Evo WiFi Controller - Active TCP Sessions

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts
  • MrB
    Automated Home Sr Member
    • Oct 2015
    • 80

    Evo WiFi Controller - Active TCP Sessions

    Just had a need to do some work on our Internet Router (a Draytek) and noticed the Evohome Controller had over 300 active connections to the outside world.
    Seems a lot so I powered down the Controller and then let it run again for half and hour.
    Active TCP sessions above 200 again - all to the same host IPs but that many simultaneous connections? (204.141.57.101, 12.149.218.73 port 443)
    It must be swamping the Host Server.

    Anybody else confirm this via their Internet Router ? (NAT table or Data Flow Monitor)
  • dty
    Automated Home Ninja
    • Aug 2016
    • 489

    #2
    Are you sure they're active and not in TIME_WAIT?

    Unless it's causing you a problem, I wouldn't worry about it.

    Comment

    • sandyman
      Automated Home Sr Member
      • Mar 2016
      • 85

      #3
      mine is the 20's, measured by the same method (Draytek data flow monitor).
      I haven't wiresharked it...

      Comment

      • MrB
        Automated Home Sr Member
        • Oct 2015
        • 80

        #4
        20's would make more sense - mine is back around 250... even if you allowed a couple of connections per 'device' (of whatever description or purpose) if should be sub-50...
        Time for Wireshark indeed.
        @sandyman
        What is the firmware version of your WiFi Controller?

        Comment

        • sandyman
          Automated Home Sr Member
          • Mar 2016
          • 85

          #5
          application 01.00.02.01
          wifi 01.00.02.00

          Comment

          • DBMandrake
            Automated Home Legend
            • Sep 2014
            • 2361

            #6
            Check that you don't have your NAT timeouts set too short on your router. (Might not be adjustable)

            If the connection is idle for a long time the NAT table may time out the entries and force the controller to establish a new connection periodically. Depending on where you monitor the connections from (anywhere except the routers own NAT table) it may look like there are a lot of connections open at once but all but one of them will be dead!
            Last edited by DBMandrake; 21 February 2017, 10:35 PM.

            Comment

            • paulockenden
              Automated Home Legend
              • Apr 2015
              • 1719

              #7
              I'm seeing nine connections, all currently TIME_WAIT

              Comment

              • DBMandrake
                Automated Home Legend
                • Sep 2014
                • 2361

                #8
                Originally posted by paulockenden View Post
                I'm seeing nine connections, all currently TIME_WAIT
                If all the connections are in TIME_WAIT surely you don't have an active connection to the server ?

                On the other hand I did notice the iPhone app this morning saying that the servers were "down for maintenance", yet following the link to the website says everything is operational - take your pick.

                Comment

                • paulockenden
                  Automated Home Legend
                  • Apr 2015
                  • 1719

                  #9
                  Originally posted by DBMandrake View Post
                  If all the connections are in TIME_WAIT surely you don't have an active connection to the server ?
                  Quite. I was surprised.

                  Comment

                  • DBMandrake
                    Automated Home Legend
                    • Sep 2014
                    • 2361

                    #10
                    Originally posted by paulockenden View Post
                    Quite. I was surprised.
                    I'll test mine at some point because I'm now curious. The easiest way for me to do that is set up one of my Pi's as a SoftAP for the Evotouch to connect to then I can intercept all its traffic and run tools like tcpdump on the Pi. Just a matter of trying to find the time to do it....

                    Comment

                    • MrB
                      Automated Home Sr Member
                      • Oct 2015
                      • 80

                      #11
                      Originally posted by sandyman View Post
                      application 01.00.02.01
                      wifi 01.00.02.00

                      I expected same and it is... Time for Sherlock Holmes hat...

                      Comment

                      • dty
                        Automated Home Ninja
                        • Aug 2016
                        • 489

                        #12
                        Originally posted by paulockenden View Post
                        Quite. I was surprised.
                        I've been watching mine for a while. I generally have in the order of 20-30 closed sockets in TIME_WAIT state, and none in ESTABLISHED. It's clear that the controller doesn't maintain an open session to the server, and instead connects and polls periodically.

                        Comment

                        • dty
                          Automated Home Ninja
                          • Aug 2016
                          • 489

                          #13
                          Originally posted by dty View Post
                          I've been watching mine for a while. I generally have in the order of 20-30 closed sockets in TIME_WAIT state, and none in ESTABLISHED. It's clear that the controller doesn't maintain an open session to the server, and instead connects and polls periodically.
                          Further analysis suggests that it's making an outbound connection to the Honeywell servers every 5 seconds! Not the most efficient way of building it, but it's tried and tested and the least likely thing to get broken by a stupid router/ISP.

                          Comment

                          • dty
                            Automated Home Ninja
                            • Aug 2016
                            • 489

                            #14
                            Ah! Actually, there is planned maintenance this morning, so this could just be connections getting refused and it retrying. I'll re-analyse once the system is back up and running.

                            Comment

                            • dty
                              Automated Home Ninja
                              • Aug 2016
                              • 489

                              #15
                              No, still the same... connection outbound every 5 seconds.

                              Comment

                              Working...
                              X