*** Official Ubiquiti Discussion Thread ***

Caged said:
I would hope that a U6 Mesh style form factor is coming but who knows, they always seemed quite expensive for what they offered.
Click to expand...
I guess, £20 more than a U6 Pro, probably for the weather sealing remember the mesh can go outside.

I'd have not got the U6 Pro if I'd known about the Mesh, but I got it from a 3rd party who didn't offer the mesh.
 
Last edited:
dlockers said:
FWIW I've had my U6 Pro mounted to the underside of my stairs/comms cupboard and it has been bullet proof.

Click to expand...
I've got one mounted like that - it's good for devices on that level, but what @mogwai and @Bluecube are discussing is effectively the opposite of that, i.e. placing it radiating upwards, rather than downwards; or mounting it vertically, which would radiate sidewards
 
kosymodo said:
I've got one mounted like that - it's good for devices on that level, but what @mogwai and @Bluecube are discussing is effectively the opposite of that, i.e. placing it radiating upwards, rather than downwards; or mounting it vertically, which would radiate sidewards
Click to expand...
Ah interesting -- missed that part of the discussion. I haven't got a problem to solve but may give that a go lol.
 
Yeah that's what I thought you meant - it would be facing up! I have one ceiling mounted and the other just sat on a desk (same AP form factor but older models) and the one on the desk is not great. Definitely recommend getting it mounted on the ceiling (or reverse floor mount!), even if it's a bit of effort.
 
Sparx said:
Exactly what I have on a 1Gb symmetrical FTTP connection, works a treat. Also is 2.5Gb ready when those packages land with my altnet provider.
Click to expand...

Quick question, I also got the ucg-max and although I’ve got the UDM in essentially AP mode it’s a ‘dirty’ solution. U7 pro is arriving on Monday. I have a Poe switch but only at gigabit, does the
  • Ubiquiti 802.3af PoE Injector
Support 2.5gb/s?
 
do any of you know if it’s possible to mirror a port so I can run security onion to sniff the traffic between my Cloud Gateway Ultra and my wan ? A brief search suggests port mirroring isn’t possible on my model gateway but wondered if anyone knew of any other ways I may manage to get decent data in security onion please?
 
steinooo said:
do any of you know if it’s possible to mirror a port so I can run security onion to sniff the traffic between my Cloud Gateway Ultra and my wan ? A brief search suggests port mirroring isn’t possible on my model gateway but wondered if anyone knew of any other ways I may manage to get decent data in security onion please?
Click to expand...
Even if it were possible, what are you expecting to see? All traffic should be encrypted in TLS.
 
ChrisD. said:
Even if it were possible, what are you expecting to see? All traffic should be encrypted in TLS.
Click to expand...
I thought security onion could get inside all the packets by use of a too to decrypt….i may be wrong but what’s the point of SIEM tools generally if not much detail can be gleaned?
 
steinooo said:
I thought security onion could get inside all the packets by use of a too to decrypt….i may be wrong but what’s the point of SIEM tools generally if not much detail can be gleaned?
Click to expand...
The only way to see inside that type of traffic is proper TLS inspection, and you have to put the certificate of the security device on each client you want to inspect the traffic on.
 
kosymodo said:
I've got one mounted like that - it's good for devices on that level, but what @mogwai and @Bluecube are discussing is effectively the opposite of that, i.e. placing it radiating upwards, rather than downwards; or mounting it vertically, which would radiate sidewards
Click to expand...
I am looking to have it wall mounted in one of the two locations shown in the image in this url https://imgur.com/a/KOR5sAj . The flat is about 90m2, so hopefully having it one of the two locations in the diagram should mean 1 AP is enough.
 
Last edited:
All done.

Before.
9fwolCg.jpg


After
YqZ94xG.jpg


5XLdBsU.jpg


Few more devices to add in. But plenty of space for expansion.
 
steinooo said:
I thought security onion could get inside all the packets by use of a too to decrypt….i may be wrong but what’s the point of SIEM tools generally if not much detail can be gleaned?
Click to expand...
Because SIEM are on the whole working with events/logs from many different systems, and not raw network traffic, as their primary source of data.

Flow data even without the content can still be useful, seeing who is talking to what. And that’s before you start looking at whether things like JA3/JA3S hashes are any use.
 
You must log in or register to reply here.
Back
Top Bottom