Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Windows Update and Multi WAN

    Scheduled Pinned Locked Moved Routing and Multi WAN
    1 Posts 1 Posters 272 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tezza
      last edited by

      Hi All

      I have reached a brick wall today after slogging for two days to get Windows 11 Update working reliably.

      My story…

      I’ve been running 2.5.2 CE for 4 months on a decent 3 NIC PC with a very basic config, multi WAN with two same tier providers (500Mbit/s Down/Up fibre). Each carrier PON router set with DMZ pointing to each WAN interface, and load balancing working fine using “Member Down” on gateway, “sticky” turned on, real basic rule set. Watching the perf graphs it’s clear the WAN interfaces are running active/standby. Haven’t had an issue since it was installed. Even with both WAN gateways set to Tier 1 the behaviour is 100% active/standby with no round robin taking place.

      Then I decided to buy an SG-2100…. Clean built it, set all the ports to be discrete, and hand configured the 2100 with all the same settings as my CE box. Have had it installed and running for a few days and now find Windows 11 Pro updates stall, fail, just won’t complete successfully. I have clean built 20 Windows machines using the 2100 firewall and not a single one has gone smoothly.

      I’m using “sticky” on the 2100 but it makes no difference. If I plug the PC direct into one of the routers and run the windows 11 build, all the Updates for Windows 11 come down quickly and run cleanly. As soon as I plug back into the LAN side of the appliance, Windows Update is severely affected again.

      As said have hit a wall and just have no idea what to check next but my gut feeling is that the issue is so obvious Yet have lost sight of forest for trees.

      In desperation I put a rule in on LAN interface that blocked the client PC from using one of the WAN interfaces however I was still seeing “states” for the Client PC mentioning both WAN gateways and the states couldn’t be flushed no matter how many times I tried.

      Has anyone else experienced anything like this? As said the 2.5.2 CE f/w works great. My issue is with the SG-2100 appliance.

      I desperately want to make this work. I feel I have missed something obvious.

      Help!!

      Terry

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.