*** Official Ubiquiti Discussion Thread ***

Going to be giving Firewalla/Opensense another try this weekend, and getting my Unifi setup ported over, could not for the life of me get the vlanning working properly last time.

If it doesn’t work I think I’ll have to but the bullet and either sell it, or have a very expensive adblocker, with useful features like vpn/DoH.

Since I need a gigabit+ plus router, what are my best options if I do go ubiquiti? I know there are issues there but I want port aggregation and sfp modules on the router and ideally would like to use ids which I think rules the usg pro out, plus it’s eol unless I’ve imagined that? I think I was considering the UDM Se Pro last time round.. I take it there’s no changes there? I had a look and they’ve added 2.5GbE ports to the se? Or did it always have it
 
Last edited:
Set the u6 Mesh up today, has definitely improved the coverage upstairs which is nice.

Managed to mount it relatively easily in a not too terrible position (it'll do for now).
 
Although noticing now sat in my study my work laptop moaning about poor connectivity over Zoom.

Don't really want to have to start putting extra APs in downstairs as well as the UDR.

Damn the BT box for being so good coverage wise for us.
 
Going to be giving Firewalla/Opensense another try this weekend, and getting my Unifi setup ported over, could not for the life of me get the vlanning working properly last time.

If it doesn’t work I think I’ll have to but the bullet and either sell it, or have a very expensive adblocker, with useful features like vpn/DoH.

Since I need a gigabit+ plus router, what are my best options if I do go ubiquiti? I know there are issues there but I want port aggregation and sfp modules on the router and ideally would like to use ids which I think rules the usg pro out, plus it’s eol unless I’ve imagined that? I think I was considering the UDM Se Pro last time round.. I take it there’s no changes there? I had a look and they’ve added 2.5GbE ports to the se? Or did it always have it
What is the drive to use IDS? If you’re running Windows Defender then it already has both signature and anomaly based threat detection at the host/client level so no need for it to be done twice. And Microsoft issue updates almost daily. Pretty much every other intrusion detection/prevention system uses Snort/Suricata (or something forked off them) which are updated regularly but Ubiquiti certainly are not distributing signature updates daily.
 
What is the drive to use IDS? If you’re running Windows Defender then it already has both signature and anomaly based threat detection at the host/client level so no need for it to be done twice. And Microsoft issue updates almost daily. Pretty much every other intrusion detection/prevention system uses Snort/Suricata (or something forked off them) which are updated regularly but Ubiquiti certainly are not distributing signature updates daily.
Possibly don't need IDS then, especially if its not being updated regularly. The USG pro is obsolete/EoL though I think is right?
 
The USG pro is obsolete/EoL though I think is right?

Sort of. They still sell both models but they haven’t issued any updates other than security updates since 2019. BUT! And this is a really big thing, most of what happens in UniFi is actually in the controller so any new functions in the controller are implemented on the USG line as well. UBNT don’t make any noise about that because they want you to buy a ‘console’, but it’s true.
 
Ive had a AC HD delivered to add to my Bars network. I asked the supplier to set it up to mesh with existing equipment (same model AP) How do i get them to work. If i just plug it in VIA POE it just sits there. If I attach to the network its fine...

Not sure if it tried to mesh as it went into update mode but hung for 2 hours before i had to leave..


Its come on live after trying again.
 
Last edited:
In UniFi terms, 'mesh' is a wireless mesh between APs. If all APs are hardwired, it's advisable to disable it.
One is hardwired. One is in a basement. With no way to connect. But when I tried last week it wouldn't connect even if upstairs and 10 ft from the hardwired one..

Its working now and is getting a signal in the bunker... I'll test it for a week and then I can cancel the crappy 2mb copper rubbish we have just for the alarm.
 
Last edited:
I've got 2 x U6 Lite and 1 x U6LR attached via switch to my Virgin Media Hub4 (3 storey house, long garden - Hub4 wifi turned off). On the Unifi app these show as "Independent Devices" and seem to drop in/out on the status screen (little dot goes green then grey and back again). No connectivity problems with most devices (except SkyQ seems to need network reset every other day) - is this how they are expected to work in terms of the app or have I stuffed something up while setting up?
 
I want to setup dual WAN on my USG Pro, but I've got an issue with the amount of cables I've got available.

Virgin comes in on one side of the property, where all network kit is currently setup.

BT comes in on the other side of the property, which just goes to a BT router.

I have one spare cable laid connecting these two locations underneath the driveway. I presume I can simply connect the BT router to WAN 2 on the USGP using that cable, and I'll have Dual WAN failover, but then how do I get additional network sockets in the BT Room without a second cable running back to the BT room?

Is it possible to have the one cable connect to a switch in the BT room, which then connects to the BT router for WAN2, but also provides additional local LAN sockets?
 
Last edited:
It seems this may be kind of what I'm after:


N0vUBM4.png


So passing the WAN 2 connection back to the USGP via a VLAN in a switch.

Would the rest of the ports on that switch then still have normal LAN access even with just the one cable and VLAN port connecting it to the USGP?
 
Would the rest of the ports on that switch then still have normal LAN access even with just the one cable and VLAN port connecting it to the USGP?

As things are cabled up in that diagram - no.

What you could do is rather than connect that cable between WAN2 on the UDMP & the other switch, connect WAN2 on the UDMP to another LAN port on the UDMP making sure that port is in the VLAN (make it VLAN only rather than a Corporate network) that you want the LTE device to be in on that switch.

Connect the UDMP and switch via another port on the UDMP and make sure that at least your LAN and this new VLAN are presented on the port on the UDMP and switch that they're connected on. Connect the LTE device into the switch and put that switch port into that VLAN you created earlier.
 
Thanks, I think I follow. Not sure I can do that exactly as described as I only have a Unifi Security Gateway Pro, not the switch, so not too many LAN ports to pick from.

My switch is a 16 Port Netgear. It does have vlan capability though, so I might be able to work it out through that.

Although I'm thinking now I may just cut the line to one of my CCTV cameras near the BT room and turn that into a 2nd cable connecting the two rooms to act as a backhual between the two switches, then have the first cable go direct to the WAN2 port.

Then I can run a new cable from a switch in the BT room for the CCTV.

Hmmmm.....I guess this is why people always recommend to lay multiple spares!
 
Last edited:
Pretty peeved we are having to wait so long for OS3.0 on the UDM Pro - looks like it's still months away and stops us adding some of the new cameras :mad:
 
Pretty peeved we are having to wait so long for OS3.0 on the UDM Pro - looks like it's still months away and stops us adding some of the new cameras :mad:
To be fair, even the 2.4(?) change is absolutely massive, it's a new OS, and removing all services from podman containers onto metal, all whilst providing rollback in case of failure. It's a huge piece of development work to ensure people's devices don't end up bricked. It's partially their own fault, for changing their software strategy, but I do sympathise somewhat with the amount of work that has to go into it.
 
Back
Top Bottom