Reply
Highlighted
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1
Accepted Solution

Gigabit download speeds

Just upgraded to Cox gigabit service and cannot get more than 300 mbps out of my Edgemax POE-5.  Confirmed I am getting more than 700 mbps out of the modem.  

 

Would appreciate any help I can get.


Accepted Solutions
Established Member
Posts: 807
Registered: ‎06-17-2015
Kudos: 164
Solutions: 50

Re: Gigabit download speeds

High CPU too? Don't bridge ports..

View solution in original post

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
But like I wrote in post #2, bridging disables offloading. So you need a switch and remove bridging, then offloading works.

View solution in original post

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
Okay, that sounds very strange, but follow whatever tech support says.

If you use the basic wizard, you would use eth0 for WAN and eth1 for LAN - and plug a switch into eth1, so other devices would connect through that.

View solution in original post

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
You're missing the DNS servers on the router. Run this - you can change the DNS servers if you want to use different ones:
configure
set service dns forwarding system
set system name-server 1.1.1.1
set system name-server 8.8.8.8
commit
save;exit

View solution in original post


All Replies
Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

Make sure hardware offloading is enabled - notice that certain other configurations can disable offload like QoS, bridging, netflow.
https://help.ubnt.com/hc/en-us/articles/115006567467-EdgeRouter-Hardware-Offloading
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

Here is what I have offload setup as:

IP offload module : loaded
IPv4
forwarding: enabled
vlan : enabled
pppoe : enabled
gre : enabled
bonding : enabled
IPv6
forwarding: enabled
vlan : disabled
pppoe : enabled
bonding : disabled
 
IPSec offload module: loaded
 
Traffic Analysis :
export : enabled
dpi : enabled
version : 1.422

 

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
Does that mean it works now? If not, then post your configuration.
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

Forgive my ignorance.  Just learning CLI and commands.  How do I get the configuration?

 

Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

It is not working.
Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

firewall {
    all-ping enable
    broadcast-ping disable
    ipv6-receive-redirects disable
    ipv6-src-route disable
    ip-src-route disable
    log-martians enable
    name WAN_IN {
        default-action drop
        description "WAN to internal"
        rule 10 {
            action accept
            description "Allow established/related"
            state {
                established enable
                related enable
            }
        }
        rule 20 {
            action drop
            description "Drop invalid state"
            state {
                invalid enable
            }
        }
    }
    name WAN_LOCAL {
        default-action drop
        description "WAN to router"
        rule 10 {
            action accept
            description "Allow established/related"
            state {
                established enable
                related enable
            }
        }
        rule 20 {
            action drop
            description "Drop invalid state"
            state {
                invalid enable
            }
        }
        rule 21 {
            action accept
            description "remote access"
            destination {
                group {
                }
                port 80,443
            }
            log enable
            protocol tcp_udp
        }
    }
    receive-redirects disable
    send-redirects enable
    source-validation disable
    syn-cookies enable
}
interfaces {
    bridge br0 {
        address 192.168.1.1/24
        aging 300
        bridged-conntrack disable
        description "Local Bridge"
        hello-time 2
        max-age 20
        priority 32768
        promiscuous enable
        stp false
    }
    ethernet eth0 {
        address dhcp
        description Internet
        duplex auto
        firewall {
            in {
                name WAN_IN
            }
            local {
                name WAN_LOCAL
            }
        }
        poe {
            output off
        }
        speed auto
    }
    ethernet eth1 {
        bridge-group {
            bridge br0
        }
        description "Local Bridge"
        duplex auto
        poe {
            output off
        }
        speed auto
    }
    ethernet eth2 {
        description "Local Bridge"
        duplex auto
        poe {
            output off
        }
        speed auto
    }
    ethernet eth3 {
        description "Local Bridge"
        duplex auto
        poe {
            output 24v
        }
        speed auto
    }
    ethernet eth4 {
        description "Local Bridge"
        duplex auto
        poe {
            output off
        }
        speed auto
    }
    loopback lo {
    }
    switch switch0 {
        bridge-group {
            bridge br0
        }
        description "Local Bridge"
        mtu 1500
        switch-port {
            interface eth2 {
            }
            interface eth3 {
            }
            interface eth4 {
            }
            vlan-aware disable
        }
    }
}
port-forward {
    auto-firewall enable
    hairpin-nat enable
    lan-interface br0
    rule 1 {
        description Server
        forward-to {
            address 192.168.1.180
            port 5000
        }
        original-port 5000
        protocol tcp
    }
    rule 2 {
        description Cameras
        forward-to {
            address 192.168.1.110
            port 8000
        }
        original-port 8002
        protocol tcp
    }
    rule 3 {
        description iMac
        forward-to {
            address 192.168.1.100
            port 5900
        }
        original-port 5901
        protocol tcp
    }
    rule 4 {
        description MacMini
        forward-to {
            address 192.168.1.110
            port 5900
        }
        original-port 5902
        protocol tcp
    }
    rule 5 {
        description Windows
        forward-to {
            address 192.168.1.207
            port 3389
        }
        original-port 3388
        protocol tcp
    }
    rule 6 {
        description RemoteRouter
        forward-to {
            address 192.168.1.10
            port 443
        }
        original-port 1222
        protocol tcp
    }
    wan-interface eth0
}
service {
    dhcp-server {
        disabled false
        hostfile-update disable
        shared-network-name LAN_BR {
            authoritative enable
            subnet 192.168.1.0/24 {
                default-router 192.168.1.1
                dns-server 192.168.1.1
                lease 86400
                start 192.168.1.38 {
                    stop 192.168.1.243
                }
                static-mapping Bad2B1DBFan {
                    ip-address 192.168.1.180
                    mac-address 00:11:32:7e:ed:87
                }
                static-mapping Printer {
                    ip-address 192.168.1.232
                    mac-address 00:15:99:2b:d4:c8
                }
                static-mapping ScottiMac-3 {
                    ip-address 192.168.1.100
                    mac-address 3c:07:54:0f:77:db
                }
                static-mapping Scotts-Mac-mini {
                    ip-address 192.168.1.110
                    mac-address 98:5a:eb:df:b6:8c
                }
                static-mapping Windows {
                    ip-address 192.168.1.207
                    mac-address 74:27:ea:e0:a3:83
                }
                static-mapping ipcam_000DC5D3F512 {
                    ip-address 192.168.1.146
                    mac-address 00:0d:c5:d3:f5:12
                }
                static-mapping ipcam_000DC5D335E6 {
                    ip-address 192.168.1.145
                    mac-address 00:0d:c5:d3:35:e6
                }
                static-mapping ipcam_000DC5DC0042 {
                    ip-address 192.168.1.142
                    mac-address 00:0d:c5:dc:00:42
                }
                static-mapping ipcam_00626E441B80 {
                    ip-address 192.168.1.143
                    mac-address 00:62:6e:44:1b:80
                }
                static-mapping ipcam_00626E441B88 {
                    ip-address 192.168.1.144
                    mac-address 00:62:6e:44:1b:88
                }
                static-mapping ipcam_00626E525DC8 {
                    ip-address 192.168.1.148
                    mac-address 00:62:6e:52:5d:c8
                }
            }
        }
        static-arp disable
        use-dnsmasq disable
    }
    dns {
        forwarding {
            cache-size 150
            listen-on br0
        }
    }
    gui {
        http-port 80
        https-port 443
        older-ciphers enable
    }
    nat {
        rule 5010 {
            description "masquerade for WAN"
            outbound-interface eth0
            type masquerade
        }
    }
    ssh {
        port 22
        protocol-version v2
    }
    unms {
        disable
    }
    upnp {
        listen-on br0 {
            outbound-interface eth0
        }
    }
}
system {
    host-name ubnt
    login {
        user xxxx {
            authentication {
                encrypted-password xxxx
                plaintext-password xxxx            }
            full-name "xxxxx"
            level admin
        }
        user ubnt {
            authentication {
                encrypted-password xxx
            }
            level admin
        }
    }
    ntp {
        server 0.ubnt.pool.ntp.org {
        }
        server 1.ubnt.pool.ntp.org {
        }
        server 2.ubnt.pool.ntp.org {
        }
        server 3.ubnt.pool.ntp.org {
        }
    }
    offload {
        hwnat disable
        ipsec enable
        ipv4 {
            bonding enable
            forwarding enable
            gre enable
            pppoe enable
            vlan enable
        }
        ipv6 {
            forwarding enable
            pppoe enable
        }
    }
    syslog {
        global {
            facility all {
                level notice
            }
            facility protocols {
                level debug
            }
        }
    }
    time-zone America/Chicago
    traffic-analysis {
        dpi enable
        export enable
    }
}


/* Warning: Do not remove the following line. */
/* === vyatta-config-version: "config-management@1:conntrack@1:cron@1:dhcp-relay@1:dhcp-server@4:firewall@5:ipsec@5:nat@3:qos@1:quagga@2:suspend@1:system@4:ubnt-pptp@1:ubnt-udapi-server@1:ubnt-unms@1:ubnt-util@1:vrrp@1:webgui@1:webproxy@1:zone-policy@1" === */
/* Release version: v2.0.0.5155284.190104.0701 */
Established Member
Posts: 807
Registered: ‎06-17-2015
Kudos: 164
Solutions: 50

Re: Gigabit download speeds

High CPU too? Don't bridge ports..

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
But like I wrote in post #2, bridging disables offloading. So you need a switch and remove bridging, then offloading works.
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

OK  

 

I have been reading about the bridging and when I originally started with this router I was able to use it with a Switch and Eth1 was not part of the config.  Problem became with that configuration I got Error 500 after a couple hours and bricked 2 routers.  I am willing to delete the bridge and go to a switch.  I would need some help with doing that, if someone is willing to walk me through it.

 

I would appreciate the help.  Just concerned about making this router become a brick also.  

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle

Did you actually brick the routers - or did you just lock yourself out? You should be able to reset to factory defaults or use recovery in most cases.

I think it would be easier to run the basic setup wizard, which resets the configuration, and then make small adjustments after.
Always do backups of your configurations, so you can revert.

You might want to save your configuration commands, since you can copy-paste parts - makes it easy to restore only those port-forwards and static-mappings.
show configuration commands | cat
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

Worked with Ubiquiti tech support on both routers and had to send both of them back.  The second one I used a backup configuration it came back and was running fine and when I checked it in the morning I had the Error 500 on the browser.  Everything continued to work until I tried to reset to factory and could never get either of them to work again.

 

 

Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

Worked with Ubiquiti tech support on both routers and had to send both of them back.  The second one I used a backup configuration it came back and was running fine and when I checked it in the morning I had the Error 500 on the browser.  Everything continued to work until I tried to reset to factory and could never get either of them to work again.

 

I have question about basic setup wizard and the secondary lan ports (eth1) and LAN ports (eth2 - 4).  How should those be setup?

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
Okay, that sounds very strange, but follow whatever tech support says.

If you use the basic wizard, you would use eth0 for WAN and eth1 for LAN - and plug a switch into eth1, so other devices would connect through that.
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

OK

 

That is going back to how I had it originally setup the first time.  My issue then became I have things I want to plug into Eth2 - Eth3 and Eth4 and for them to be on the same network as everything else.  Would that be done in the Basic Setup wizard somehow?

Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
Then you should get a model with built-in switch capabilities - like the ER-X.
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

Alright here is my new config and the issue I am having right now is a DNS issue.  Nothing can get to the internet from the switch or the access point.  If I manually add DNS in my computer everything works.  Speeds on computer that I added manual DNS server are good now.  Need assistance getting DNS setup properly. Please

firewall {
   all-ping enable
   broadcast-ping disable
   ipv6-receive-redirects disable
   ipv6-src-route disable
   ip-src-route disable
   log-martians enable
   name WAN_IN {
       default-action drop
       description "WAN to internal"
       rule 10 {
           action accept
           description "Allow established/related"
           state {
               established enable
               related enable
           }
       }
       rule 20 {
           action drop
           description "Drop invalid state"
           state {
               invalid enable
           }
       }
   }
   name WAN_LOCAL {
       default-action drop
       description "WAN to router"
       rule 10 {
           action accept
           description "Allow established/related"
           state {
               established enable
               related enable
           }
       }
       rule 20 {
           action drop
           description "Drop invalid state"
           state {
               invalid enable
           }
       }
   }
   receive-redirects disable
   send-redirects enable
   source-validation disable
   syn-cookies enable
}
interfaces {
   ethernet eth0 {
       address dhcp
       description Internet
       duplex auto
       firewall {
           in {
               name WAN_IN
           }
           local {
               name WAN_LOCAL
           }
       }
       poe {
           output off
       }
       speed auto
   }
   ethernet eth1 {
       description Local
       duplex auto
       poe {
           output off
       }
       speed auto
   }
   ethernet eth2 {
       description "Local 2"
       duplex auto
       poe {
           output off
       }
       speed auto
   }
   ethernet eth3 {
       description "Local 2"
       duplex auto
       poe {
           output 24v
       }
       speed auto
   }
   ethernet eth4 {
       description "Local 2"
       duplex auto
       poe {
           output off
       }
       speed auto
   }
   loopback lo {
   }
   switch switch0 {
       address 192.168.1.1/24
       description "Local 2"
       mtu 1500
       switch-port {
           interface eth2 {
           }
           interface eth3 {
           }
           interface eth4 {
           }
           vlan-aware disable
       }
   }
}
service {
   dhcp-server {
       disabled false
       hostfile-update disable
       shared-network-name LAN1 {
           authoritative enable
           subnet 192.168.1.0/24 {
               default-router 192.168.1.1
               dns-server 192.168.1.1
               lease 86400
               start 192.168.1.38 {
                   stop 192.168.1.243
               }
               static-mapping ScottiMac-3 {
                   ip-address 192.168.1.100
                   mac-address 3c:07:54:0f:77:db
               }
           }
       }
       shared-network-name LAN2 {
           authoritative enable
           subnet 192.168.2.0/24 {
               default-router 192.168.2.1
               dns-server 192.168.2.1
               lease 86400
               start 192.168.2.38 {
                   stop 192.168.2.243
               }
           }
       }
       static-arp disable
       use-dnsmasq disable
   }
   dns {
       forwarding {
           cache-size 150
           listen-on eth1
           listen-on switch0
       }
   }
   gui {
       http-port 80
       https-port 443
       older-ciphers enable
   }
   nat {
       rule 5010 {
           description "masquerade for WAN"
           outbound-interface eth0
           type masquerade
       }
   }
   ssh {
       port 22
       protocol-version v2
   }
}
system {
   host-name ubnt
   login {
       user xxxx {
           authentication {
               encrypted-password xxxx
           }
           level admin
       }
   }
   ntp {
       server 0.ubnt.pool.ntp.org {
       }
       server 1.ubnt.pool.ntp.org {
       }
       server 2.ubnt.pool.ntp.org {
       }
       server 3.ubnt.pool.ntp.org {
       }
   }
   syslog {
       global {
           facility all {
               level notice
           }
           facility protocols {
               level debug
           }
       }
   }
   time-zone UTC
}


/* Warning: Do not remove the following line. */
/* === vyatta-config-version: "config-management@1:conntrack@1:cron@1:dhcp-relay@1:dhcp-server@4:firewall@5:ipsec@5:nat@3:qos@1:quagga@2:suspend@1:system@4:ubnt-pptp@1:ubnt-udapi-server@1:ubnt-unms@1:ubnt-util@1:vrrp@1:webgui@1:webproxy@1:zone-policy@1" === */
/* Release version: v2.0.0.5155284.190104.0701 */
Established Member
Posts: 969
Registered: ‎02-12-2013
Kudos: 247
Solutions: 89

Re: Gigabit download speeds

@ninjaertle
You're missing the DNS servers on the router. Run this - you can change the DNS servers if you want to use different ones:
configure
set service dns forwarding system
set system name-server 1.1.1.1
set system name-server 8.8.8.8
commit
save;exit
Emerging Member
Posts: 43
Registered: ‎01-14-2019
Kudos: 1

Re: Gigabit download speeds

Thank you for all of your assistance.  Everything is up and running at the proper speeds.

Reply