.  My ER-X only gets about 80-85 mbit using speedtest-cli in Linux.  This was used because my laptop is over wifi and I wanted to eliminate that as a cause.

 

When I first got the ER-X, I used the wizard to bridge eth1-eth4 to switch0 while eth0 is my WAN connection.  I've seen others state that this is frequently the cause of network slowdowns, but I don't know how to handle it manually.

 

I'd like to use eth1-eth4 all for the same VLAN (1 single vlan, I don't have multiples set up) with the current subnet of 192.168.1.0/24.

 

I've got hwnat offload enabled with no benefit seen.  I'm currently running firmware v1.9.1.1.

 

What else can I do to give myself the full 200+ mbit that I'm expecting?

 

Config:

firewall {
    all-ping enable
    broadcast-ping disable
    ipv6-receive-redirects disable
    ipv6-src-route disable
    ip-src-route disable
    log-martians enable
    name WAN_IN {
        default-action drop
        description "WAN to internal"
        rule 10 {
            action accept
            description "Allow established/related"
            state {
                established enable
                related enable
            }
        }
        rule 20 {
            action drop
            description "Drop invalid state"
            state {
                invalid enable
            }
        }
    }
    name WAN_LOCAL {
        default-action drop
        description "WAN to router"
        rule 10 {
            action accept
            description "Allow established/related"
            state {
                established enable
                related enable
            }
        }
        rule 20 {
            action drop
            description "Drop invalid state"
            state {
                invalid enable
            }
        }
    }
    options {
        mss-clamp {
            interface-type all
            mss 1492
        }
    }
    receive-redirects disable
    send-redirects enable
    source-validation disable
    syn-cookies enable
}
interfaces {
    ethernet eth0 {
        address dhcp
        description Internet
        duplex auto
        firewall {
            in {
                name WAN_IN
            }
            local {
                name WAN_LOCAL
            }
        }
        speed auto
    }
    ethernet eth1 {
        description Local
        duplex auto
        speed auto
    }
    ethernet eth2 {
        description Local
        duplex auto
        speed auto
    }
    ethernet eth3 {
        description Local
        duplex auto
        speed auto
    }
    ethernet eth4 {
        description Local
        duplex auto
        speed auto
    }
    loopback lo {
    }
    switch switch0 {
        address 192.168.1.1/24
        description Local
        mtu 1500
        switch-port {
            interface eth1 {
            }
            interface eth2 {
            }
            interface eth3 {
            }
            interface eth4 {
            }
        }
    }
}
port-forward {
    auto-firewall enable
    hairpin-nat enable
    lan-interface switch0
    rule 1 {
        description SSH
        forward-to {
            address 192.168.1.13
            port 22
        }
        original-port 22
        protocol tcp
    }
    rule 2 {
        description http
        forward-to {
            address 192.168.1.13
            port 80
        }
        original-port 80
        protocol tcp
    }
    rule 3 {
        description https
        forward-to {
            address 192.168.1.13
            port 443
        }
        original-port 443
        protocol tcp
    }
    rule 4 {
        description OpenVPN1
        forward-to {
            address 192.168.1.13
            port 943
        }
        original-port 943
        protocol tcp
    }
    rule 5 {
        description OpenVPN2
        forward-to {
            address 192.168.1.13
            port 1194
        }
        original-port 1194
        protocol udp
    }
    rule 6 {
        description rtorrent
        forward-to {
            address 192.168.1.13
            port 49100
        }
        original-port 49100
        protocol tcp_udp
    }
    rule 7 {
        description rtorrent2
        forward-to {
            address 192.168.1.13
            port 49101
        }
        original-port 49101
        protocol tcp_udp
    }
    rule 8 {
        description XB1-1
        forward-to {
            address 192.168.1.45
            port 88
        }
        original-port 88
        protocol tcp_udp
    }
    rule 9 {
        description XB1-2
        forward-to {
            address 192.168.1.45
            port 3074
        }
        original-port 3074
        protocol tcp_udp
    }
    rule 10 {
        description XB1-3
        forward-to {
            address 192.168.1.45
            port 500
        }
        original-port 500
        protocol tcp_udp
    }
    rule 11 {
        description XB1-4
        forward-to {
            address 192.168.1.45
            port 3544
        }
        original-port 3544
        protocol tcp_udp
    }
    rule 12 {
        description XB1-5
        forward-to {
            address 192.168.1.45
            port 4500
        }
        original-port 4500
        protocol tcp_udp
    }
    rule 13 {
        description "PPTP VPN"
        forward-to {
            address 192.168.1.14
            port 1723
        }
        original-port 1723
        protocol tcp
    }
    rule 14 {
        description "Synology SSH"
        forward-to {
            address 192.168.1.14
            port 22
        }
        original-port 2222
        protocol tcp
    }
    rule 15 {
        description OpenVPN3
        forward-to {
            address 192.168.1.14
            port 1195
        }
        original-port 1195
        protocol udp
    }
    wan-interface eth0
}
service {
    dhcp-server {
        disabled false
        hostfile-update disable
        shared-network-name LAN {
            authoritative disable
            subnet 192.168.1.0/24 {
                default-router 192.168.1.1
                dns-server 8.8.8.8
                dns-server 8.8.4.4
                lease 86400
                start 192.168.1.38 {
                    stop 192.168.1.243
                }
                static-mapping XboxOne {
                    ip-address 192.168.1.45
                    mac-address c0:33:5e:f1:72:c5
                }
            }
        }
    }
    dns {
        dynamic {
            interface eth0 {
                service dyndns {
                    host-name scheels.dyndns.org
                    login ascheel
                    password ****************
                }
            }
        }
        forwarding {
            cache-size 150
            listen-on switch0
        }
    }
    gui {
        https-port 443
    }
    nat {
        rule 5010 {
            description "masquerade for WAN"
            outbound-interface eth0
            type masquerade
        }
    }
    ssh {
        port 22
        protocol-version v2
    }
    upnp {
    }
}
system {
    host-name ubnt
    login {
        user admin {
            authentication {
                encrypted-password ****************
                plaintext-password ****************
            }
            full-name admin
            level admin
        }
        user ubnt {
            authentication {
                encrypted-password ****************
                plaintext-password ****************
            }
            full-name ""
            level admin
        }
    }
    ntp {
        server 0.ubnt.pool.ntp.org {
        }
        server 1.ubnt.pool.ntp.org {
        }
        server 2.ubnt.pool.ntp.org {
        }
        server 3.ubnt.pool.ntp.org {
        }
    }
    offload {
        hwnat enable
    }
    syslog {
        global {
            facility all {
                level notice
            }
            facility protocols {
                level debug
            }
        }
    }
    time-zone UTC
}
traffic-control {
}

Accepted Solutions
Ubiquiti Employee
Posts: 3,063
Registered: ‎05-08-2017
Kudos: 545
Solutions: 429

Re: ER-X has slow speeds. Is it because I used the wizard to bridge eth1-4 to switch0? eth0 is WAN.

"When I first got the ER-X, I used the wizard to bridge eth1-eth4 to switch0 while eth0 is my WAN connection.  I've seen others state that this is frequently the cause of network slowdowns, but I don't know how to handle it manually."

 

I think you are confusing two technologies here. The ER-X has a built-in switch module (switch0), which basically means that it is able to group multiple interfaces together using hardware. On other models such as the ER-Lite, this switching interface is not supported. In this case users can choose to group multiple interfaces together using a bridge. The downside of the latter configuration is that this is achieved using software, which will lead to traffic not being offloaded/performance issues.

 

In your case I think the performance issues are caused by the Smart Queue (QoS). Which will also lead to traffic not being offloaded. 

 

When testing the speed, it is recommended to not use the ER as the source of the speedtest, as routers are better at forwarding traffic than actually generating it.

 

Ben

 

 


 

Ben Pin | Ubiquiti Support

View solution in original post


All Replies
Ubiquiti Employee
Posts: 3,063
Registered: ‎05-08-2017
Kudos: 545
Solutions: 429

Re: ER-X has slow speeds. Is it because I used the wizard to bridge eth1-4 to switch0? eth0 is WAN.

"When I first got the ER-X, I used the wizard to bridge eth1-eth4 to switch0 while eth0 is my WAN connection.  I've seen others state that this is frequently the cause of network slowdowns, but I don't know how to handle it manually."

 

I think you are confusing two technologies here. The ER-X has a built-in switch module (switch0), which basically means that it is able to group multiple interfaces together using hardware. On other models such as the ER-Lite, this switching interface is not supported. In this case users can choose to group multiple interfaces together using a bridge. The downside of the latter configuration is that this is achieved using software, which will lead to traffic not being offloaded/performance issues.

 

In your case I think the performance issues are caused by the Smart Queue (QoS). Which will also lead to traffic not being offloaded. 

 

When testing the speed, it is recommended to not use the ER as the source of the speedtest, as routers are better at forwarding traffic than actually generating it.

 

Ben

 

 


 

Ben Pin | Ubiquiti Support

Regular Member
Posts: 454
Registered: ‎03-01-2016
Kudos: 112
Solutions: 45

Re: ER-X has slow speeds. Is it because I used the wizard to bridge eth1-4 to switch0? eth0 is WAN.

Yep, the QoS is likely your problem.

Also, it doesn't look like you posted the whole configuration, it jumps from the eth0 interface to port forwarding.
New Member
Posts: 3
Registered: ‎06-27-2017

Re: ER-X has slow speeds. Is it because I used the wizard to bridge eth1-4 to switch0? eth0 is WAN.

Holy glorious internets...

 

I have NO IDEA why QoS was set up.  I MUST have done it, but I don't remember doing so.  I've spent days trying to figure out this issue...

 

Retrieving speedtest.net configuration...
Retrieving speedtest.net server list...
Testing from XFINITY (67.177.16.29)...
Selecting best server based on latency...
Hosted by Comcast (Salt Lake City, UT) [49.68 km]: 15.685 ms
Testing download speed........................................
Download: 226.64 Mbits/s
Testing upload speed..................................................
Upload: 11.87 Mbits/s
Highlighted
New Member
Posts: 3
Registered: ‎06-27-2017

Re: ER-X has slow speeds. Is it because I used the wizard to bridge eth1-4 to switch0? eth0 is WAN.

smax,

You are correct.  That wasn't the entire configuration.  emulator issue.  I corrected the config, even though it's unnecessary.