Archer C7 v2 DoS Ptotection Bug?
Archer C7 v2 DoS Ptotection Bug?
Model : Archer C7
Hardware Version : Not Clear
Firmware Version : 3.14.1 Build 140929 Rel.33293n
ISP : Telia
Hi.
I purchased this router few days ago, configured, all stable and works fine. It's connected directly to Internet.
Started up a web server on my computer on port 8080, opened that port in Forwarding > Port Triggering, all works fine, server is reachable from Internet.
Then I tried DoS Protection for fun:
Security > Advanced Security > DoS Protection: Enable + ICMP,UDP,TCP-SYN + WAN Ping
System Tools > Statistics: Enabled
Asked a friend from Internet to run a small DoS on my external IP and port 8080, a program that makes 100 TCP connections per second, nothing unusual.
The next second Internet connection on my computer died, I could not connect to Internet and nobody could connect to my web server anymore.
Then I looked in Security > Advanced Security > Blocked DoS Host List and found single IP in that list, that IP is the address that router gave to my computer via DHCP.
Question: Is this a joke? A bug perhaps? How smart is a DoS protection that blocks the hoster himself when it should block the other address who attacked me?
This is very big misunderstanding, either software developers have no idea how DoS protection really should work, or it's a simple bug.
Please help me out, I only got a couple of days left to return my router back to the store if I'm not satisfied.
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
I've just faced the same issue. At least found an explanation what exatly and why happening.
As a developer who implemented similar features I found the explanation also weird.
The feature itself makes sense because if I'm a sysadmin and somebody make attacks from my network then it's a good feature to block.
Telling by the support that the other direction is not needed is bad because I would expect similar functionality when I'm having a server in LAN side and doing port forwarding.
Well, at least I didn't loose my trust in TP-Link. The documentation can be more clear, other direction can be implemented as well but the actual feature set works as expected.
- Copy Link
- Report Inappropriate Content
Hi,
Thanks for your feedback and thanks for your support.
We will keep going and trying to make our documents more clear and more customer-orientated.
Good day.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 1
Views: 3396
Replies: 12
Voters 0
No one has voted for it yet.