VLANs SAVED my home network

Поділитися
Вставка
  • Опубліковано 26 лис 2024

КОМЕНТАРІ • 184

  • @Paulctan
    @Paulctan Рік тому +5

    I can confirm that this actually works. I had implemented it in my in-laws house to connect Bell fiber to my pfsense upstairs.

    • @brendvd
      @brendvd 6 місяців тому

      Hi, I want to do this also. But somehow i can't figure it out. I created the VLAN in the unifi controller and native vlan on the 2 ports (block all for the Tagged VLAN Management), should i configure something on my pfsense too? cause right now it doesn't do anything.

    • @Paulctan
      @Paulctan 6 місяців тому

      @@brendvd I just plugged my Wan port on my pfSense to one of the ports that I tagged for that specific VLAN. On the remote switch, I just plugged the Bell Fibe Lan port into a switch with a port tagged with that same specific VLAN. pfSense WAN was now connected directly to Bell Home Hub LAN and isolated from the rest of my LAN (which is connected to the pfSense LAN port).

    • @Paulctan
      @Paulctan 6 місяців тому

      To answer your question more precisely, no, I didn't configure any VLANs on my pfSense.

  • @martyf81
    @martyf81 Рік тому +29

    Why not just take the input Coax... connect it to those other coax that are leading to other rooms... and put the Modem upstairs?

    • @SuperSpecies
      @SuperSpecies Рік тому +17

      Because then you can't make a video about VLANs ;)

    • @ebortoni
      @ebortoni Рік тому +5

      Moca ethernet bridge is the answer here

    • @timmark4190
      @timmark4190 Рік тому +2

      Can you get 10g via coax

    • @karlkaufman2659
      @karlkaufman2659 Рік тому +2

      My question, as well. Only roadblock would be if no coax outlet is available at the rack location ... though I'd check the adjacent room's shared wall before surrendering to a workaround like VLANs.

    • @imark7777777
      @imark7777777 6 місяців тому

      That's not a bad idea assuming there's a cable connection in an appropriate spot. and you also have to worry about Signal decoration and cable quality. Another option would've been ethernet over coax adapters but then you're throwing in all sorts of other equipment and points of failure. Although I don't know if I woul'put Moca on the WAN side of anything unless I absolutely had to. But that is a good option for other rooms in the house. and some cable modems have Moca built-in to them.

  • @patti4832
    @patti4832 Рік тому +10

    I've done the same with my starlink. You just have to make sure it never changes to meshing, otherwise the speeds will drop.
    I hope ubiquiti will add virtual WANs, or at least an option to just virtually "plug in" a vlan into the WAN port in the future

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +2

      They are getting a lot more flexible with it! Though not sure if the UDMP 8 ports are able to, due to the fact that they are actually a switch, rather than each being hooked up directly to the router

    • @gjheydon
      @gjheydon Рік тому +1

      Actually they do support VLAN's on the wan port, but this is being used by some ISP. Here in Australia with NBN I had to use this for my some ISP's on VDSL. So I do not think that this will do what you are wanting. I think what we need to here is to have virtual ports on the switch. So in this case instead of taking up 2 physical ports we can create a virtual WAN port and connect it to the correct VLAN and then use both of these physical ports as LAN port.

    • @imark7777777
      @imark7777777 6 місяців тому

      I work on a lot of different projects and I was kind of thinking of doing something like this and am trying to get to to work. I have Comcast, cellular backup and a cellular hotspot. Occasionally I need to test some thing and it's nice to have a dedicated WAN feeding it without changing it off of my Home network. A few years ago I came up with the idea for 4 VLANs for WAN 1-4 (VLAN 11-14). then I could theoretically if I needed to test something, enable a VLAN on my laptop and directly have a public IP or one of my other WAN connections. The other thought was having a five port network switch that I could throw anywhere on my network and have a direct WAN connection whatever I'm working on.
      I'm using PFsense as my router although maybe not for long due to the fiasco.
      So theoretically I have everything enabled all I have to do is plug that port into a trunk port on a switch and it gives me four more of the WANs on my box.
      I wish more consumer grade and similar devices would allow assigning a win to a VLAN on any interface and then having all the interface ports be reassign able. One of the other boxes I got has 3 ports that are part of a built-in switch so I was able to reassign what port did what.

  • @aednichols
    @aednichols Рік тому +10

    I did this too, it is mind blowingly awesome! My Flex mini is zip-tied inside the FIOS ONT enclosure down in the basement, powered by POE.
    You can actually use the built-in switch on the UDMP for the WAN tunnel exit, with a 6" cable directly to the WAN port.

    • @antongrimm
      @antongrimm 5 місяців тому +1

      I've even seen people use another tunnel to connect the two ports on the UDMP without a cable!

  • @mitpatterson
    @mitpatterson Рік тому +3

    Possible heads up, I haven’t done with unifi so I’m not sure it’s applicable, but with other equipment I’ve had issues with this not working after a power outage or modem reboot
    The reason is most isps (including charter) put a mac limit of 1 on their modems and layer 2 protocols on the switch could send traffic that make it see them and then not allow your router. It may not have been an issue moving things “hot” without rebooting the modem since it was still “locked” to your udm
    But if you have issues look into disabling spanning tree and lldp on the port/vlan

    • @imark7777777
      @imark7777777 6 місяців тому

      Related I've seen a lot of cable modems and routers that will lock to the device MAC that is plugged into it and sometimes a short power cycle to a long power cycle to a few hours to calling the company is involved. I think that now that more devices are full on routers within the cable modem this is become less of an issue but I'm sure there's some picky companies out there still.

  • @syl764
    @syl764 Рік тому +16

    Ideally you would also now create a new port profile that excluded VLAN100 and use that on all the other ports in your network in place of the usual default/ALL profile. Unfortunately I don't think the flex mini supports custom port-profiles (just the default all, or one VLAN only) unless things changed with the latest firmware update.

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +10

      The flex mini is limited to either all ports, or only one port.
      If this was an office where unknown people could be plugging things into the network then I absolutely would be locking it down. But for home I already lock anything sketcy as only on its given VLAN.

    • @EsotericArctos
      @EsotericArctos Рік тому +1

      I think you have to go Pro or Enterprise level switches to get that functionality. I don't think the Flex, lite or even standard layer 2 switches support custom port profiles.
      In a home situation, where you have a bit more control of devices, it is not really worth the cost of Pro or Enterprise level devices.

    • @JacksonCampbell
      @JacksonCampbell 11 місяців тому

      @@EsotericArctos You are not correct.

    • @F16Jap
      @F16Jap 10 місяців тому +1

      and why isn't he @@JacksonCampbell ?
      (I agree with you, but giving critique without facts, examples, etc is very counterproductive to say the least.)

    • @JacksonCampbell
      @JacksonCampbell 10 місяців тому

      ​@@F16JapI shouldn't need to. He's the one that interjected with the false information. UniFi is literally managed network equipment. It all supports VLANs.

  • @RussellJohnson-s8d
    @RussellJohnson-s8d 10 місяців тому +2

    This is crazy useful, it didn't even occur to me to run it this way. I'm about to do exactly what you just did in my own rental. Serendipitous that i happened across this video.

  • @germancaperarojas4023
    @germancaperarojas4023 Рік тому +7

    Great video on practical uses of VLANs, specially at home. Keep the good work, preferably improving your cable management : )

  • @michaelsteinhart630
    @michaelsteinhart630 Рік тому +7

    Nice video to introduce the uninitiated to the concepts and basic understanding of VLANs.
    From an operational perspective, I have issues with your execution. My primary issue is that it is not a good practice to run the WAN and LAN across the same physical network on multiple tagged VLANs. Issues such as the switch sending LLDP packets to the cable network. Another issue is that if the switch or cable modem connected in the clear to the WAN is compromised, the internal network VLANs can be exposed. That will negate the Dream Machine (firewall) protection. Yes, having multiple VLANs on the internal network is a good idea, but not the methodology being used. (VLANs: House net, Server net, IOT net and Guest net…)
    From what I can see of your facility (home) you have a good starting point to get the configuration that you are looking for.
    Keep your router/firewall (UniFi Dream Machine Pro) at the Demarc (Closet) flat mounted to the wall. Put the small switch (a small managed 10/2.5G switch would give you more flexibility) in the service box with the cable modem. If 10G is not reliable over your ethernet (CAT5e) consider re-terminating the cables. 10G over CAT5e is good up to 45m on the most commonly installed UTP CAT5e cable.
    From what I can see in your video it looks like you have access to Coax distribution from your Cable TV in the Demarc. You can use the Coax with MoCA network adapters that support 2.5G and pass Tagged VLANs.

    • @JacksonCampbell
      @JacksonCampbell 11 місяців тому +1

      Many network professionals run WAN across the LAN on a VLAN.

    • @imark7777777
      @imark7777777 6 місяців тому

      But that small switch is a managed switch?

    • @imark7777777
      @imark7777777 6 місяців тому

      @@JacksonCampbell really because all the information I ran a crossed has been liking to the above comment.
      ---
      If it's an untagged port for a VLAN it shouldn't have anything else going over it. Unless it's a case like I ran into where my TP Link switch had the management defaulting to the port I was trying to use so as soon as I enabled things I would lose connection and it would try to DHCP from the router/cable modem.

    • @JacksonCampbell
      @JacksonCampbell 6 місяців тому

      @@imark7777777 All UniFi switches are managed. I'm not sure what you're saying in your second comment. Pretty sure you're saying the same thing I was.

  • @marcustaylor33
    @marcustaylor33 Рік тому +5

    Could you move the modem into Katie's office with the rack by using a coupler on the coaxial cable? Seems a lot cheaper and quicker.

    • @karlkaufman2659
      @karlkaufman2659 Рік тому +2

      This does seem the obvious solution, seeing he has a cable modem and the video shows, early on, a bundle of unused coax cables coming through the top of the closet media cabinet. There isn't an obvious coax outlet at the rack in the video, but perhaps it's just not terminated to the faceplate?

  • @alexogle8950
    @alexogle8950 Рік тому +6

    "She is a lovely wife allowing me to put the entire rack in her office..."
    I hope you had her approval for this script...

  • @spasmonaut10
    @spasmonaut10 Рік тому +1

    Reminds me of my house. Renting sucks. Clever work there! Being limited really forces you to get creative and it's inspiring what you can come up with and solve.

  • @jj_615
    @jj_615 Рік тому +5

    Nice video! Was there a video chapter about setting up Internet VLAN in the Unifi controller UI? It seems like you jumped right into the created vlan in Unifi. Thanks!

    • @MortenEghj
      @MortenEghj 11 місяців тому

      Used the video today and struggle with this point. It is under Create new network and then the V-lan only option is under “Router”.

    • @pokeman83ebay
      @pokeman83ebay 9 місяців тому +1

      Yes, @SpaceRexWill, I would also need a step by step guide as I did not succeed to reproduce the ISP to switch to UDM Pro setup.

  • @brandonmatlock96
    @brandonmatlock96 Рік тому +4

    I love how the concept of this works. The one thing I see missing is how he setup the InternetVLAN for the port profile. It would be helpful.

    • @MortenEghj
      @MortenEghj 11 місяців тому

      Used the video today and struggle with this point. It is under Create new network and then the V-lan only option is under “Router”.

  • @i_Kruti
    @i_Kruti Рік тому +1

    It's very nice to see your closet again after a long time...!!!!😂🤣

  • @Huberdoggy
    @Huberdoggy 3 місяці тому

    This is perfect because this is exactly what I am going to be dealing with on my upcoming move (the beginning of your video and the closet, including the Dream Machine) I have been sketching all of the possibilities in my head for weeks regarding optimal wiring

  • @dillanteagle3726
    @dillanteagle3726 11 місяців тому +2

    do you need the aggregation to accomplish this? couldnt this be done with just the mini flex switch between your router and udm pro? Im asking this because i am trying to find a resolution for bringing the udm pro upstairs as well

    • @overestimation
      @overestimation 10 місяців тому

      I am wondering the same thing! Considering you would have only the need for e.g. 6 devices in the rack (i.e., in Katie's office) - would it be sufficient to have the Flex Mini in the closet and the DMP upstairs in the office (without the Aggregation)?

    • @dillanteagle3726
      @dillanteagle3726 10 місяців тому

      @ove@@overestimation i did it without the aggregation. not sure if its the best way. im new to networking, but its working. I just used the mini flex to udm pro

    • @MiningNinjas
      @MiningNinjas 9 місяців тому

      @@dillanteagle3726 your setup makes sense, he had a quite a few connections on the aggregation - looked like he would have run out of physical port spaces on the udm.

  • @danielwilder7835
    @danielwilder7835 Рік тому +1

    Hey there, any chance you could do a step by step guide to changing a router and getting my synology and plex working

  • @madychan3164
    @madychan3164 Рік тому +1

    This is amazing! I tried it and it works great. But there seems to be a problem. I have a PPPoE connection and for some reason I can see tons of unknown devices with Mac addresses on the client devices list. It's all on a Vlan only third party gateway with all other Vlans blocked . Switch in use is a Switch Flex which then connects to a GPON ONT converter (and is powered on with a POE splitter). Should I be worried? The Vlan is then moved through a trunk port to the UDR

  • @louisperugini785
    @louisperugini785 Рік тому +8

    I have to ask, why not connect the incoming cable coax to the coax that runs upstairs? Then you could install the modem upstairs?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +1

      Thought about this, the problem is that COAX cable got painted over and it does not work

    • @pawpaw7646
      @pawpaw7646 Рік тому +3

      @@SpaceRexWill Do you mean that the F-type connector was painted over? Just cut off and inch or two of the cable, re-terminate the coax cable with a new compression-type F-connector and connect two coax cables with a coupler. If your f-connectors are installed correctly, coax cable can be extended for extended distances using couplers. I have a similar setup - structured wiring cabinet in a closet where approximately 30 ethernet cables and a dozen or so coax cables come in. Moving the cable modem elsewhere greatly simplified my setup, leaving just a 48-port switch in or near the structure box. Just connect the appropriate two coax cables in your structured wiring box with a coupler and place your cable modem elsewhere. You then need just one ethernet cable from the cable modem to the router/switch that can be located next to your structured wiring box.

    • @karlkaufman2659
      @karlkaufman2659 Рік тому +1

      @@SpaceRexWill Replace it for a couple bucks? There ARE instances where the OP topology/solution is required, but this wasn't one of them.

    • @karlkaufman2659
      @karlkaufman2659 Рік тому

      @@pawpaw7646 "Do you mean that the F-type connector was painted over? Just cut off and inch or two of the cable"
      Even easier, most likely. The coax outlet is likely just a wall outlet, so pull the wallplate and unscrew the coax line from the back of the coax outlet ... replace coax outlet ... and screw cable onto fresh coax outlet.

    • @karlkaufman2659
      @karlkaufman2659 Рік тому

      @@SpaceRexWill A followup video on how to replace a damaged coax outlet would be a solid sequel.

  • @photonx3075
    @photonx3075 Рік тому +2

    Nice solution, and I appreciate you sharing. Some years ago I had a similar issue. I bought a pair of cheap RJ45 breakout adapters and used the only Cat5e 4-pair cable as two 2-pair cables. One carried WAN from cable modem to router in a different closet; the other carried LAN back from router to a switch in the same rack as the modem. No PoE on the Cat5e, of course. Not sure PoE was a thing then. I don't know if that would have supported even 1 gig speeds, but that wasn't a thing then either.

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +1

      Yeah! Old 100mbit 'fast' ethernet was great! You could just take one cable, and split it into basically two because it only used 2 of the 4 twisted pairs! A lot of dual ethernet jack outlets just had one cable going to them splot out

    • @karlkaufman2659
      @karlkaufman2659 Рік тому +1

      Yep, good workaround for back then. If extra cabling can't be run, similar is now done using VLANs, as above, or dual MoCA networks over coax. Just need to be aware of the possible throughput side effects for each. (e.g. In the video setup, the 1 Gbps link between the Flex Mini and aggregation switch is now being used for WAN & LAN traffic, so LAN traffic could affect realized download rates.)

    • @imark7777777
      @imark7777777 6 місяців тому

      Shoot I was doing that until was it a 3 months ago. I needed to have to WAN connections upstairs one for the primary router and one for the new router that I was working on configuring in what little spare time I had. So yeah two jacks on the modem router into the splitter separator one cable upstairs and back out. Between that and the 100 MB NIC in my old router I was only getting 95MB of my 300MB connection. And yes I know the answer was just use a dumb switch I didn't have one at the time so I got hooked up that way and even after I got the switch it stayed that way. I finally got the router somewhat configured due to the original one acting weird and really getting pissed off with the bad fan bearing in the Dell OptiPlex running PFsense router enough to finally push over to the new Net gate box I bought three years ago. Then I didn't need the splitter and could have a full gigabit connection Finally getting to use my full Internet speed. and then Comcast Business contract renewal they decided to upgrade me about a month ago 650.

  • @glitched79
    @glitched79 Рік тому +2

    This video taught me that your hair is absolutely magnificent and luxurious.

  • @EsotericArctos
    @EsotericArctos Рік тому +1

    How do you find the speed when sharing a physical cable across two VLAN's ?

  • @tttomtxhc
    @tttomtxhc 9 місяців тому +1

    I am really struggling to wrap my head around this config. So you plug your ISP modem into one of 1-4 and port 5 is going to aggregation switch linked to UDM. Then the rest of the traffic from your aggregation is sent back up to the flex mini port 5? And you have VLANs for your APs and such on the flex mini?

  • @Esqpillar
    @Esqpillar Рік тому +2

    Since all traffic is going through the Flex Mini, will it affect speeds?

    • @JacksonCampbell
      @JacksonCampbell 11 місяців тому

      All traffic is always going through network equipment.

    • @ronald0122
      @ronald0122 Місяць тому

      i am interested in this as well. does this affect speed/latency etc

  • @chriscofittv4517
    @chriscofittv4517 3 місяці тому

    Still trying to figure out how he got this to work. In my instance the did not put a coax or Ethernet port in my office space, so this would be ideal. I have a mini flex, 24 POE switch, and SE. when I remove physical Ethernet from switch it loses internet. I also have the 10G Sfp+ connecting from SE to switch. Any pointers?

  • @pichonPoP
    @pichonPoP Рік тому

    I usually use VLANs to create separate Wi-Fi networks, like guest can't go to the router, they only can go to internet. Because I use virtual machines, I use VLAN to separate and just lets pass some information like ping, etc.

  • @reneGOW
    @reneGOW 3 місяці тому

    Can I use the Dream Machine Pro and a Pro Max 16 who are going next to my internet gateway and then use the Flex mini for a VLAN at my TV for wired connections

  • @imark7777777
    @imark7777777 6 місяців тому

    I had Comcast in here to upgrade my router. I was trying to explain this to them. I don't have VLANs set up yet but he's like why do you have all these cables all over and why don't you just connect it into the modem router that we're providing. I'm like that's not gonna work because my main router is upstairs. You're looking at the dangling WRT54G that is set up for legacy devices and needing a switch in the basement and not having one and leaving it there for three years temporary permanent that runs over one cable upstairs and then another cable comes from upstairs back downstairs........

  • @cfisher389
    @cfisher389 4 місяці тому

    Did you have to disable DHCP for the Internet vlan, or reconfigure the wan port?

  • @aamiddel8646
    @aamiddel8646 Рік тому +4

    Very interesting video. What is the impact on internet speed if you have an up and downstream through the same cable? Also does it matter if yuor internet WAN address changes as the provider gives you another internet address?
    I have a similar issue so i bought a manageable switch (with vlan). The problem is that i have not a dream machine pro. From reading the manageable switch manual i could not find out how to set it up. Can you work it with two manageable switches? BTW Thanks for the video.

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +3

      So Ethernet is symmetric, so you get 1 gig up and down on the same cable. Because of that I still should be able to get 1GbE internet on any single line hooked up to the downstairs switch, if its uploading only. If it was uploading and downloading at the same time, I would be capped to 500 mbit up and down

    • @imark7777777
      @imark7777777 6 місяців тому

      Yeah you should be able to back to back 2 manage switches it will be somewhat easier because you can configure one save your config and should be able to restore it to the other one and have an identical switch. I like to use the highest number as an uplink port on the switch and then use the lower numbers for WAN connections. You just sure the management interface of the switch if it lets you set which port is used for management is not the port you're going to use. I got some TP Link ones which are default to port 1 I had to change that as once the port was reassigned it would try and get a IP address from the cable modem and then I would lose access to it.

    • @aamiddel8646
      @aamiddel8646 6 місяців тому

      @@imark7777777 Thanks fr the comment. I contacted the vlan switch manufacturer and they told me what i want could not be done. (WAN and LAN between 2 vlan switches.) So i gave up.

  • @gkhaled1
    @gkhaled1 Рік тому

    This is so didactically smart. Love it. It gives me ideas to optimize my unifi devices locations

  • @DanielLauHere
    @DanielLauHere 8 місяців тому

    Thanks for this detail walkthrough! I have a similar situation at home where my modem and other devices is in room A (with not enough space for a dream machine pro), and a server rack in room B (where I planned to put my dream machine pro). Is it possible for me to do a similar setup, which is to add a flex mini in Room A, setup up VLAN ports to link between the modem and another cable that runs to Room B, and directly connect to my dream machine pro without a Aggregation device?

  • @dcirello
    @dcirello 11 місяців тому

    Very helpful. Set this up this morning while migrating from a USG/Cloud Key to a UDM Pro.

  • @Wav10001
    @Wav10001 2 місяці тому

    Will this work the same with a UCG Ultra and a USW-Flex-2.5G-5?

  • @HandlesAreDumb_111
    @HandlesAreDumb_111 Рік тому +1

    In the upper left corner of your closet service box there is a chase tube (orange corrugated plastic tube, looks like the out-facing side got painted)... Looks like your ISP used it to bring your service into your unit... Where does it go? Likely one of two places- either directly to the exterior service connection or to an attic/crawl space. If the chase goes to the attic and you need a additional wires to an upper floor room, the chase tube will do 90% of the work.
    edit- cancel that... Went back, zoomed in... That *is* a chase tube, but it looks completely unused. Your installers ran ISP friendly service runs (coax?).
    Regardless... That chase goes _somewhere_. It's there to facilitate anything that needs retrofitting. Possibly with an alternative-service focus.
    Your VLAN trick is a great work-around but if you were ever looking for a less hack-fix solution, that chase might offer workable options as well. (If you decide to investigate- a set of fish sticks and/or fish tape might help you figure out where it goes. Both in a 'feel the resistance' as you feed into the chase sense as well as popping up through the insulation in an attic or down through a basement ceiling hole, etc.

    • @SpaceRexWill
      @SpaceRexWill  Рік тому

      So I am renting, and the builders sprayed foam insulation after running the cables so I can’t run extra wires. First thing I tried when I moved in

    • @karlkaufman2659
      @karlkaufman2659 Рік тому

      @@SpaceRexWill "So I am renting," ... Whether you use them or not, building management should be on the hook for replacing any coax outlets damaged by being painted over.

  • @MiningNinjas
    @MiningNinjas 9 місяців тому

    what happens to all the connections now hanging loose inside the closet?

  • @crazycoastie
    @crazycoastie Рік тому +1

    Great video, remember someone else doing a similar video trunking a vlan from a remote house (where modem was) to main house via the small Flex Mini switches. Actually contemplating moving my UDM Pro to another floor via this technique that you did.
    question. what else do you have running on ports 2 and 3 on the Flex Mini Switch? Port 5 went to your modem, another port had to come up to your other rack, is the last port for the office or an AP?

  • @starfoxBR77
    @starfoxBR77 Рік тому +2

    Loved this type of video, Rex! The use case is easy to relate! I got myself knowledge and some insights. Thank you!

  • @TheBeardedLibertarian
    @TheBeardedLibertarian Рік тому +1

    I do see plenty of coax, in there, not being used as they are for cable boxes in your various rooms that you don't have cable boxes (does anyone??). So why don't you just connect one of those, just use a barrel connector to the coax that is being used for your modem and move the modem up to your rack. I assume that room has coax intended for the cable box in that room. Then just use the now unused cat 5e in Katies office back down to run any old switch down there. No VLANS involved.

    • @TheBeardedLibertarian
      @TheBeardedLibertarian Рік тому

      Not a Ubiquity guy so where is your firewall, I use 3 minicomputers for splitting a WAN address into to two opnsense firewalls in HA cluster mode. This is the first stop coming out of the cable modem.

  • @brendvd
    @brendvd 6 місяців тому

    I have Unifi Switches but a PFsense gateway. I created the VLAN in the unifi controller. The WAN gets it's IP from DHCP from the modem/router, so i should not configure the vlan on the PFsense, right? But it doesn't work, i can't figure out what i'm doing wrong

  • @JeffreyGroves
    @JeffreyGroves 11 місяців тому

    Have you considered running MoCa over those unused cable TV coax cables to run higher speeds? I believe MoCa supports up to 2.5Gbps.

    • @SpaceRexWill
      @SpaceRexWill  11 місяців тому +1

      Yes! But the coax in my office was painted over!

  • @dereknoll
    @dereknoll Рік тому

    Youre saying towards the end of the video that the SFP+ LAN port on the UDMP should be tagged "ALL" and connected to a switch port tagged as "InternetVLAN Only"? Is that right?

  • @Jakexgt1979
    @Jakexgt1979 Рік тому

    Um...if you just connect your ISP in coax cable in your closet box with a female to female coupler to the coax line going to the room upstairs with your rack, you can move your modem upstairs. Seems way easier to me.

  • @droneforfun5384
    @droneforfun5384 11 місяців тому

    It was only possible to fit ONE underground cable between my NAS location and my house. I got 10Gbe (for NAS-PC only) and standard 1Gbe to my main LAN/router/wan. Is it possible to setup a network with both the 1Gbe and the 10Gbe running through the single underground cable..?

  • @dmangTV
    @dmangTV Рік тому +1

    MOCA extender? put a coupler on the incoming coax and to the room with the rack and move the modem there with the udm?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +2

      Coax in the rooms got painted over and would not work for me. Problably could replace the keystone though

    • @pawpaw7646
      @pawpaw7646 Рік тому +2

      @@SpaceRexWill Yes! Just re-terminate the coax cables with new keystones. You should probably do this anyway, since builders' wiring contractors typically do a poor job terminating coax and ethernet cables. Cable terminations are critical to their performance. You may find that re-terminating your cat 5e cables (then testing) might allow them to run at 10 Gb for short distances (less than 40 meters or so). I'm speaking from experience - my daughter's new home in the Raleigh area had poorly-installed ethernet wiring. Performance greatly improved after I re-terminated the ethernet cables.

    • @karlkaufman2659
      @karlkaufman2659 Рік тому

      @@pawpaw7646 "Just re-terminate the coax cables" ... And it's not even a case of "re-termination," really, since they'd just need to unscrew the coax cable from the back of the painted-over outlet and screw it back on to the fresh F connector keystone or wallplate.

  • @joseoplmx
    @joseoplmx Рік тому

    I have done that with a meraki switch creating 2 transport l2 vlan each one for one wan interface of the udm pro, works just fine. The only problem i had once had to factory reset the switch and made a mess due to all ports went to vlan 1 😅

  • @ghostingalong
    @ghostingalong Рік тому

    Am I understanding right: ISP goes into Flex port 5 (tagged VLAN 100). Then your port out Flex to XG is tagged VLAN100 as well. Last, port from XG to UDMP is tagged VLAN 100?
    If that's right, then you have the downstairs Wifi hooked into the Flex? So The Wifi will be on its own VLAN which is getting internet from the UDMP LAN back down the same cable used to carry WAN in? Also connecting Wifi into Flex, won't that mean you have the closet service box door opened again?

  • @abdullahX001
    @abdullahX001 Рік тому +6

    I'm pretty sure you could do this with any non-Unifi managed switch...

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +6

      Yes, this works with any VLAN capable switch

  • @therumbler
    @therumbler Рік тому

    i did this in my condo many years ago. Router-On-A-Stick, right?

  • @TheDmankl
    @TheDmankl Рік тому

    Can you set the link speed of the ports to 2.5GB? I have unifi but i dont have 10GB ports except for the UDM Pro but i different switches have different functionality

  • @jim7smith
    @jim7smith 8 місяців тому

    ingenious use of vlans. Well done

  • @imark7777777
    @imark7777777 6 місяців тому

    12:22 wow those are some bad terminations. I wonder if you were to re-terminate all the ends properly if you would be able to do 10GB or at least 2.5GB? I can't see for sure but if the sheath hasn't backed off the connector I'm assuming they never trimmed them properly for the clip to bite into it. Which means they might not have cared too much about keeping as many twists as possible to prevent cross talk.

  • @jacek_790
    @jacek_790 Рік тому +1

    Do you think this will work if my incoming internet is PPPoE with VLAN tagging on VLAN 35?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому

      That is a very good question, You may be able to tag the traffic as VLAN 35 only, and have that still work. Though I dont know PPPoE well enough to say for sure

    • @lucianistoc1264
      @lucianistoc1264 9 місяців тому

      Pppoe should be working fine

  • @AlanMoreti
    @AlanMoreti 10 місяців тому

    I guess you could've done that by using Ethernet over COAX adapters if you happen to have pre-wired coax cables throughout the house.. There are some adapters that can do 2.5Gbps.

  • @143Support
    @143Support Рік тому

    Never saw a anything like this, great tutorial!

  • @uberseehandel
    @uberseehandel Рік тому

    Really good to see such a helpful vid.
    Unless the UDMP was an EA product, the 8 port built in switch has throughput limitations. Better to use an SFP+ port to connect to a fully functional managed switch, completely avoiding the UDMP's switch ports.
    This is a well documented issue, unfortunately, and one of the reasons I use an UXG-PRO 😎

    • @13Marino
      @13Marino Рік тому +1

      Look at his UDMP in the end of the video. Isn't that exactly what he is doing?

  • @antok86
    @antok86 Місяць тому

    Did this but my usw-pro shows offline in controller but everything works

  • @salvadorseekatzrisquez2947
    @salvadorseekatzrisquez2947 6 місяців тому

    It was pretty nice, I just wished you would have color draw the VLAN 100 for the people that are not sure how that works, exactly

  • @ronald0122
    @ronald0122 Місяць тому

    does this have any downsides like latency, speed etc?

    • @SpaceRexWill
      @SpaceRexWill  Місяць тому

      Nothing you can actually measure.
      Maybe on the nanosecond scale, but compared to your ISP uplink, it’s in the noise

  • @joelchojnacki
    @joelchojnacki Рік тому

    That is a pretty cool solution.

  • @melvyntan9308
    @melvyntan9308 Рік тому

    After watching your video and also crosstalk solution's video doing a Boat House retreat setup i decided to do a similar setup which i always wanted to do and centralising my gears in one place and ph boy am i happy ! thank you man !

  • @JediObiDave
    @JediObiDave 10 місяців тому

    You have that cali-surfer vib and voice, just go with it. :)

  • @ronalcasid3844
    @ronalcasid3844 6 місяців тому

    Did you create InternetVLAN? I don't see this option on my Flex Mini.

    • @SpaceRexWill
      @SpaceRexWill  6 місяців тому

      yes

    • @ronalcasid3844
      @ronalcasid3844 6 місяців тому

      @@SpaceRexWill How did you configure the Internet VLAN?

    • @SteveV0AU
      @SteveV0AU 3 місяці тому

      @@ronalcasid3844 Under Networks create a new VLAN and under Router select Third-Party-Gateway.

  • @marv42dp
    @marv42dp 11 місяців тому

    You can do this with every router OS that's VLAN capable, this is not Unifi-exclusive.

  • @TazzSmk
    @TazzSmk Рік тому

    total bandwidth (wan+lan combined) will remain 1Gbe though, right? so you'd set up QoS to prioritize actual internet over local wifi to prevent bottlenecks?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +1

      If I had gigabit internet then yes, but I only have 400m down and 40 up :(

    • @TazzSmk
      @TazzSmk Рік тому

      @@SpaceRexWill still, if you did let's say local backup or some local big file transfer within "basement network", it would congest your shared cable to upstairs rack including entire internet vlan too, no?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +1

      It absolutely would if I was running a backup like that across the line. The downstairs network hookup for me is really just wifi, a couple of cameras, and TV's so nothing heavy enough to notice the internet.

  • @stephenfgdl
    @stephenfgdl 3 місяці тому

    I don't understand this, I see that your Coax cable you could run into the house (I saw that the coax cable in that room where the server rack is doesn't work, id just reterminate it, but should you chose not to do that , why not run the cable directly to the the Unify Dream Machine, I don't understand why you have to put a switch in the middle with a vlan? You're cable run is there anyways.

  • @pmgodfrey
    @pmgodfrey Рік тому +1

    You're lucky to have that rack in her office. I had no choice an APC NetShelter 25U rack that's full in our basement outside my office. Might have to buy a larger rack when we move!

  • @sapatomaluco
    @sapatomaluco Рік тому +4

    I am a network engineer and it puzzles me how come we're in 2023 and builders haven't yet factored in their house blueprints decent network projects. You can't have electronic equipment locked inside a minuscule panel that's inside a closet! Some brilliant mind needs to place a mini-rack in a location that's got ventilation, for all these house projects. Come on, builders! It's not that hard!!!

    • @Teh-Jones
      @Teh-Jones Рік тому +2

      Agreed, the builder we used normally put this box/termination in the laundry room. I said oh hell no and had them put it in my office network closet and all my cat 6 and 5e connections ran to the same room. If we ever sell this house, the next owners will thank me...

  • @AngelAngelescu
    @AngelAngelescu Рік тому +1

    Don't forget to exclude all other ports from vlan100 orherwise wan traffic will go thru all your internal network...😅

  • @steffengerlach8395
    @steffengerlach8395 Місяць тому

    Terrific. Thank you.

  • @kivanckaranisable
    @kivanckaranisable 8 місяців тому

    Unfortunately this turned out to be a "UniFi" ( and mission ) specific video. It could be more informative by using "standard definitions" (or naming the correspondence) and by showing IP addresses of subnets`. Anyway, good to see you solved the unfortunate cabling torture easy. Thanks for the video

  • @notreallyme425
    @notreallyme425 Рік тому

    How many times have you moved recently?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому

      hahaha too many. 4 moves in 4 years...
      But we are finally back where we started. (Raleigh) though we are planning on buying so that will probably be 5 in 5 years lol

  • @SPPhotography89
    @SPPhotography89 10 місяців тому

    Most of the Ubiquiti Unifi products are intended for business use, not for consumers.

  • @GeekendZone
    @GeekendZone Рік тому +1

    Good job!

  • @abdullahX001
    @abdullahX001 Рік тому

    What are you doing with 10ge at home?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому +1

      video editing and running this channel

    • @TankSchu
      @TankSchu Рік тому +1

      Because why not? lol I was going to put 10GbE in my home with the Ent-XG24 and a 24 PoE Pro, but settled on a Ent-48PoE with its 2.5GbE because it was cheaper to buy one switch instead of 2. 🤷‍♂️

    • @abdullahX001
      @abdullahX001 Рік тому

      @@TankSchu I was just wondering

    • @TankSchu
      @TankSchu Рік тому

      @@abdullahX001 wasn’t meaning to be rude, if you thought that. I was just joking.

    • @abdullahX001
      @abdullahX001 Рік тому

      @@TankSchu no not at all. :)

  • @gjheydon
    @gjheydon Рік тому +2

    Crosslink solutions did this with starlink and a wireless IPS doing this both this way with VLAN's ua-cam.com/video/P-bDxMgvG1I/v-deo.html . Have you also thought about using the cat5 as a draw string to pull up cat6. The owner will not know if you did do it for some important runs.
    But also you may want to take a look at moca as seeing in your hallway cupboard you have the coax for it, and I think the latest version can do 2.5Gb to get to some of those hard to reach places.
    But thanks for reminding me about this as I was thinking of getting another cable run but using a flex mini I can power it over POE and give myself another 3 ports for very little.

    • @SpaceRexWill
      @SpaceRexWill  Рік тому

      So I looked at pulling CAT6, but they sprayed foam insulation around the wood boards and cables so I can’t pull

    • @gjheydon
      @gjheydon Рік тому

      @@SpaceRexWill oh no!

    • @imark7777777
      @imark7777777 6 місяців тому

      Yes The using it as a draw string is a very valid argument assuming they didn't cable staple it down in the wall or are zigzagging up and down through the joists and such. I had to replace some electrical wiring and I understand why they tack it within 6 inches of the box but boy does it make renovation work a pain in the butt. Ended up cutting the wall open because the cable got damaged in the basement and I had to replace it.

  • @marekryciak
    @marekryciak Рік тому

    The only one item I'm missing in this video is what are the settings for InternetVLAN port profile and InternetVLAN settings

    • @SpaceRexWill
      @SpaceRexWill  Рік тому

      In this case you don’t need to make any firewall rules because the UDM is not the router, the ISP’s router is the router

    • @marekryciak
      @marekryciak Рік тому +5

      @@SpaceRexWill Im not talking about firewall. You are clearly selecting a port profile named InternetVlan (9:19) but you did not mention how you did set up this profile. I assume that you create a InternetVLAN as a new network with a router as "third-party gateway" and then tag all needed ports with VLAN100. This idea is great but it is too vogue for those that are novice and on the other hand I'm sure it is quite obvious to a network engineer. Sorry for being too harsh but a few improvements could make it invaluable for some slightly more advanced geeks without network engineering degree. 😎😉 I will test your idea once I dig out my flexmini 😁 I would love to move all my devices from the current location where internet terminates.

    • @karlkaufman2659
      @karlkaufman2659 Рік тому

      @@marekryciak Yeah, OP stated "and that's all the legwork we needed to do" ... but had skipped over this most critical step. Many newbs, like me, would be clicking and clicking wondering where this VLAN 100/InternetVLAN is in the selection menu.

    • @ronald0122
      @ronald0122 Місяць тому

      @@marekryciak why vlan100?

  • @XboxGhostGamestore
    @XboxGhostGamestore Рік тому

    Why wouldn't you just pay your ISP to run a coax to your upstairs it would cost you one service call fee. Which is like $89 thats so much easier than doing all this extra stuff. You can even do it yourself all you need is silicon, a mortar drill bit, a ladder, and a wallplate for under $20 USD

    • @Jeppedy
      @Jeppedy Рік тому +1

      He said he's a renter. Might be an issue

    • @karlkaufman2659
      @karlkaufman2659 Рік тому

      Sounds like they have coax but ... "the problem is that COAX cable got painted over and it does not work"
      Cost would be under $5 to swap out the coax outlet for a fresh one.

  • @KirBirger
    @KirBirger Рік тому

    Couldn't you also just run your coax upstairs through the conduit?
    Cool video, and I learned some things, but I'm just curious.

  • @woritsez
    @woritsez Рік тому

    happy things

  • @KentBohling
    @KentBohling Рік тому

    TP-Link Omada is a better choice in my opinion ...

  • @waynenocton
    @waynenocton Рік тому

    Commenting before viewing 3 minutes, so grain of salt, but, Crosstalk Solutions did an install video of a lake house and used vlan to run the WAN through the same cable that provided that lower building with its access point, I assume you are doing something like this, and I wish there were more videos on this subject because it’s genius! So if any of you haven’t watched that video, take a look after this one.

  • @steverhysjenks
    @steverhysjenks Рік тому +1

    Sorry!!!! your partner let you have that rack in that room!!!

  • @nathanmaker7824
    @nathanmaker7824 Рік тому

    you basically told us the same thing 15 times at the start.. i spent 5 minutes listening to you tell me "the rack is upstairs and upstirs is where it is"

  • @scgoralski
    @scgoralski 3 місяці тому

    Just why? A rack? Hmm

  • @postnick
    @postnick Рік тому

    Complicated Router on a stick setup.

  • @Jeppedy
    @Jeppedy Рік тому

    Thats a pretty empty rack? Perhaps came frim a sponsor, but that seems a lot of overkill, no?

    • @SpaceRexWill
      @SpaceRexWill  Рік тому

      Bought it myself. The goal is to never buy it again and have to grow. The bottom half is fully filled with servers

  • @timothycheong5498
    @timothycheong5498 Рік тому +1

    shouldn’t reveal your vlan number for security reason

    • @Eternal_Tech
      @Eternal_Tech Рік тому

      There should be no security concerns with revealing your VLAN number. VLAN stands for Virtual Local Area Network, meaning that these virtual LANs only exist on the local network. That is, they do not exist on the Internet, just like a local IP address only exists on the LAN, but not on the Internet. Therefore, his VLAN number is only useful to those who have access to his network.
      If remote administration of his router/firewall is disabled, then nobody will be able to reconfigure his LAN settings. If he is using AES encryption and a complex password on his Wi-Fi, then it is highly unlikely that his neighbors or someone parked near his house will be able to use Wi-Fi as a vehicle to gain access to his network.
      The only time that his VLAN number could possibly increase his risk is if someone has physical access to his network, meaning that they are inside his house. If someone is in his house who is not authorized to be there, risks to the network would probably be the least of his concerns, with a Second Amendment solution being a valid method to rectify the problem.

  • @mitchellsmith4601
    @mitchellsmith4601 Рік тому

    No one who is concerned with support or security should use UniFi.

  • @ACiDGRiM
    @ACiDGRiM 8 місяців тому

    I dont believe you are a real person. I couldn't stand talking to you for more than 3 minutes if this is how you emote off camera.

  • @larsgustafsson6340
    @larsgustafsson6340 Рік тому +1

    Hire you? Hope you dont charge by the hour. I imagine long breaks and a lot of talk with management about how they could improve the water dispenser.

  • @fabiankeppler315
    @fabiankeppler315 Рік тому

    unify SENT me a bunch of stuff but it's NOT sponsored, using links to the products used, making promotion for the products..
    Sponsorships are pieces of content that have been financed in whole or in part by a third party. Sponsorships generally promote the brand, message or product of the third party without integrating the brand, message, or product directly into the content.

    • @SpaceRexWill
      @SpaceRexWill  Рік тому

      I follow the guidelines set out by Tom Scott in this video for sponsor content: ua-cam.com/video/L-x8DYTOv7w/v-deo.html
      And overall just try to be transparent. For the stuff in this video, I just emailed my POC at unifi and asked if he could send over the stuff. There was no input on his side of what the video was going to be, and they have zero control over the video and don’t get to see it until it’s live on UA-cam.

    • @fabiankeppler315
      @fabiankeppler315 Рік тому

      @@SpaceRexWill Just to be clear, I do enjoy the content and use both Synology and Ubiquiti . However I don't understand why the emphasis on the it not being sponsored.
      It's gifted and you like the product, cool, why not.