*** Official Ubiquiti Discussion Thread ***

Got a Roku Streaming stick that's attached to an old TV upstairs. Got a Samsung TV (Nu7400) down stairs.

Neither of them like the upper range 5Ghz channels, which is ridiculous.

Looks to be a known issue with the brands. Samsung apparently lock theirs down?
 
Those who are using your own DNS server (Adguard Home, PiHole) etc, how are you configuring it in UniFi? I currently have my WAN set to use 9.9.9.9 for its upstream DNS, and I have DHCP handing out my Adguard Home IP for DNS. This works perfectly for clients, however policy based routing by domain name does not work. I opened a support ticket, and they said PBR using domain names only works if clients use the UniFi Gateway as their DNS server which seems dumb to me.
 
It makes sense, the gateway needs to know the IP that was returned by the DNS query and the alternative would be sniffing every DNS packet.

Have your gateway use the Adguard IP for DNS and then point your clients at the Unifi's DNS server.
 
Caged said:
It makes sense, the gateway needs to know the IP that was returned by the DNS query and the alternative would be sniffing every DNS packet.

Have your gateway use the Adguard IP for DNS and then point your clients at the Unifi's DNS server.
Click to expand...
You'd think it's tracked already with the traffic inspection it's doing.

I always thought having the gateway use an internal IP address for its DNS resolution was bad practice?
 
They don't have any conditional forwarding options so that's the next best thing, otherwise you could have the gateway use 9.9.9.9 but forward every request from clients over to another server.
 
Probably a stupid question really, but, Are there any settings that should be changed out of the box? (UCG Ultra - U6-Pro - U6+)
  • Local account only - not tied/signed up to UI Account
  • IDS/IPS - Off. Not really needed I don't think?
  • Device SSH Authentication - Unchecked in System Settings
Is there anything else that's considered 'Critical' - or is it pretty much robust out the box?

I'm thinking back to the ASUS stuff where you had to double check stuff like 'Enable Web Access from WAN' was disabled etc
 
Last edited:
superleeds27 said:
Got a Roku Streaming stick that's attached to an old TV upstairs. Got a Samsung TV (Nu7400) down stairs.

Neither of them like the upper range 5Ghz channels, which is ridiculous.

Looks to be a known issue with the brands. Samsung apparently lock theirs down?
Click to expand...
I had the same issue with the Samsung Soundbars 930B and 990D wouldn't not attach to the main 2.4/5/6 Network so ended up with them on the IOT 2.4 only network and kicked holes through the firewall to get airplay to work.

Switch out my UDM Pro for a UCF yesterday and removed my older 8 Port POE switch, all seems happy and a bit cleaner install, so will be getting rid of those 2 devices. 10GB ethernet from the UCF to the XG POE Switch and then 2.5G to all the APs and a couple of flex 2.5 switches.
 
superleeds27 said:
Because I can't ever think of a situation where I'd need to log in to it remotely?
Click to expand...
How about automatic cloud backups of your settings.

Its not always things related to Unifi where I have needed to log into the Unifi app to resolve. For instance, my BG outside smart socket seems to want to drop off the network once a month or so and the quickest way to resolve it is to reboot the access point it hangs off and it will re-connect. I can do that remotely if I spot the outside lights plugged into them are 'stuck on'.

It just seems to me to be one of those things where you are going out of your way not create an account for the sake of not creating an account, you can still connect locally with an account. Just because you can do it, doesn't meen you should. Even my dumb ISP router I can log into remotely if I need to.
 
b0rn2sk8 said:
How about automatic cloud backups of your settings.

Its not always things related to Unifi where I have needed to log into the Unifi app to resolve. For instance, my BG outside smart socket seems to want to drop off the network once a month or so and the quickest way to resolve it is to reboot the access point it hangs off and it will re-connect. I can do that remotely if I spot the outside lights plugged into them are 'stuck on'.

It just seems to me to be one of those things where you are going out of your way not create an account for the sake of not creating an account, you can still connect locally with an account. Just because you can do it, doesn't meen you should. Even my dumb ISP router I can log into remotely if I need to.
Click to expand...
I have a UCG ultra and two access points for basic internet needs. There'll never be a time when I need to log into something remotely?
 
superleeds27 said:
Is it not just a case of taking a backup, nuke, setup cloud account, restore from backup?
Click to expand...
Quite possibly, I meant more there's no way to just opt in later (not that I could find on dr7 anyway).

I think having the cloud backups is a good enough reason if you're configuring a lot, would be a pain to do from scratch. But I could completely get an offline install, having cloud access to your router from security standpoint etc.
 
Last edited:
The app works fine without remote access, just add your system as local, obviously need to be on same network for it to work or VPN in remotely.

The main two I find annoying are alerting, notifications are tied to remote access, even though you can create local accounts with email addresses and configure your own mail server, testing the mail server even works but no notification are sent to the local users email, no reason to have this tied to remote access. The other one is scheduling backups, tied to remote access, no ability to set a remote backup location via SFTP etc, can only have backups sent to UI, again no reason for this.
 
SupraWez said:
The app works fine without remote access, just add your system as local, obviously need to be on same network for it to work or VPN in remotely.

The main two I find annoying are alerting, notifications are tied to remote access, even though you can create local accounts with email addresses and configure your own mail server, testing the mail server even works but no notification are sent to the local users email, no reason to have this tied to remote access. The other one is scheduling backups, tied to remote access, no ability to set a remote backup location via SFTP etc, can only have backups sent to UI, again no reason for this.
Click to expand...
When I boot the app up (Android), it starts scanning for devices that are on and within range, but nothing ever appears. How do you add it as local?

Edit: Think I've managed it. Manual setup, enter the IP, along with UN and password.
 
Last edited:
You must log in or register to reply here.
Back
Top Bottom