Archer AX11000 v2.2.1 Firmware "AP ISOLATION" Network Error!
Hi all
I have essentially bricked my WLAN by upgrading to v2.2.1 firmware on my AX11000 (v1).
Since the upgrade, WLAN devices cannot talk to LAN devices, or to each other. I have extensively troubleshot this; essentially the router is not passing ARP packets to/from WiFi hosts (as seen on a TCPdump); and its acting like AP isolation is turned on. It is not. I have toggled other known troublesome features including SmartConnect/OneMesh and repeatedly reset the router to flush tables. Frustratingly, you cannot roll back from 2.2.1 which was hidden in the fine print when the update was pushed.
WLAN devices can access the router and the internet. Just not the LAN.
It is affecting multiple traffic types including HTTP, FTP and SSH.
In terms of topology, there is one unmanaged switch and two TP-link repeaters in the network, which were all working fine before the update. I have removed them and I'm now troubleshooting on a network that is basically the router and two PCs with wireless and wired NICs.
If the WLAN NIC is enabled on a device, this behavior overrides the wired LAN and all LAN devices are inaccessible. The only way to have any LAN traffic is to disable each devices wireless NIC (if possible).
My searching seems to suggest this is related to the "“Enhanced Broadcast Management / Isolation Enforcement” feature of 2.2.1.
If anybody has any grand solutions, or TP can facilitate a downgrade or fix, I would literally pay anything at this point.
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hello @SeanWing ,
Welcome to our community.
We haven't received similar feedback yet. Please tell me about your complete topology:
ISP modem—router )))((( client devices
(Note: — stands for wired connection,)))((( stands for wireless connection )
Could I know how you reset it? Also, what specific clients do you have? Are they connected to the router wirelessly or via wired connection?
For beta firmware, you could try updating.
Please note that the AP Isolation function isolates all connected wireless stations so that wireless stations cannot access each other through WLAN.
For your case, here are some suggestions:
1. Remove other network devices: If you have additional network equipment such as Access Points or range extenders, please temporarily disconnect them to rule out interference or misconfiguration.
2. Verify IP addresses and subnet: Make sure all your devices (both wired and wireless) are receiving IP addresses in the same subnet. Instructions can be found here: How to find IP address on your devices?
3. Test connectivity with ping: Try pinging the IP address of the device you want to reach. For guidance, see: How to use the Ping command?
- Copy Link
- Report Inappropriate Content
Hi
ER707-M2
- WAN 1 - NBN HFC Network Termination Device hardwired - DHCP from ISP
- WAN 2 - Deco 5G LTE by wired connection, static IP, subnet 192.168.2.x
- LAN - wired to AX11000, subnet 192.168.1.x
AX11000
- acts as DHCP server
- everything in the LAN side is in the 192.168.0.x subnet
- primary wifi router, about 60 clients
- one RE815XE by wired connection
- one EAP215 by wired connection
- remote end of bridge is wired to an RE705X
- a TL-SG1016PE switch, wired connection
TROUBLESHOOTING SO FAR:
I have unplugged and disconnected everything from the network except the ER707 and the AX11000, and my testing laptop is wired to the AX11000 and I have a second laptop on Wifi to test the isolation. There are no DHCP issues, but ARP issues, and I can't ping LAN wireless devices from wired, and wired devices from wireless.
Software reset to defaults on the Web UI, and hard reset at the device. Unable to rollback the firmware because this new version doesn't allow that (I didn't notice a breaking change notice anywhere when it ran). Changed operating mode to AP and then back. Still no good.
Almost every optional feature toggled (onemesh, ofdma, smartconnect, NAT, QOS, parental controls/safebrowse) all tried in various combinations. All devices caches repeatedly flushed, connections reset. Multiple reboots of all involved devices.
(Until a fix is identified, I am currently running the AX11000 in AP mode so I can do other things but this does defeat the purpose of having such a high performing router, and puts more load on the gateway instead.)
- Copy Link
- Report Inappropriate Content
Hi all
I have the same issue after upgrading to v2.2.1 firmware on my AX11000 (v1), (2.2.1 Build 20250725 rel.9119(4555)) .
Since the upgrade, WLAN devices cannot talk to WLAN devices anymore, but the LAN-side can talk to the WLAN-Clients.
Unfortunately I cannot roll back from version 2.2.1.
Does the mentioned beta-Version fix this issue? Then Id like to get it !!
WLAN devices can access the router and the internet. Just not each other and my NAS over dsfile anymore. NAT forwarding is enabled.
It is affecting multiple traffic types including HTTP, FTP and SSH.
My workaround is to use the Wireguard-VPN-Client from the WLAN over my Fritz!Box, so the traffic is coming from the LAN-side.
Internet -- Fritz!Box -- AX11000 -- NAS
)))))(((((
WLAN-Clients
If anybody has any solutions or TP can facilitate a downgrade or fix, I would apreciate it very much.
- Copy Link
- Report Inappropriate Content
Hello @SeanWing ,
Thanks for getting back to me.
Have you tried connecting the Archer AX11000 directly to the NBN? I mean, remove the ER707-M2 temporarily.
If possible, please set AX11000 as the main router and check whether that helps.
Based on your description, it seems that wireless clients can fully access all other clients, including both wireless and wired devices, is that correct?
Have you checked the parental control settings? If yes, please remove the profiles for comparison.
- Copy Link
- Report Inappropriate Content
Hello @Schoetti ,
Thanks for contacting our community.
Is there a switch between the Fritz!Box and AX11000? If yes, remove it and try again.
Your situation appears different: only wireless devices cannot communicate with each other, but wireless and wired devices can communicate. Is that correct?
This behavior is consistent with AP isolation being enabled. Have you been able to check if the AP isolation is enabled? If yes, please disable it for a try.
By the way, it looks like Archer AX11000 is not the main router. Please change it to Access Point mode for comparison.
Or, please set it to be the main router and check if it can help.
- Copy Link
- Report Inappropriate Content
"Is there a switch between the Fritz!Box and AX11000? If yes, remove it and try again"
--> I omitted the switch, but same behavior
"Your situation appears different: only wireless devices cannot communicate with each other, but wireless and wired devices can communicate. Is that correct?
This behavior is consistent with AP isolation being enabled. Have you been able to check if the AP isolation is enabled? If yes, please disable it for a try"
--> AP isolation is disabled and was never enabled
²By the way, it looks like Archer AX11000 is not the main router. Please change it to Access Point mode for comparison."
--> I will not change to Access Point mode because I then loose my NAT configuration settings.
"Or, please set it to be the main router and check if it can help"
--> for a test I temporarly set it to be the main router (I omitted the fritz!box) but same behavior
Is there any chance to get the former firmware back on ?? Because everything was working with the old one ......
- Copy Link
- Report Inappropriate Content
Hello@Schoetti ,
We would like to escalate your case to the support engineers, and they will follow up on it. If you are willing to conduct further analysis, please check your inbox and respond.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 156
Replies: 7
Voters 0
No one has voted for it yet.