After a couple of weeks of troubleshooting and firmware upgrades and setting adjustments. I have officially given up..
After loading PRTG and watching what happens during 48hrs.. I've come to the conclusion that this a POS router.
Here is what happens..
Immediately after I get a series of these messages in the log..
kernel: [141072.610828] FIREWALL: DROP PACKET is not associated with an existing connectionsIN=eth3.1 OUT=eth2
The router goes to 100% utilization for 10-30 sec.. Causing the following conditions on a repeated basis.. Also the session concurrent limit is reached constantly over time even after tweaking timeouts etc..
Here are a few graphs depicting what happens to HTTP: as well as ICMP and DNS pings when these conditions are reached.
BTW I disconnected the offending DVR that was creating the packet and magically this morning the condition has not been reached.. Oh BTW SNMP is broken as you know only showing stats for USB1 on a SNMP probe.. And no I am not reseting the router to factory settings to get SNMP to work like it should out of the BOX..!
![Ping_Router.png Ping_Router.png](https://community.cisco.com/t5/image/serverpage/image-id/128408iBFC795E66B4C76D6/image-size/large?v=v2&px=999)
![HTTPS.png HTTPS.png](https://community.cisco.com/t5/image/serverpage/image-id/128410i59C8BC11728C4D40/image-size/large?v=v2&px=999)
![Full_Web_Page Load.png Full_Web_Page Load.png](https://community.cisco.com/t5/image/serverpage/image-id/128411i479C44BEBE3696EA/image-size/large?v=v2&px=999)
Ubiquiti on the way!
RV340 for sale cheap!
It will up on Ebay in a few days!