Learning more features in the firewall everyday. More features that we can enable to fine-tune surfing experience for a large number of people.
Earlier challenges: When all ports open, streaming TV and Torrents will create SO MANY sessions and consume so much bandwidth that all other services die.
Firewall added to control sessions: A clean PC/Notebook will be able to surf quite fast. But if the notebook is infected with a virus/Malware/Spambot etc, those hidden programs will use up the session limit, and surfing becomes slow to impossible again.
Port blocking: PS3 cannot run.
Final solution: HTTP (ie. web surfing) will get infinite sessions. No limits. All the ports above 1000 (ie. everything used by PS3, Steam, online games, Facebook games, SPAMbots, viruses etc) will also be unblocked, so that all services will function, but there will be a session limit for these services. There’s still enough sessions for games to run. Even torrents can run a little bit, but won’t be super fast.
With this compromise, all services are granted access, with a limit high enough for games to work, but also controlling torrents and streaming so that they don’t jam up everything. By all accounts, PSN and other games should run.
Last week, the engineers also followed up on some cases where residents were experiencing bad surfing speeds. In both cases investigated, the wifi was working fine. The problem was from malware/virus infection which was using up all resources. The virus used up all the available sessions, and the web surfing cannot squeeze pass the door.
When an infected laptop like this moves to the Chalk & Cheese wifi, it’ll suddenly be able to surf. Cos their wifi doesn’t control sessions, so all the doors are open. The viruses are sending out spam faster than ever, but there’s still a few doors left open for web surfing to go, that’s why web browsing can suddenly work at C&C wifi, but fail in Residence Wifi. But a setting like this will only be able to support a few users before the viruses overwhelm everything again.
At least with a firewall in place, the infected machines won’t affect the experience of clean machines, since everyone is given a fair share of traffic bandwidth.
In one room, only one of the resident experienced surfing problems, while her room mate had no problems at all. So the issue was obviously with the laptop.
So I’ll like to advise everyone to install an antivirus into their laptops. This could solve 70% of the problems some users are facing.
Some recommended and free Antiviruses like: Avast! and Microsoft Endpoint Protection are worth trying out.
Hmm… although we’ve unblocked everything… Dunno why some users still have problems with DDTank. What game is that? Is it so important? >.>
Well, we don’t know how the game works. But just in case, we enabled UDP traffic as well. Usually everything nowadays should be using TCP traffic. See see how how now?