New Member

Question

Unreliable traffic between segments

Forum|Forum|3 years ago
May 5, 2023
3 replies
11834 views

I start a new topic while this problem is still not resolved and since the other topic about this same issue is not accurate anymore. This topic starts with a clear description of the issue including an overview of the situation.

This is the old topic (for reference please do not refer anymore to it to avoid confusion).

The network schematic:

the issue:

If connected wireless to ssid "test99" all is fine. No issues and superfast.

If connected to "ssid" clients experience weird issues.

2 examples:

1. Roblox games do not (never) load, and give an error message.

2. Downloading apps/update from google play store is terribly slow ... 1%,2%,3%...

I deliberately do not (yet include) and config/capture (see also previous topic).

extra information:

I never had any of these issue, for over ~7 years. It started after upgrading to 7.0.11. And if you read the old topic, 2 things constantly cross: software switch vs hardware switch, that issue is now gone. All is connected to 1 hardware switch and VLANs with bridged ssids.

The netgear is configured to tag VLANs on the uplink and to the FAP. furthermore there are no (known) issues in the network other than this...

Please help out in finding if this could be a configuration issue or bug. Thank you!

abarushka

Staff

Hello,

I would recommend to focus on roblox games first, since it is easier to troubleshoot than performance issue. You may consider to sniff traffic on client side and trace traffic towards roblox games servers. In wireshark it will be visible whether there is an issue with establishing TCP, TLS sessions or smth else.

sanderlAuthor

New Member

I have a cap file now from a phone on vlan 10. during a start of Roblox (unsuccessful).

https://file.io/EZgnjTOc2N85

gfleming

Staff

So there are dozens of attempted connections to Roblox server in the cap spanning only around 20 packets each. And every conversation/connection attempt looks pretty much the same. Some back and forth with the server and then a RST from the server after some unseen segments in the capture.

Where are you capturing from? Unseen segments could be seen if sniffing on the FortiGate unless you turn off NPU offload.

Can you try capturing again from a computer accessing Roblox?

Also, in looking at Roblox help documentation it states you need to have port forwarding enabled for it to work? Is that true? Do you have that configured?

https://en.help.roblox.com/hc/en-us/articles/203312880-General-Connection-Problems

gfleming

Staff

Does Roblox fail on every device that you try it on when connected to "ssid"?

Also just for fun can you swap the VLAN assignment for the SSIDs? Does "ssid" still not work?

sanderlAuthor

New Member

Yes all devices fail with roblox (2x phone, 2x tablet) on ssid. Not on test99.

Not sure what you mean with swap. Just change vlan numbers per ssid? So 10 to test99 an 99 to ssid?

gfleming

Staff

Yes exactly. If "ssid" is still broken on VLAN 99 then it's probably something related to the wifi. If it's working on VLAN 99 then it's probably something related to switching/wired stuff.

sanderlAuthor

New Member

Since I am clearly experiencing problems since 7.0.11.

What is this "solved" (how is it solved) in bug ID 856202:

https://docs.fortinet.com/document/fortigate/7.0.11/fortios-release-notes/289806/resolved-issues

Furthermore I see a lot of NP7, NP6xLite and NPU "resolved" issues. Might these still be partially there or perhaps have been implemented and provoke my experienced behavior?

gfleming

Staff

I don't think that applies to you: you aren't running a cluster, you aren't getting kernel panics or reboots, and in the other thread we eliminated the NPU as a culprit because we disabled hardware offloading and you still had issues.

sanderlAuthor

New Member

True, but at least it notable that these were all "new" in 7.0.11

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded