request next router firmware to include;
-
Reset / Clear Stats, required after a move or change in configuration, want clean slate after changes external to the router, don’t want to inherit stats from previous setup, for example a device consuming more bandwidth than it should causing a high cell modem bill, replace of upgrade external device and need to see if the problem cleared
-
LAN port stats realtime, showing negotiated speed, duplex, Tx and Rx errors, and usage, which will show us port flapping, a chronic issue,
and we have zero visibility to whats happening on ports, if we see a bunch of errors then we know there is port flapping occuring and we have to hard code the port for lower speed and full or half duplex
-
add “Test” button along side “Apply”, doing remote config changes can easily lock us out of a switch and require a truck roll, having a test revert, or loss of comms reverts, is in-valuable
1 Like
Restore to factory settings should reset/clear the old bandwidth usage stats. Just backup the current config before factory restore, then apply it afterwards.
LAN port stats are available on the support.cgi page. How often they are updated, I don’t know. I also don’t know if InControl2 shows it or if its just available locally.
1 Like
I like the option to revert config if you don’t hit a (don’t revert button after apply)
Would be intersted how that would/should be implemented.
IC2 has a revert option, but that’s only if the config is pushed by ic2.
1 Like
Completely impractical for a working system, it stays in place but changes were made to external devices, and or the switch ports which are flapping due to low speed scada equipment as an example.
We need to reset and clear the stats, to see if the changes corrected the issue.
I could not find a support.cgi page in the router.
We do NOT use incontrol due to the high risk of an attack, we all remember the Solar Winds / Microsoft mess and others. We disbale IC on all devices.
All stats must be within the router so we can log into it to see them, not IC
And not all devices are hooked to the internet, Scada systems are usually off grid to protect them from attacks on un-secure Modbus
1 Like
This is the URL for the dashboard
https://1.2.3.4/cgi-bin/MANGA/index.cgi
replace index.cgi with support.cgi. Ethernet stats are at the top.
1 Like
Hello Michael,
support.cgi did bring up some stats
What we need is that page accessible from the port page
and expand LAN from a single line to each LAN port in the device
16 ports, 16 lines with all of those stats
You are likely aware of Ubiquiti Toughswitch and Netonix, both have excellent on screen port information, looking for something similar on that port page
We’re flying blind on Peplink, no idea whats happening on ports on both the Balance and SD switches
2 Likes
Hello @Dave_Emery,
We get your concerns about allowing management platforms access to your networking devices via platforms like InControl2. Every form of the management system, even if it is manually logged in via a shared password system, is inherently risky.
Would you consider with the setting of your device (even for evaluation) changing some of them to “Restricted to Status Reporting Only”?
This will allow you access to the DPI features that InControl2 can do without allowing changes to your devices. For future AI features, this will have to be remote from the device; there is just no way a device can currently get that much resources into it locally.
For anyone interested in the incident that @Dave_Emery is referring to, take a look here ( SolarWinds hack explained: Everything you need to know ).
Happy to Help,
Marcus 
Scada systems are normally on a private LAN with no outside access, no gateway
Especially when Modbus is being used as it is completely un-secure
And We all have seen Scada system attacks in the news
So IC is not a solution
Anyone having used Netonix switches is well aware of their excellent GUI and LOG, clearly showing all of the parameters for each port and plain english LOG showing flapping. There is NO guessing with their equipment.
I read in one of the posts that there is no way all of this information can be put in a device,
with all due respect both Netonix and UBNT both have full port information and errors.
I’m not here to sell those devices, I’m here to buy hardened equipment and pay more for it, I do believe that Peplink needs to provide full port information, same as the other guys
We have ton of low speed devices spread across the Empire, Scada modules, cameras, Radio over iP and VOIP, all varying from 10 half to 100 half to 100 full, and none of them like being plugged into a 1 gig port, because they sit and flap all day long until we hard code the switch / router LAN ports
and some of these devices just keep flapping from bad firmware, bad enet chip, and we need to see that info in order to replace the device
Flapping ports are toxic
