Gold SE disables internet for all devices when my iPhone disconnects from wifi (turn off or leave home)
Have an issue... GOLD SE disables internet for all my devices (wifi and Ethernet) when my iPhone disconnects from wifi (turning it off in settings or when I leave my house). I'm a little frustrated since I'm getting absolutely nowhere with tech support. I'm hoping that someone else has experienced this issue and has a solve for it.
-
Here is my network setup. The vast majority of all my devices are connected via ethernet to a switch that is connected to the GOLD SE. The wifi router is connect to the GOLD SE (of course via Ethernet) and the only devices that use wifi are mobile devices (phones, tablets, cameras). Yes I can connect to the gold Se when I'm away from home. All of the devices show online when I'm away from home but none of my family members can access the internet.
My iPhone is what I used to setup the gold se -
If you can access the Firewalla from outside, it means your LAN has problems. I'd check your LAN configurations and see if there are anything strange you may have configured. Such as, pointing DNS to your phone (just a guess ... I don't know why you would do that ...)
Or it may be possible your WiFi or the switch may have issues or tied to your phone somehow?
I'd also check if ethernet devices are good or not, this will be able to point the issue to WiFi
Beyond that, this is a very strange issue ...
I don't think it ever happened to anyone else before
-
I just reset the device back to factory specs on Sunday. I haven't changed anything in the configurations for LAN1 (ports 1-3).
No way the switch has any settings tied to my phone.All ethernet devices are good with new wiring through out the house. They are not sending traffic thru the wifi router. Their traffic goes thru the switch to the Firewalla.
-
To be clear, it is not possible for your phone to disable the LAN side of your network when you leave the house. Something else is happening. This is the reason I am asking you about the switch of the WiFi;
Or you can give support access to our team and we can look at the logs. And see if we can find anything strange on the LAN side.
-
A buddy of mine suspects that maybe the box is using my phone for DNS purpose or there is a rule being triggered that I can't find that is causing it.
I gave remote access to support twice today and after the second time, the rep hasn't responded to me in over an hour. So I'm getting nowhere. -
Unless your network is really strange, it is not possible for the firewalla to use your phone as DNS. It is just not possible. (reason, you can still access the box when you are outside, it means, the box is using your ISP DNS)
Please be patient with support access, we have to grab developers for this, so keep it on, until we tell you to turn it off.
-
I discovered on day 0 of deploying my first Firewalla unit last year that my existing networking device controllers (managed switch and APs) did not work harmoniously with the Unbound DNS feature. If I do not specifically exclude all of the networking device controllers (managed switch and AP's) from the Unbound DNS feature configuration, all devices on my network have no access to the internet except the Firewalla unit itself. Once my networking device controllers were excluded from Unbound DNS, my internet access was never as fast as it has been with my Firewalla router on the front end.
-
Sorry. I'm not the originator of this thread with the seemingly jailbreaked or potentially infected iPhone with the connection-hijack/ DNS-spoofing malware. But I did have a problem on my first firewalla deployment where my managed switch and APs kept reporting Internet outages intermittently for lengthy periods until the switch and the APs were specifically excluded from Unbound ... and I must acknowledge that Firewalla documentation did advise me that such incompatibilities can exist for certain devices before I enabled Unbound. Under my experienced scenario with the unbound, I could see where certain "linked" devices with "share Internet connection" (whether by user intent or malware) parameter enabled would find DNS and Internet through the phone after it failed-over from WiFi to cellular internet (depending on OS version). There's also a common case where torrenting freeware/malware may be installed by teens on the phone or a networked device and it has been allowed to propagate a TOR peer-to-peer encrypted tunnel network between other network devices that operates cloaked within and/or outside the TCP/UDP protocol communication flow and thus can not be detected or adequately contained by any conventional firewalls until there is activity to a known node IP address or domain. I'm not saying that's what's going on here, but there's obviously something amiss with the poster's non-firewalla devices being dependent on a cellular phone connection to the network ... albeit there may be an incompatibility between certain devices and the poster's current firewalla configuration that are bringing other more significant device issues to the surface like the potential existence of malware or an out-of-control torrent type encrypted-tunnel file or resource sharing scheme.
Please sign in to leave a comment.
Comments
13 comments