*** Official Ubiquiti Discussion Thread ***

BlizzardX said:
@the-evaluator Yep ok, so until I reset the laptop (was afflicted with the same issue) I was able to browse the internet fine and play games via Geforce Now etc. without issue. I could do a lookup on the DNS of the kaspersky address in the dns resolver cache but not the IPs listed. Using hte IPconfig commands restored access to kaspersky but again hte two ips that the dns resolves to would not resolve back to the domain name - this was the same from either my own DNS server or 8.8.8.8.
Click to expand...
I wouldn't necessarily read too much into reverse DNS not working, PTR records are often overlooked.

Can you ping 8.8.8.8 when things aren't working?
 
john_smith said:
Thank you. But their existing one is unsupported, nobody onsite with any knowledge. So plan was to seup talk as a backup and if their existing one dies were in a position to use an alternative.....as people get upset when their phones don't work :)
Click to expand...

Break that statement down - what additional support are you getting with the Unifi setup? I'm not saying keep running what you have, but to move to something that is supported and people are comfortable with.
 
Last edited:
Caged said:
Break that statement down - what additional support are you getting with the Unifi setup? I'm not saying keep running what you have, but to move to something that is supported and people are comfortable with.
Click to expand...

I'm getting a modern phone system that i'd have setup so have at least a tiny bit of understanding of how it works.

So, can it work in the UK without unifi talk handsets? if so is there a guide?

ty
 
john_smith said:
I'm getting a modern phone system that i'd have setup so have at least a tiny bit of understanding of how it works.

So, can it work in the UK without unifi talk handsets? if so is there a guide?

ty
Click to expand...


Some 3rd party SIP devices are said to work (on the UniFi talk forums) but they are not officially supported so if your phones don’t work you’re on your own.

Phones are not my area so I can’t say whether UniFi talk is good or not but the level of responses from folks who do phonescabove would probably make me bodyswerve the whole experience.
 
the-evaluator said:
I wouldn't necessarily read too much into reverse DNS not working, PTR records are often overlooked.

Can you ping 8.8.8.8 when things aren't working?
Click to expand...
Hi folks

So devices in question have stopped communicating with kaspersky again. This time I ran nslookup dc1-st.ksn.kaspersky-labs.com 8.8.8.8 from both my sons wired machine and this pc in question which is on wifi. His machine connected immediately and ran without issue but doing the same command on my daughters machine threw up a dns timeout error (DNS request timed out. timeout was 2 seconds). This same error was present no mattter which external DNS server was used. Additionally web browsing was a lot slower with pages taking a while to respond and ping -4/-6 requests often showing 2000ms to sites that would respond at 25ms on the wired connections in the house.

I then moved my daughters PC in to my sons room and connected the ethernet up. Kaspersky fixed itself almost immediately and the DNS issues went away.

So I can only summise that there is something in the AP setup that causes some strange DNS behaviour over a few days before it all stops working and clearly the wired network is fine. As the only difference is that my daughters PC is connected to the U6-LR and my sons is directly to a Gen 2 24 port POE (unifi) that it must be the AP.

I am going to try the laptop in my cabin as this is operating on a IW-HD and it will be interesting to see if that suffers from the same problem or if the IW-HD behaves differently.

In the meantime, anyone got any pointers for a correct setup? do I need to setup the DNS relay under 'network' to ensure that my DNS servers are being relayed properly across the network as currently that is not enabled.
 
BlizzardX said:
Hi folks

So devices in question have stopped communicating with kaspersky again. This time I ran nslookup dc1-st.ksn.kaspersky-labs.com 8.8.8.8 from both my sons wired machine and this pc in question which is on wifi. His machine connected immediately and ran without issue but doing the same command on my daughters machine threw up a dns timeout error (DNS request timed out. timeout was 2 seconds). This same error was present no mattter which external DNS server was used. Additionally web browsing was a lot slower with pages taking a while to respond and ping -4/-6 requests often showing 2000ms to sites that would respond at 25ms on the wired connections in the house.

I then moved my daughters PC in to my sons room and connected the ethernet up. Kaspersky fixed itself almost immediately and the DNS issues went away.

So I can only summise that there is something in the AP setup that causes some strange DNS behaviour over a few days before it all stops working and clearly the wired network is fine. As the only difference is that my daughters PC is connected to the U6-LR and my sons is directly to a Gen 2 24 port POE (unifi) that it must be the AP.

I am going to try the laptop in my cabin as this is operating on a IW-HD and it will be interesting to see if that suffers from the same problem or if the IW-HD behaves differently.

In the meantime, anyone got any pointers for a correct setup? do I need to setup the DNS relay under 'network' to ensure that my DNS servers are being relayed properly across the network as currently that is not enabled.
Click to expand...
If you weren’t on the other side of the world I’d offer to drop you off an Alta Labs 6 or 6 Pro to see if that suffered from the same issues.
 
BlizzardX said:
Hi folks

So devices in question have stopped communicating with kaspersky again. This time I ran nslookup dc1-st.ksn.kaspersky-labs.com 8.8.8.8 from both my sons wired machine and this pc in question which is on wifi. His machine connected immediately and ran without issue but doing the same command on my daughters machine threw up a dns timeout error (DNS request timed out. timeout was 2 seconds). This same error was present no mattter which external DNS server was used. Additionally web browsing was a lot slower with pages taking a while to respond and ping -4/-6 requests often showing 2000ms to sites that would respond at 25ms on the wired connections in the house.

I then moved my daughters PC in to my sons room and connected the ethernet up. Kaspersky fixed itself almost immediately and the DNS issues went away.

So I can only summise that there is something in the AP setup that causes some strange DNS behaviour over a few days before it all stops working and clearly the wired network is fine. As the only difference is that my daughters PC is connected to the U6-LR and my sons is directly to a Gen 2 24 port POE (unifi) that it must be the AP.

I am going to try the laptop in my cabin as this is operating on a IW-HD and it will be interesting to see if that suffers from the same problem or if the IW-HD behaves differently.

In the meantime, anyone got any pointers for a correct setup? do I need to setup the DNS relay under 'network' to ensure that my DNS servers are being relayed properly across the network as currently that is not enabled.
Click to expand...
The AP doesn't do layer 3 though, it's effectively a switch port. Is the Wi-Fi SSID you're connecting to set to the same network which the actual switch ports are set to for wired?
 
BlizzardX said:
Hi folks

So devices in question have stopped communicating with kaspersky again. This time I ran nslookup dc1-st.ksn.kaspersky-labs.com 8.8.8.8 from both my sons wired machine and this pc in question which is on wifi. His machine connected immediately and ran without issue but doing the same command on my daughters machine threw up a dns timeout error (DNS request timed out. timeout was 2 seconds). This same error was present no mattter which external DNS server was used. Additionally web browsing was a lot slower with pages taking a while to respond and ping -4/-6 requests often showing 2000ms to sites that would respond at 25ms on the wired connections in the house.

I then moved my daughters PC in to my sons room and connected the ethernet up. Kaspersky fixed itself almost immediately and the DNS issues went away.

So I can only summise that there is something in the AP setup that causes some strange DNS behaviour over a few days before it all stops working and clearly the wired network is fine. As the only difference is that my daughters PC is connected to the U6-LR and my sons is directly to a Gen 2 24 port POE (unifi) that it must be the AP.

I am going to try the laptop in my cabin as this is operating on a IW-HD and it will be interesting to see if that suffers from the same problem or if the IW-HD behaves differently.

In the meantime, anyone got any pointers for a correct setup? do I need to setup the DNS relay under 'network' to ensure that my DNS servers are being relayed properly across the network as currently that is not enabled.
Click to expand...
I know I said I'd shut up but it's pretty obvious this IS a network issue.

Are you absolutely certain that your network on the Unifi Controller is set up so that the AD server is the router? Remember that no matter what you type into the interface on the UDM Pro it's almost immediately overwritten by the Unifi Controller.

This might be a stupid question but what exactly is the UDM Pro doing if you have a PoE switch and an AD server doing DNS and DHCP?
 
There are never a stupid questions when it comes to non-IT professionals playing in a more advanced IT space :-) I'm a Civil Engineer so this is a 'hobby' of sorts!

The UDM Pro is acting as my router, i.e. its communicating with the fibre ONT and allows me to connect via DHCP to the network. The Server Essentials 'server' is acting as the domain controller including network wide DNS and DHCP. Everything on the wired network is fine and I never had issues with the older nano APs but this U6-LR has caused me nothing but trouble and it replaced the nano in the house... I've run an active directory setup since ~2012 after Server Essentials 2012 was released and I've never had this trouble until the U6-LR was installed last year.

The gen 2 switch is not layer 3, its not the pro version but the dumb version so no routing on board. Yes I could set a windows server or linux to act as my router but the UDM Pro offers a form factor and effectiveness that works for me and linked with the rest of the network and allowed me to depreciate my controller in docker which always caused me trouble.
 
ChrisD. said:
The AP doesn't do layer 3 though, it's effectively a switch port. Is the Wi-Fi SSID you're connecting to set to the same network which the actual switch ports are set to for wired?
Click to expand...

This was my first thought also.

Make sure the Wireless network is attached to the same network (In Unifi Network Application)
 
Last edited:
Sin_Chase said:
This was my first thought also.

Make sure the Wireless network is attached to the same network (In Unifi Network Application)
Click to expand...
The UDM Pro has a network name of 'Default' (classic, didn't pick this up earlier!) and under Wifi, the SSID is also attached to 'default' with both APs sitting in this group with IP addresses in the same range as every other device as I'm not yet at the point of needing vlans or further subnets.
 
BlizzardX said:
The UDM Pro has a network name of 'Default' (classic, didn't pick this up earlier!) and under Wifi, the SSID is also attached to 'default' with both APs sitting in this group with IP addresses in the same range as every other device as I'm not yet at the point of needing vlans or further subnets.
Click to expand...
What about the port which the AP is connected to?
 
BlizzardX said:
There are never a stupid questions when it comes to non-IT professionals playing in a more advanced IT space :) I'm a Civil Engineer so this is a 'hobby' of sorts!

The UDM Pro is acting as my router, i.e. its communicating with the fibre ONT and allows me to connect via DHCP to the network. The Server Essentials 'server' is acting as the domain controller including network wide DNS and DHCP. Everything on the wired network is fine and I never had issues with the older nano APs but this U6-LR has caused me nothing but trouble and it replaced the nano in the house... I've run an active directory setup since ~2012 after Server Essentials 2012 was released and I've never had this trouble until the U6-LR was installed last year.

The gen 2 switch is not layer 3, its not the pro version but the dumb version so no routing on board. Yes I could set a windows server or linux to act as my router but the UDM Pro offers a form factor and effectiveness that works for me and linked with the rest of the network and allowed me to depreciate my controller in docker which always caused me trouble.
Click to expand...

So you have two DHCP servers on one network. Are they both on the same subnet? eg. 192.168.1.x or are they on separate subnets so one is handing out IP addresses on 192.168.1.x and the other is handing them out on 192.168.2.x as an example?
 
WJA96 said:
So you have two DHCP servers on one network. Are they both on the same subnet? eg. 192.168.1.x or are they on separate subnets so one is handing out IP addresses on 192.168.1.x and the other is handing them out on 192.168.2.x as an example?
Click to expand...
No, I have only one active. The UDM Pro DHCP server is currently disabled, only the windows server is handing out addresses and this is confirmed by looking at the DHCP assignments and all of them are listed including the unifi gear apart from the UDM Pro which is statically assigned to 192.168.1.1 with a DHCP lease range from 30>254 as I keep 1>29 reserved for my homelab and other servers.
 
You must log in or register to reply here.
Back
Top Bottom