Archer C7 v2 DoS Ptotection Bug?
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.Archer C7 v2 DoS Ptotection Bug?
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.Archer C7 v2 DoS Ptotection Bug?
Posts: 5
Helpful: 1
Solutions: 0
Stories: 0
Registered: 2013-10-27
2014-12-09 15:17:54
Posts: 5
Helpful: 1
Solutions: 0
Stories: 0
Registered: 2013-10-27
Archer C7 v2 DoS Ptotection Bug?
2014-12-09 15:17:54
Tags:
Region : Sweden
Model : Archer C7
Hardware Version : Not Clear
Firmware Version : 3.14.1 Build 140929 Rel.33293n
ISP : Telia
Hi.
I purchased this router few days ago, configured, all stable and works fine. It's connected directly to Internet.
Started up a web server on my computer on port 8080, opened that port in Forwarding > Port Triggering, all works fine, server is reachable from Internet.
Then I tried DoS Protection for fun:
Security > Advanced Security > DoS Protection: Enable + ICMP,UDP,TCP-SYN + WAN Ping
System Tools > Statistics: Enabled
Asked a friend from Internet to run a small DoS on my external IP and port 8080, a program that makes 100 TCP connections per second, nothing unusual.
The next second Internet connection on my computer died, I could not connect to Internet and nobody could connect to my web server anymore.
Then I looked in Security > Advanced Security > Blocked DoS Host List and found single IP in that list, that IP is the address that router gave to my computer via DHCP.
Question: Is this a joke? A bug perhaps? How smart is a DoS protection that blocks the hoster himself when it should block the other address who attacked me?
This is very big misunderstanding, either software developers have no idea how DoS protection really should work, or it's a simple bug.
Please help me out, I only got a couple of days left to return my router back to the store if I'm not satisfied.
Model : Archer C7
Hardware Version : Not Clear
Firmware Version : 3.14.1 Build 140929 Rel.33293n
ISP : Telia
Hi.
I purchased this router few days ago, configured, all stable and works fine. It's connected directly to Internet.
Started up a web server on my computer on port 8080, opened that port in Forwarding > Port Triggering, all works fine, server is reachable from Internet.
Then I tried DoS Protection for fun:
Security > Advanced Security > DoS Protection: Enable + ICMP,UDP,TCP-SYN + WAN Ping
System Tools > Statistics: Enabled
Asked a friend from Internet to run a small DoS on my external IP and port 8080, a program that makes 100 TCP connections per second, nothing unusual.
The next second Internet connection on my computer died, I could not connect to Internet and nobody could connect to my web server anymore.
Then I looked in Security > Advanced Security > Blocked DoS Host List and found single IP in that list, that IP is the address that router gave to my computer via DHCP.
Question: Is this a joke? A bug perhaps? How smart is a DoS protection that blocks the hoster himself when it should block the other address who attacked me?
This is very big misunderstanding, either software developers have no idea how DoS protection really should work, or it's a simple bug.
Please help me out, I only got a couple of days left to return my router back to the store if I'm not satisfied.
#1
Options
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Thread Manage
Announcement Manage
12 Reply
Posts: 1
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2019-07-04
Re:Archer C7 v2 DoS Ptotection Bug?
2019-07-04 18:09:00
I've just faced the same issue. At least found an explanation what exatly and why happening.
As a developer who implemented similar features I found the explanation also weird.
The feature itself makes sense because if I'm a sysadmin and somebody make attacks from my network then it's a good feature to block.
Telling by the support that the other direction is not needed is bad because I would expect similar functionality when I'm having a server in LAN side and doing port forwarding.
Well, at least I didn't loose my trust in TP-Link. The documentation can be more clear, other direction can be implemented as well but the actual feature set works as expected.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#12
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 21587
Helpful: 5042
Solutions: 2543
Stories: 21
Registered: 2018-12-24
Re:Re:Archer C7 v2 DoS Ptotection Bug?
2019-07-05 06:03:39
Hi,
Thanks for your feedback and thanks for your support.
We will keep going and trying to make our documents more clear and more customer-orientated.
Good day.
Nice to Meet You in Our TP-Link Community.
Check Out the Latest Posts:
Connect TP-Link Archer BE550 to Germany's DS-Lite (Dual Stack Lite) Internet via WAN
Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router
EasyMesh Is Available When Wi-Fi Routers Work in AP Mode as A Controller.
Archer AX55V2 Supports WireGuard VPN, EasyMesh Ethernet Backhaul, IoT Network, Speed Limit,and More
If you found a post or response helpful, please click Helpful (arrow pointing upward icon).
If you are the author of a topic, remember to mark a helpful reply as the "Recommended Solution" (star icon) so that others can benefit from it.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#13
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 5
Helpful: 1
Solutions: 0
Stories: 0
Registered: 2013-10-27
2014-12-09 15:17:54
Posts: 5
Helpful: 1
Solutions: 0
Stories: 0
Registered: 2013-10-27
Information
Helpful: 1
Views: 3421
Replies: 12
Voters 0
No one has voted for it yet.
Tags
Report Inappropriate Content
Transfer Module
New message