Of course it's a valid comparison. What he says is true - pfsense requires significantly more powerful hardware. The USG doesn't do much more than the ER - The USG is a router as is the ER, in fact it's almost identical to the ER in hardware and OS. The only real difference is it uses UniFi to control it, which is nothing more than a fancy centralised GUI front end. It doesn't really do anything the ER can't other than a few features which are essentially UniFi features rather than features of the USG itsel. In fact it has quite a few less options in the GUI than the ER that instead need the use of a command line to function.
*** Official Ubiquiti Discussion Thread ***
- Thread starter RoyMi6
- Start date
Soldato
- Joined
- 8 Jan 2003
- Posts
- 3,802
- Location
- Scotland
The only function that I believed the USG had that the ER didn't was IPS/IDS.
Associate
- Joined
- 2 Sep 2007
- Posts
- 1,996
I'm looking at Ubiquiti kit and I thought I would start with the access point - UAP-AC-PRO. To begin with I'm going to connect it to my Fritzbox provided by Zen. I assume I need to get a POE and the Fritzbox doesn't support POE? There's three POEs on Overclockers - https://www.overclockers.co.uk/search?sSearch=POE+injector
Which one do I need to get? What's the advantage of the 48V?
Which one do I need to get? What's the advantage of the 48V?
Wonder if people could help. I think my USG is dead.
We moved house recently and connected it all up, same as our previous house and it just worked brilliantly. I was actually quite surprised!
Then last night i thought i'd tidy it up as it seems this isn't a good long term solution
I connected everything back together in a more orderly fashion and suddenly had no network. Loaded up the controller software and saw no devices. Then i noticed there was no light on top of the USG and on the back there was just a flashing light above the console port. From a google it suggests it could be knackered.
Bit of a pain as now i have to reconfigure everything back to use the BT Homehub until Ubiquiti sort the RMA out.
We moved house recently and connected it all up, same as our previous house and it just worked brilliantly. I was actually quite surprised!
Then last night i thought i'd tidy it up as it seems this isn't a good long term solution
I connected everything back together in a more orderly fashion and suddenly had no network. Loaded up the controller software and saw no devices. Then i noticed there was no light on top of the USG and on the back there was just a flashing light above the console port. From a google it suggests it could be knackered.
Bit of a pain as now i have to reconfigure everything back to use the BT Homehub until Ubiquiti sort the RMA out.
I have a SG2200 for sale on here, which will do 1Gbit. I have been considering keeping it and trying to run it along side the USG, but I'm not sure that's possible. It's a much more capable device than the USG but I wanted the graphs etc.
The the single AP’s come with a POE injector.
Was the USG used in the middle of that stack for very long?
If so then although they can just fail, I would be wondering if it failed due to overheating as they can run quite hot and in that picture its got devices above and below (hopefully sunlight doesn't hit that kit directly as well).
To be honest it was only like that for a few hours. It was previously housed like this for 3 weeks (however it worked perfectly in those 3 weeks). Ignore the terrible picture. Imgur seems to want me to force people to break their necks!
Then we had to clear the room out ready for the flooring people to come in and screed so i took it apart and quickly stuck it together on the windowsill as above
Then we had to clear the room out ready for the flooring people to come in and screed so i took it apart and quickly stuck it together on the windowsill as above
DPI too. You basically lose all the reporting functions from the controller.
The question really boils down to whether or not you need Suricata, Snort and QOS. If you do then pfSense is your only option. If you just need QOS then a USG-Pro will handle 500Mbps.
I see pfSense and USG as growing concepts. They are getting better. Maybe not faster, as the USG is effectively an EdgeRouter Lite, so its creaking under the software load now.
Associate
- Joined
- 2 Sep 2007
- Posts
- 1,996
They used to but not anymore.
Soldato
- Joined
- 8 Jan 2003
- Posts
- 3,802
- Location
- Scotland
Suricata I would use but could do without, QoS is the main one. I did consider a USG Pro but a) it's a rack mount device, I have my USG wall mounted in my utility room and b) it's not silent.
The EdgeRouters do exactly the same DPI as the USG...
Wow really, that’s crap.
I had a Nano to try out the other week, single retail boxed and I came with a PoE injector for power.
Using an EE provided all in one I’d rather use something ‘better’, however for the freebie box it’s actually pretty decent.
Tried a Draytek 2862ac and the wireless performance was both worse and very inconsistent compared to the EE box. So that got boxed up and sent back.
Next thought was to maybe have a non wireless Draytek and use the Nano.
Set the Nano up and it gave me around 50ish MBs compared to 41/42 MBs on the EE box.
So now deciding whether I can be bothered with the hassle of seperates for everything or not when the EE box is actually doing a decent enough job.
But then we aren’t on all on here because something does a good enough job of something right?
Using an EE provided all in one I’d rather use something ‘better’, however for the freebie box it’s actually pretty decent.
Tried a Draytek 2862ac and the wireless performance was both worse and very inconsistent compared to the EE box. So that got boxed up and sent back.
Next thought was to maybe have a non wireless Draytek and use the Nano.
Set the Nano up and it gave me around 50ish MBs compared to 41/42 MBs on the EE box.
So now deciding whether I can be bothered with the hassle of seperates for everything or not when the EE box is actually doing a decent enough job.
But then we aren’t on all on here because something does a good enough job of something right?
If you say so. It’s always a source of amazement to me how some posters make out that the Unifi and EdgeMax lines are the same hardware and do the same things yet somehow the EdgeMax lines are faster and just do everything better. The grass is always greener etc.
I had a Nano to try out the other week, single retail boxed and I came with a PoE injector for power.
Using an EE provided all in one I’d rather use something ‘better’, however for the freebie box it’s actually pretty decent.
Tried a Draytek 2862ac and the wireless performance was both worse and very inconsistent compared to the EE box. So that got boxed up and sent back.
Next thought was to maybe have a non wireless Draytek and use the Nano.
Set the Nano up and it gave me around 50ish MBs compared to 41/42 MBs on the EE box.
So now deciding whether I can be bothered with the hassle of seperates for everything or not when the EE box is actually doing a decent enough job.
But then we aren’t on all on here because something does a good enough job of something right?
If you you only have a single access point, and a single client, and that client isn’t a 3x3 or 4x4 MuMiMo client then you will generally see zero benefit with an expensive access point over a cheap one and that’s double with a Unifi Access Point because they’re designed (and priced) for high density environments. That’s what the HD stands for.
Please don’t think I’m trying to teach you to suck eggs but as I’m sure you are aware any access point timeslices the clients and deals with one after another. So the more clients you connect, the slower it becomes. For some reason it is commonly held “wisdom” that it’s because you are consuming bandwidth. Which it sort of is, because the access point can handle so much at a time, just not the way you would expect.
The NanoHD can handle 4x4 MuMiMo clients one at a time or it can handle two 2x2 clients simultaneously which is very trick indeed. It doubles the throughput with 2x2 clients.
Another ‘fast’ access point gotcha is the effect of slower devices on the network. Let’s say I have a brand new 4x4 MuMiMo Samsung Phone and I connect to the NanoHD. I connect at the FULL rated speed. Then, if I hook up my Hue lightbulb controller to the same access point, because that’s 1x1, the entire system becomes 1x1. That doesn’t happen on the NanoHD. You drop down to 2x2.
It’s a bit of a minefield, and hopefully that explains why the EE device works so well in comparison.
Oh, and try and manage 250 of those EE devices simultaneously....
Well it’s kind of obvious you wouldn’t manage 250 stand alone devices, unless some sort of sadist.
I’m not doubting they are are good bits of kit that scale, just pondering what to do for a home environment that has around 10 devices connecting, not all at same time.
Would quite like something that has a few more config options though, have some security kit that I could make use of then to tinker with
I’m not doubting they are are good bits of kit that scale, just pondering what to do for a home environment that has around 10 devices connecting, not all at same time.
Would quite like something that has a few more config options though, have some security kit that I could make use of then to tinker with
Trying to decide what my best approach is here. I've currently got the USG and a AC Lite. I want to add a switch but need to use my injector as it's not the brand new one which is unifi switch poe supported.
So, with the US-8 it has POE passthrough .. does that mean I can use my injector into port one and then feed the AC Lite from port 8 by just running the cable to it? To be honest it makes almost 0% difference as the injector will still be by the switch anyway.
So, with the US-8 it has POE passthrough .. does that mean I can use my injector into port one and then feed the AC Lite from port 8 by just running the cable to it? To be honest it makes almost 0% difference as the injector will still be by the switch anyway.