I recently upgraded my ISP speed to capitalize on faster upload speeds 800 down/ 150 up (web storage has been bottlenecked by slow upload). After verifying my system can handle it (Arris SB6190 → pfSense with 1GB NIC → Ubiquiti 24 port Switch), doing speed tests on Xfinity, and on the pfsense I was only getting 400 down/24 up, which is what I was supposedly upgrading from.
I have done the typical power down of the modem, firewall, switch (unplugged all for 10 minutes even), and still the same result. Latency improved from 17 to 15ms which was expected, I even tested my Cat 7 cables and they were just fine.
pfSense is on release 2.7.2. I am doing some firewall maintenance the next few days (replacing the CPU with a AES-NI enabled chip, updating the server BIOS, and general cleaning), but I have not made any other changes.
In the software, the only thing that looks out of place is my gateway DNS showing 1.1.1.1, instead of the 9.9.9.9 that was set, and the pfBlockerNG DNSBL is not running, but other then that all seems well.
Wordy, but not sure what else to try besides getting another modem. Open to suggestions!
That modem is DOCSIS 3.0 and won’t achieve max speeds with Xfinity in my experience (even though it says it should). Xfinity may not let you get improved upload speeds with your own gear. Hadn’t been an issue for me for a long time with a CM1000 but I really wanted the boosted upload speed that came out. So I had to lease one of their modems and put it in bridged mode. Crosstalk talks about it in the Unifi cable modem review, although that might just apply to business accounts.
I saw a review of the Hitron CODA 56 allowing for the higher upload speed on Xfinity but didn’t spend the time to find out.
That is what I was thinking as well, but I have had the SB6190 with Xfinity before when I had 600 Mbps service, and was regularly getting those or slightly over. I am not expecting the full 150 Mbps upload, but would have expected more then 0 change.
Funny you mention the Hitron CODA 56, I have one arriving tomorrow (to rule out anything else. As I have other Ubiquit hardware, I was looking at their UCI product, but they also looked to be capped at 40 Mbps from what I was seeing.
I just got off the phone with Xfinity again and the suggested reaching out to Arris, or waiting for the new modem.
The Intel based NIC in the pfSense should be comfortable with the 800 Mbps I would assume? Maybe I will take a look to see if there is any firmware updates for the NIC/Dell side of things.
The suggestion to contact Arris is probably just a ‘default reply’ and likely leads nowhere. I think that my plan is similar and get 940/120 with a pieced together pfsense box on 2.7.2. Drops down a bit when doing traffic shaping for bufferbloat but it is quite snappy.
I’m interested to hear about how the Hitron works out because this stupid white Xfinity box doesn’t match my other gear and its white light on top makes me feel like it is looking at me
I did contact Arris, and they told me to go back to Xfinity. Lol.
I’m running pfSense on a Dell R210ii which has been phenomenal. I’ve got Dell and Ubiquiti gear so the Hitron wont be to far out of line with my aesthetic. Any luck tomorrow Ill have an update.
Turns out after going down some rabbit holes with pfSense (and watching many Lawrence Systems videos), my problem was multi-faceted.
My pfBlockerNG was glitched (haven’t done much with it for 2 years to be fair - likely due to some certificate issues I was able to resolve), uninstalling and doing a fresh install fixed that issue.
Arris SB6190 actually did have some software challenges that I could work with Arris on, but ultimately I decided to wait until the new Hitron arrived.
Under Firewall/Traffic Shaper/Limiters my speed was capped at 450Mbps download, but uncapped on upload.
After installing the Hitron CODA56 I am comfortably getting 800/120Mbps speeds, and testing some of my large uploads it is noticeably quicker.
I had a similar issue with Spectrum when I upgraded to the gig and after I installed an edge router just for firewall purposes. After extensive testing on the hardware and even the connections I removed the edgerouter and put up a OPNsense firewall and my speeds were around 940 to 950 down and 40 up. Now one thing that could slow down the connection is if you have multiple categories enabled for the IDS/IPS and if you have DPI enabled. Now if you have good enough hardware and I mean something more than 2ghzI5 CPU and 8gb ram, then you should be getting close to what you are paying for.
I also noticed that the modem was a DOCSIS 3.0 and that could be an issue. I have a modem that is DOCSIS 3.1 and I am pulling descent speeds all things considering. As a possible suggestion, see if you can get an upgraded cable modem from your ISP and start there.
My problem was partly with having a limiter enabled (not sure when/why I would have enabled it), and the Modem box itself was actually bad It had sustained an electrical surge earlier this year (have since added a UPS for my Modem, Firewall, and Switch).
I haven’t enabled and IDS/IPS system, but with that said, I did just get a new CPU installed in my pfSense Dell R210 that is 3.5Ghz, and doubled my ram to 16GB (overkill, but its fun to tinker with).
The new Hitron CODA56 is working as good or better then expected. I just had to spend a day digging into things and troubleshooting.
I gotcha. With a system like that, I would encourage you to suggest tinkering with IDS/IPS as well as DPI. You would be surprised how many times I find that people do not put the cable modems on a UPS. It’s more common than what you may realize.
