Omada ER605 leaking MAC addresses on WAN interface

Omada ER605 leaking MAC addresses on WAN interface

15 Reply
Re:Omada ER605 leaking MAC addresses on WAN interface
2024-06-11 06:15:56 - last edited 2024-06-11 06:35:56

Hi @Its-A-Trap  @jake-at-home 

Thanks for posting in our business forum.

Its-A-Trap wrote

  @jake-at-home , Quite possible we are neighbors!

 

Quick update, with a few small caveats...

  • My setup is slightly different than yours in that i have Two Internet connections.  I added a XFinity cable modem as a backup when i thought that the issue was on the WaveG Side. I have been experimenting with maintaining both and with having only WaveG connected
  • I have not yet set up the testing infrastructure to directly observe the mac address leaking, and am thus relying on observing my port being shut down, so the testing takes quite some time...

 

I need to do further testing, however at this point i am fairly confident that the issue is at least partially associated with the configuration of Hardware Offload.  I am suspicious if there are either potentially multiple initialization code paths that results in different configurations, or if the IPs have some order dependent initialization requirements not being fully respected.

 

  • Previously, My port would be shut off for approximately 11 minutes each time this defensive measure was triggered by the upstream switch.  I would encounter this 11 minute gap every 20-30 minutes.
  • After Disabling Hardware Offload (With only WaveG Active) my connection was stable for over 2 hours
  • After Re-enabling Hardware Offload (with only WaveG Active) my connection continued to remain stable for over 2 hours.
  • I then took a risk and re-enabled the second WAN/Lan port for my backup internet connection, after the system was re-provisioned, my system once again exhibited the disconnect behavior.  This behavior did however seem to continue even when i disabled hardware offload (Confused on this one, and need to dig in more...)
  • I was able to restore long term stability by unplugging my backup internet connection and disabling Hardware offload 

 

I would like to get to a true root cause as I am sure that it will come back and bite me again soon, as if it is an artifact of the different initialization code paths or some other order of operations. I expect that this is not yet resolved.  Also, I do not currently have a stable configuration that supports my second WAN.

 

In order to really make progress, i likely need to invest the time to setup an upstream switch to enable mirroring and capture so i can have a more reliable signal than waiting for my port to get turned off...  that may be next weekend...

 

For both of you, please prepare a diagram of your current network connection.

I would require a traditional way of configuring your network on the Internet--WAN--LAN. If you have anything in between or double-NAT, please remove them before we move on this case.

As this goes on, I need you to reproduce this issue and Wireshark in a controlled environment instead of an unconventional setup. I will not reply to your message if this is not reproduced in a controlled environment as I cannot help you locate the problem.

Will walk you through this, dig out what's wrong and give this problem a conclusion.

 

A ticket will be created for each of you.

The port mirroring requires you to perform Wireshark capture. The file should capture and contain the leaked MAC address you mentioned or you see in the log.

 

Things I need:

1. A conventional diagram ruling out any local devices connected to the WAN.

2. Port mirroring and Wireshark from the WAN.

3. Log of your ISP modem or how you find out this MAC address leaked with evidence.

I need to know what you know about your network. Or it is hard to find out the reason why. And we probably need a real-time remote if this does not go well.

Reply to the ticket I created for you with the information mentioned.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#12
Options
Re:Omada ER605 leaking MAC addresses on WAN interface
2024-06-11 06:38:40

Hi @Its-A-Trap 

Thank you so much for taking the time to post the issue on TP-Link community!

To better assist you, I've created a support ticket via your registered email address, and escalated it to our support engineer to look into the issue. The ticket ID is TKID240619566, please check your email box and ensure the support email is well received. Thanks!

Once the issue is addressed or resolved, welcome to update this topic thread with your solution to help others who may encounter the same issue as you did.

Many thanks for your great cooperation and patience!

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#13
Options
Re:Omada ER605 leaking MAC addresses on WAN interface
2024-06-11 06:39:03

Hi @jake-at-home 

Thank you so much for taking the time to post the issue on TP-Link community!

To better assist you, I've created a support ticket via your registered email address, and escalated it to our support engineer to look into the issue. The ticket ID is TKID240619582, please check your email box and ensure the support email is well received. Thanks!

Once the issue is addressed or resolved, welcome to update this topic thread with your solution to help others who may encounter the same issue as you did.

Many thanks for your great cooperation and patience!

 

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#14
Options
Re:Omada ER605 leaking MAC addresses on WAN interface
2024-06-21 21:19:47

  @Its-A-Trap I might have had luck with updating to the latest firmware, ER605(UN)_V2_2.2.5 Build 20240522. I have since decided to go with another vendor, and will be returning my ER605, but about 3 prior to packing it up I installed this updated firmware. I didn't have any leaked packets for that period of time but I will caution that I had seen a period of time longer than this where no packets leaked on the older firmware. It may very well come back given more time. If you haven't tried it already you may want to try updating and see if you see similar and lasting results. Good luck!

 

  0  
  0  
#15
Options
Re:Omada ER605 leaking MAC addresses on WAN interface-Solution
2024-08-29 03:15:52 - last edited 2024-08-29 03:15:56

Hi anyone looking into this,

Not sure if this is related. Change TCP settings to 1800s. And monitor if there is a problem anymore. I ran across a case in the past and was recommended to set up all TCP-related settings in firewall to 1800s. Maybe give it a try.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  0  
  0  
#16
Options