Home

Forums

Stories

Knowledge Base

Home Network Community > Deco > Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade

< Deco

Solution Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade

SolutionEnhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade

David-TP

Thursday - last edited Yesterday

Posts: 16405

Helpful: 2354

Solutions: 2464

Stories: 9

Registered: 2020-04-14

Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade

Thursday - last edited Yesterday

Tags: #Highlighted Thread #Official

This Article Applies to:

Deco M5(EU/US)_V1/V2/3/V3.2

Deco M9 Plus(EU/US)_V2/V2.2

Deco X20(EU/US)_V1/V1.2

Deco X60(EU/US)_V1/V2

Hi All,
Over the past month, we have received user feedback regarding the Deco M5/Deco M9 Plus_1.9.1, also Deco X20/Deco X60_1.6.1. There are mainly the following three types:

The incorrect attacking records detected by Network Intrusion Prevention

including but not limited to

Classification	Status
Blocked IP:194.168.4.100 Classification: CNC attack	Fixed
ICMP (CVE-2015-7759)
CVE-technet.microsoft.com/en-us/secuSERVER-IIS_encoding_access
SNMP(CVE-2002-0013)	Fixed
CVE-technet.microsoft.com/en-us/secuOS-WINDOWS_Microsoft_Windows_TCP_print_sevice_overflow-attempt
CVE-tools.cisco.com/security/cernter/protocol-SNMP_public_access_upd
CVE-2017-7285 OS-LINUX_Linux-Kernel_Challenge_ACK_provocation_attempt

The random blocking of safe websites/domains by Malicious Content Filter

including but not limited to

Websites

Potential Impact

Status

Smart Home Application API-related
Apple.com.akadns.net, iCloud;-related
Google/Windows/AWS SDN-related

Classification: Malware

The App can't properly manage the smart home devices; Smart automation failed to work.
Apps/programs can't be updated.

Fixed

The Content Classification rules in the Cloud have been updated to prevent false Malware alarms from being triggered.

The satellite Deco units are green and working well, but the Deco App reported "offline"

Please refer to this link to help me submit the Deco App log: How to submit Deco APP log

(After submitting the APP log, please comment below with the ticket ID No.)

Starting with the Deco M5_V1/V2/V3/V3.2, a beta firmware has been developed to address the behaviors. We recommend that affected users install the firmware from the links below. As we gather feedback and verify the fix, similar patches will be applied to other affected models.

Deco M5_1.9.0_build_20250926_Beta

Please be sure you have read the Beta Test Agreement before upgrading the Pre-release firmware!

If you noticed certain unusual network behaviors, such as frequent connection dropouts, please check whether there were any suspicious records under Network Security. However, if your experience with Deco has no obvious connection with the mentioned issues, please start a new post with more details so that our engineer can address the matter promptly.

For users who had a similar issue but the attacking/blocking records are not included, please comment between with the Deco model number/firmware versions and a screenshot of the attacking/blocking record.

▶Check What's Currently Going on With Deco ▶Parental Control Upgrade on HomeCare Models ▶Deco BE85 1.2.0 Enhanced Mesh Backhaul Stability and Device Roaming Experience ▶Deco BE65/BE65 Pro 1.2.0 Enhanced Mesh Network Stability and System Security ▶Deco BE75 1.1.0 Added WireGuard VPN, Manual Channel Selection and More Try to leave a Message if urgent help is required.

12 Reply

mark213a

LV1

4 hours ago

Posts: 18

Helpful: 17

Solutions: 0

Stories: 0

Registered: 2025-10-15

Re:Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade - Now?

4 hours ago

@MrHomeAdmin

I run a Deco X20 1.6.1 Build 20250831 Rel 77853

The Security issue for the firewall was on only on the new firmware released this year (with the Homeshield enhanced parental controls option now added for those still on Homecare)

Dropouts are happening (still get a couple) but its bearable - no more than what I was having before this FW.

All firewall logs for internal LAN requests are gone since the Intrusion Protection was updated last weekend.

Recommend to reboot all Decos and then reboot all devices

#13

MrHomeAdmin

LV1

an hour ago

Posts: 19

Helpful: 10

Solutions: 0

Stories: 0

Registered: 2024-01-02

Re:Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade - Disruption

an hour ago

↵

@David-TP

Hi David. Here we go again, disruption that needs to be investigated.

Major block of internet access that might be possible to trace.

Log forwarded in Ticket TKID251109419

The question is

If Laptop is the issue, why isn’t the client isolated or blocked instead of complete WAN block?
What caused this disruption and block?

Its recommend to use Googles DNS. However the custom should be able to pick whatever DNS they want? Also a website blocked should not block the whole network/WAN?

	Firmware	1.9.1 Build 20250926 Rel. 53742
1	When	Block: 5 Nov about 09:20:00-09:25:00 Internet returned working when checked 09:40:00 without restart/reboot of system. Critical Log: Wed Nov 5 08:26:59 2025 user.emerg syslog: tp215,22[20622]: Wed Nov 5 09:21:58 2025 user.emerg syslog: tp215,22[25107]: Wed Nov 5 10:00:37 2025 user.emerg syslog: tp215,22[17067]:
2	Did?	On the HP-Laptop, browsing to website from google search in Chrome browser. Visiting link: https://community.home-assistant.io/t/sonos-favorites/835866 The website cannot be reached. DNS_PROBE_FINISHED_BAD_CONFIG The same website could be reached after the block went away. No issue. Was it random and coincidence it happened when browsing to this website? On the HP-Laptop, browsing to website from google search in Chrome browser. Visiting link: https://community.home-assistant.io/t/sonos-favorites/835866 The website cannot be reached. DNS_PROBE_FINISHED_BAD_CONFIG The same website could be reached after the block went away. No issue. Was it random and coincidence it happened when browsing to this website?
3	Client	Was used when event triggered. HP Laptop Windows 11 Home Version 25H2 OS version 26200.6899 McAffie installed SSID: norrvana_surf Protocol: Wi-Fi 5 (802.11ac) Security type: WPA2-Personal Manufacturer: Realtek Semiconductor Corp. Description: Realtek RTL8822CE 802.11ac PCIe Adapter Driver Version: 2024.0.10.223 Network Band (Channel): 5 GHz (44) Aggregate Link Speed (Receive/Transmit): 585/585 (Mbps) IPv6 Address: fd4d:fb7c:da69:9b3a:6dd3:ff1d:351:12c4 Link-Local IPv6 Address: fe80::e737:30b2:288e:72c0%20 IPv6 Default Gateway: fe80::6232:b1ff:fed4:da08%20 IPv4 Address: 192.168.0.2 IPv4 DNS Servers: 9.9.9.9 (unencrypted) 149.112.112.112 (unencrypted) encrypted) Physical Address (MAC): (ask for in Private msg)
4	Disruption	Client did not reach website Whole Network was blocked from Internet. Check if I had connection with ISP via the access PRE Deco Router and no indication of disruption, havent been disconnected. Clients stopped working as example Sonos stream stopped, other PC could not reach anything online. Can login to Deco app internally but don’t think it was up to date. Not local as it doesn’t update or indicate anything. No internet connection indicated on iPhone

************************************************************ UTC + 1 GMT + 1 Zone M5 * 6 units with IoT setup. Both wired and wireless backhaul.

#14

Solution Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade

Solution Enhancing Network Stability and Security Database Update in Deco M5/M9 Plus1.9.1 Upgrade

This Article Applies to:

The incorrect attacking records detected by Network Intrusion Prevention

Classification

Status

The random blocking of safe websites/domains by Malicious Content Filter

Websites

Potential Impact

Status

The satellite Deco units are green and working well, but the Deco App reported "offline"

Please refer to this link to help me submit the Deco App log: How to submit Deco APP log

Starting with the Deco M5_V1/V2/V3/V3.2, a beta firmware has been developed to address the behaviors. We recommend that affected users install the firmware from the links below. As we gather feedback and verify the fix, similar patches will be applied to other affected models.

Deco M5_1.9.0_build_20250926_Beta

Information

Voters 0

Tags