*** Official Ubiquiti Discussion Thread ***

[Mikey]

How exactly do you define NGFW? In what way is the UXG-lite a “NGFW”. The routing in UniFi is controlled through the controller. A UXG-lite is just hardware the controller tells what to do. So anything a current UXG-Pro will do, a UXG-lite will do, just for less money and potentially slightly slower (although the jury is out on some things). The only thing the UXG-lite will do that nSense won’t is put some money in Robert Pera’s bank account.

Very true the way you describe it.

Indeed keeping Robert Pera's $$ rolling in

It’s USB C powered so they already have a UK USB C PSU for some switches so that’s not a big issue. UK stock should be available 26th January assuming they don’t out the container.

Ah ok indeed being USB C shouldn't be a problem. So 26th Jan and then out of stock - I wonder what the interest will be genuinely like for it. I've not seen Unifi commercially yet in a business, but then I've not exactly worked at target business recently or a MSP. Place I'm currently at drop £15k on TOR switches without blinking. Last one I saw had 4 x 25Gb connections to it and that was it.

 

[Caged]

Those switches are expensive though because they can actually do things that are needed in datacentres, as much as Ubiquiti marketing might like to think otherwise, an "enterprise" switch with no MCLAG, EVPN type features is dead in the water. I'm fairly sure their L3 stuff doesn't even do OSPF.

 

[iMacMart]

I would do a scan to see what channels are being utilised around you and opt for the less busy ones. As for other settings, I'm a little unsure, I've read folk just say to stick with auto. I was also recommended to have 2.4ghz on low power and 5ghz channel on medium.

Hi Bud, with which app, I know IOS have some

 

[Mikey]

Those switches are expensive though because they can actually do things that are needed in datacentres, as much as Ubiquiti marketing might like to think otherwise, an "enterprise" switch with no MCLAG, EVPN type features is dead in the water. I'm fairly sure their L3 stuff doesn't even do OSPF.

100% agree

 

[bledd]

It's pretty straight forward. Something along the following should work fine (I've consumed some wine tonight, on PTO tomorrow and Friday!).

1. Create Oracle Cloud account
2. Create Always Free Ubuntu instance on Ampere
3. Configure VCN firewall to only allow your home IP on port 22, port 443, and whatever ports UniFi requires
4. Check Ubuntu iptables, can't what the basic rules are
5. Use Glenn.R easy install script to install the controller software and dependencies (https://community.ui.com/questions/...Encrypt-/ccbc7530-dd61-40a7-82ec-22b17f027776)
6. (optional) Create DNS entry in Cloudflare for the public IP of the Oracle VM with your preferred domain name
7. (optional) add Cloudflare's IPv4 addresses to VCN firewall
8. (optional) use Glenn's scripts to install a signed cert
9. (bit vague on this part) think you need to tell the devices the new controller with set-inform or similar method

Before I bought my UDM-SE I ran it like this for about 6 months+ without any major headaches.

I have my blog, my Adguard DNS server, and two car forums hosted in Oracle Cloud and it's free, fast, and relatively maintenance free.

The Glenn.R scripts are fantastic. Been playing around with that on my testbed at home for years, now our main install in work uses it too.

Going to push our 7.4 install up to 8.07 this week and upgrade the mongodb to 4.4 using his script also.

 

[michty_me]

Hi Bud, with which app, I know IOS have some

You could try wifiman, there are a number of WiFi scanner apps on android.

 

[the-evaluator]

The Glenn.R scripts are fantastic. Been playing around with that on my testbed at home for years, now our main install in work uses it too.

Going to push our 7.4 install up to 8.07 this week and upgrade the mongodb to 4.4 using his script also.

I need to get around to moving from 7.5.187 up to 8.something.

Last time I used GlennR's script to do a MonboDB upgrade it failed. Well, it reported as working but UniFi wouldn't start. Rather than fixing it I reimaged the VM and used the scripts to install UniFi and then restored a backup.

 

[bledd]

Snapshot first, every time

 

[the-evaluator]

I did, but also took the opportunity to do a Debian upgrade

 

[Mikey]

Another new product...

UniFi Express - Ubiquiti Store

Impressively compact Cloud Gateway and WiFi 6 AP that runs UniFi Network. Powers an entire network or simply meshes as an AP.

uk.store.ui.com

 

[Dangerous]

Another new product...

UniFi Express - Ubiquiti Store

Impressively compact Cloud Gateway and WiFi 6 AP that runs UniFi Network. Powers an entire network or simply meshes as an AP.

uk.store.ui.com

Now I might look at that for my campervan, having USB-C mights it handy.

Hopefully it supports some Adblocking built in and that frees up my Pi for HA.

 

[DIABLO]

The Express seems the perfect upgrade for my aging USG-3P. Only £123 as well.

 

[Caged]

Can it be used as a USG and managed by another Unifi Network instance, e.g. if you wanted it at a branch location? Ubiquiti are fairly light on documentation.

Edit: All the graphics seem to suggest it can so that looks useful.

 

[michty_me]

So what's the difference between the UXG lite and this express? A controller and WiFi capabilities?

 

[Mikey]

Express has a built in controller, can’t do IDS/IPS

UXg-lite needs a controller and has IDS/IPS.

Express I think there is a limitation over how many UI products can be managed

 

[Mikey]

Can it be used as a USG and managed by another Unifi Network instance, e.g. if you wanted it at a branch location? Ubiquiti are fairly light on documentation.

Edit: All the graphics seem to suggest it can so that looks useful.

No I don’t believe so. It’s a seperate site in UniFi.uI.com I believe if not using it as an additional AP.

They’re always light on docs / specifics

UXG-Lite I believe for what you describe above.

 

[MarcLister]

Looking to upgrade my Wifi to have better coverage across the three floors of my house (well 2 floors and the loft space I work from). The wifi from my TP-Link router on the ground floor isn't very strong up in the loft. I was planning to get 2 x Ubiquiti U6 Pros, one on the ground floor and one in the loft. What would be the best controller to get? The Cloud Key G2 Plus?

 

[b0rn2sk8]

You don’t ‘need’ a controller. You can just set them up via the pc or phone app if you want.

You can also cloud host the controller if you want.

Otherwise yes, cloud key g2/plus.

 

[MarcLister]

You don’t ‘need’ a controller. You can just set them up via the pc or phone app if you want.

You can also cloud host the controller if you want.

Otherwise yes, cloud key g2/plus.

Is there any disadvantage to using the Ubiquiti app on my phone? I thought the APs needed access to a controller 24/7 to work properly.

 

[b0rn2sk8]

Not really if all you are doing is running a couple of AP’s.

It’s worth pointing out that you can cloud host it for free. Instructions were posted a few days ago in this thread. You can also run it on a Raspberry Pi or similar for a lot less than a cloud key.

I do use a cloud key G2 plus but I’ve got 2 switches, 4 cameras, a door bell and 3 AP’s so I actually need it (or a UDM etc.) to run the camera stuff on.