How to detect and fix ip conflicts in your network?

Leave a reply

IP conflict in local network is annoying. When it happens, it will cause intermittently connections, and it’s difficult for an IT administrator to locate the conflicted devices.

With WFilter, you can do much more.

First, you can block the conflicted IP address with a message. So the client might fix this issue by himself. As shown in below figure, you can send a message “Your ip address conflicts with our server, please correct it ASAP”. This message will show up when browsing http sites.
ipconflict_en
Also, you can run the “Network Health Checker” extension, which can test ip conflicts in your network. Please check the below screenshots:
ipconflict_en2
ipconflict_en3

Now you may talk to the person with “HuaWei” mobile to fix this issue.

Extension home page: “Network Health Checker”

Wiki page: Check network health of availability, IP conflict, ARP spoof and broadcast storm

How to detect ip conflicted devices in your network with WFilter?

Leave a reply

IP conflict in local network can be annoying. When ip conflicts happens, it will cause connection issues. And it’s rather difficult for an IT administrator to locate the conflicted devices.

With WFilter, life is easier.

First, you can block the conflicted devices with a message. As shown in below figure, you can send a message “Your ip address conflicts with our server, please correct it ASAP”. This message will show up when browsing http sites. So the client can fix this issue by himself.

ipconflict_en

Second, you can run the “Network Health Checker” extension, which can test ip conflicts in your network. The screenshots:

ipconflict_en2
ipconflict_en3

Conflicted devices will be detected, with its mac address and manufacturer.

In this example, now you may talk to the person with “HuaWei” mobile to correct the conflict issue.

Extension home page: “Network Health Checker”

Wiki page: Check network health of availability, IP conflict, ARP spoof and broadcast storm

The ISP module of WFilter NG Firewall, a total solution for ISP management.

Leave a reply

For ISP network management, you will need:

  1. User authentication.
  2. Monitor and filter of internet activities.
  3. Bandwidth shaper.
  4. Accounting and statistics.

Usually, you will need several systems to achieve this goal. Today, WFilter NG Firewall, a linux based next generation firewall provides a total solution for ISP network management, with below features:

  1. Two types of authentication: “Web Auth” and “PPPoE Auth”.
  2. An “Internet Usage” module to record web surfing, downloading activities.
  3. Rich internet access control policies: web filter, application control, ip-mac binding …
  4. Bandwidth policies of realtime rate limit and monthly bandwidth cap limit.
  5. Bandwidth optimize solutions.
  6. Internet usage and bandwidth statistics.
  7. A web push feature to push statistics, web page and advertise.

All these features can be configured in the “WFilter ISP module“.

Some screenshots:

Policies

User settings

User Portal

More details can be found at here: WFilter NG Firewall ISP Module

WFilter MultiPing: how to ping multiple hosts and get report diagram?

Leave a reply

A new extension of WFilter, multiping, is recently released.

This extension can ping multiple hosts at a time, with a graph statistics. With this extension, you can monitor the network performance of your servers, even for a whole day.

Settings and screenshots of WFilter multiping extension

Define hosts to be monitored.

Diagram of history ping performance.

This extension can be installed in “WFilter Enterprise”, “WFilter Free” and “WFilterROS”.

Homepage: WFilter multiping extension

Document: Graph ping performance of multiple hosts

How to block IDM in network? WFilter added support for blocking IDM.

Leave a reply

Internet Download Manager (IDM) is a Multi-threaded application that
breaks a file into many small parts and starts to simultaneously
download all of these parts. It can consume a lot of your bandwidth when downloading multiple large files.

With WFilter, you can block IDM downloading completely.

The settings are very simple. You only need to edit your blocking policy, and set “IDM” to “Deny” in “Applications”.

In “Connections”, you will see IDM connections are “terminating”.


IDM will report failure in a few seconds.

A protocol description of IDM can be found at: How to block IDM, IDM port and protocol description. Please note that downloading from https with IDM can also be blocked.

Web filter can not block youtube via chrome browser? Try WFilter.

Leave a reply

Since chrome implemented QUIZ to server web requests, it has been a dark period for IT administrators because normal web filter won’t work to filter google/youtube sites. You may check more details at Why is Google’s QUIC Leaving Network Operators in the Dark?   A protocol description of QUIZ can be found at: https://www.chromium.org/quic

Our team has worked out solutions to block QUIZ, so you can get web filter back to working.

For WFilter Enterprise and WFilter Free, you simply need to block UDP port 443 in your router/firewall. Steps to block udp ports can be found at here: http://wiki.wfiltericf.com/Block_udp

For WFilterROS, please check this post: Do not forget to block QUIZ to block youtube and other google sites.

 

Do not forget to block QUIZ to block youtube and other google sites.

Leave a reply

In google chrome, a new protocol named QUIZ, is implemented. The protocol description can be found at https://www.chromium.org/quic

It says QUIZ can improve website performance by 3%. However, because QUIZ is an UDP based encrypted protocol,  domains support QUIZ will not be blocked with WFilter’s web filter.

This issue happens in Chrome browser to Google sites only(including youtube). To make web filter working, you’re recommended to block QUIZ completely.

In pass-by deployment with WFilter Enterprise, you’re recommended to block udp ports “443 -65534″ in your firewall and router.

In WFilterROS, you can block QUIZ in the “app control” module.

Demonstrations of blocking youtube.

When QUIZ is not blocked, you can only see QUIZ traffic when visiting of youtube with chrome.

quic1

Block QUIZ in app control.

quic2

Now “QUIZ” connections are all blocked, and youtube can be blocked by WFilter.

quic3

 

How to block facebook video without blocking facebook?

Leave a reply

Now days, people can not image life without facebook, however, streaming videos in facebook can consume a lot of your bandwidth. Sometimes, you may want to block facebook videos without blocking the entire facebook websites.

WFilter can divide facebook video traffic from other traffic. We defined a new protocol named facebook videos.

This facebook videos protocol can block tls sites fbcdn-creative-a.akamaihd.net, video.xx.fbcdn.net which are hosting facebook streaming.

Steps to setup the blocking policy

1. Edit your blocking policy and click “edit” in “Applications”.

2. Search facebook and set to “status” to “deny”.

Done.