FINALLY! A New UniFi Dream Machine! - UDM Pro Max
Вставка
- Опубліковано 19 тра 2024
- The UDM Pro Max is here and it's packed with upgrades like a faster CPU, more RAM, an internal SSD, more eMMC, Dual Drive bays and more! Today we check on the new UniFi Dream Machine Pro Max, configure and test Shadow Mode, and test network throughput to see if this really is the fastest UniFi Dram Machine yet.
Get your UDM Pro Max here: l.technotim.live/udm-pro-max (affiliate link)
Products were given for testing the new Shadow Mode feature and the new UniFi OS4 (coming soon). I wasn't paid money.
Video Notes: technotim.live/posts/udm-pro-...
Support me on Patreon: / technotim
Sponsor me on GitHub: github.com/sponsors/timothyst...
Subscribe on Twitch: / technotim
Become a UA-cam member: / @technotim
Merch Shop 🛍️: l.technotim.live/shop
Gear Recommendations: l.technotim.live/gear
Get Help in Our Discord Community: l.technotim.live/discord
Tinkers channel: / @technotimtinkers
(Affiliate links may be included in this description. I may receive a small commission at no cost to you.)
00:00 - Meet the UniFi Dream Machine Pro Max
01:29 - UDM Pro Max Specs vs UDM Pro
03:20 - Applications
03:45 - The New Shadow Mode
05:39 - Testing Shadow Mode HA Failover
07:30 - Shadow Mode with Protect
08:18 - Shadow Mode Primary / Secondary
08:51 - My Test Scenarios & How I Tested
10:17 - 10G LAN Tests
11:42 - 8 Port 1G Switch Tests
12:53 - 10G WAN Test?
13:23 - My Thoughts about the UniFi Pro Max
13:55 - Who is this for?
14:43 - Final Thoughts
Thank you for watching! - Наука та технологія
Apple has to stop naming the devices like this..
Apple?
@@LiLBitsDK apple started doing the the "pro max" stuff with their phones a few yrs back and then alot a companies started doing it
@@LiLBitsDK Yea look at the names Pro and Pro Max are apple naming stuff :P
Could it havev been Tim that said one prevous Apple employee now works at Ubiquiti (Or something like that)
You don’t want the Dream Machine Cloud Express Pro Max Mini (PRODUCT)RED Ultra?
@@FunningRast if its atleast 2K USD and accessories to use the full product is required then maybe
that lan switch limited to 1gb is unacceptable at this price
no POE. Why Unifi? You added extra drive slot for NVR. But left out POE+ for cameras.
So you are forced to buy a PoE switch :)
They probably left PoE away, so that they can launch a UDM Pro Max SE later on ;-)
would be nice if they let us use those NVR drive bays for NAS duties... like how many use vidcams anyways? seems kinda wasted on many
@@LiLBitsDK Backup SMB drives would be sweet. Surprised they haven't incorporated a NAS component to these. Btw, seems that 2 drives is sufficient for up to 8 cameras maybe
who buys something like that to run 8 cameras anyway
Once again, price upfront and you decide if you want to see the remaining of the video or not... That deserved my immediate like.
This is a swing and a miss by Unifi IMO. How you gonna call something "Pro Max" and not have the switch ports be 2.5gbps? At least this doesn't make me regret purchasing my SE just a couple months ago.
My thoughts exactly. I was waiting for an upgrade with 2.5Gb switch ports and POE would have been a nice add. I'm still on the OG DM and not seeing a reason to upgrade. Still needs to chain to a distribution switch anyway.
Exactly! The U7 Pro takes 2.5GbE and POE+ which you can't do with a brand new Dream Machine? What are they thinking!? 🤯
@@willernst because it's not meant for prosumer users that have previously had the UDMP or UDM-SE.
It is meant for larger business where there are upwards of 750 users and offerings from Cisco and other corporate-targeted brands are perhaps cost-prohibitive or beyond the capability of any support staff.
The majority of larger business use-cases are going to be where downstream switches are likely going to be 10Gb, leaving the 8x standard 1Gb ports perhaps for devices that aren't capable of 2.5Gb.
IMO, UniFi equipment will always be prosumer products for home users, perhaps even small to medium sized businesses.
The UDM-ProxMax would be complete overkill, even as a single device, for anything less than the latter types I mentioned above. Even running two of these for the Shadow mode would be overkill for these types.
Nobody who is buying this is using the onboard switch ports…
@@b00573d Ya, because they're wimpy ports.
But can you finally create IPv6-only VLANs?
This is the best Pro Max review on UA-cam so far today. I bought one today. It will replace SE that is not handling 100 unifi devices, ~350 client devices and 5 vlans
Thank you so much for the kind words. A lot of work goes into these videos. I was up until 2 am finishing this one up!
Thanks for the demo and info, have a great day
For testing the 10G WAN I think you could just hook the UDM Pro Max into any old random port in your existing 10G network. The WAN port would then get a DHCP IP plus DNS info from your existing network. Make a network on the UDM Pro Max with a different ip address range and you've then essentially just set up NAT. You could then probably do some trickery with iperf to go from behind the UDM Pro Max into your existing network, which would essentially be "the internet" It wouldn't be an exact test compared to having an actual 10G WAN, but you could at least test the performance through NAT/Firewall. Or, I could be completely wrong :)
Thank you! Seems right to me 👍
Exactly this! Be your own internet. Make NAT rules so both sides know where the other "is" on the other network and then use iperf, or whatever other test you may want to put in place.
I was going to suggest the same thing. I have used this technique to test firewall throughput before.
just did an inter-vlan test on my SE. Getting 2.0Gb/s using the 2 10G ports, and I'm also running protect in the background. All security features turned on.
for 200 more you would think they would have upgraded the 8 lan ports to 2.5 gbe
Remember too when that update comes out for shadow mode in OS4 all the other rackmount dream machine pro and SE will get it to they're just showcasing them on a dream machine promax
That's right!
I am genuinely surprised that they didn't make the 8, 1Gbe ports on the Front PoE++...
And 2.5 gig
@@TOMKO_ Should be 5 Gig.
@@user-vh8gs1sw1j should be 10 Gig.
@@user-vh8gs1sw1j why not 10 Gig while we are at it
The lack of PoE is a miss for me. I only have a couple PoE devices and the UDM SE is perfect for that.
They timed this release perfectly i was just about to upgrade to the SE so ill just wait a bit now
I can't help but noticed the case on your desk. It looks really sick! May I know what model it is?
Great video Tim :)
For your wan question application testing. You "should" absolutely be able to add any router with a "public ip" to mimick your ISP just make sure the mock ISP router and your UDM are in the same subnet. From there you can span that subnet to an IPERF host and try to get a throughput metric done.
Thank you for this! I wasn't sure if this would actually test the firewall (with the iperf port) but now that you say this it totally makes sense!
@@TechnoTim It will :)
FYI firewalls live at layer 4 of the TCP/IP stack alongside your portnumbers / protocol (tcp/udp) while the routing is at layer 3.
IPERF when it creates its packets does encapsulate the traffic depending on the command flags you apply to it. So you will need to assign your host a "sudo public IP" and then in the UDM you'll need to port forward the IPERF server so then the IPERF sudo public client will connect to your fake public address like any normal client.
Happy to answer any networking questions you may have, I do this as my day job :)
Hi! Great Video! But im confused with the 10Gb LAN-LAN Test with IDS/IPS on, with two deices on the same network.
I would consider that the traffic is only between the source and destination, and it isnt been routed through the firewall. How could IDS/IPS effect the speed in these szenario?!
That would mean that the traffic would be redirected from the switch ports through the FW. I cant believe that, sounds crazy.
Wow, the top 5-videos in my sub's list today are on this topic.
Guess which one I told the algorithm it should be surfacing 1st and sharing to more people.
Hello! Nice video! Do you know if Uibquiti planned to have a version of the DM Pro Max sith POE? Tks!
Can’t imagine why they keep forgetting 2.5g LAN with POE. Oh yeah I remember now.
why?
@@112Haribogreed
I like to see Tim showing us his new toys
Wasn't there a UDM Pro SE? Which if I recall you had switched to a couple months back. What's the comparison between Pro SE vs Max?
That has the same internals but with PoE ports and 2.5 GbE WAN
Pro Max doesn’t have PoE but otherwise the ports are the same.
Pro Max has 2 hard drive slots instead of one on the SE.
Pro Max has marginally better routing performance due to the CPU running 0.3Ghz faster than the SE.
Pro Max has a higher max power consumption of 60W vs 50W on the SE (not counting PoE).
That’s about it. Tech specifications can be compared on the ubiquiti’s website. I don’t see why it costs $100 more than the SE and I’d much rather have the PoE ports.
@@FunningRast I mean, if we're listing everything you missed double the RAM, double the eMMC, a dedicated 128 gb SSD😅
@@TechnoTim Eh? He was asking for a comparison between the two and I was listing off the 4 differences that would be relevant to an end user? But if we’re going to be pedantic for no reason, both the SE and Pro Max have the same dedicated 128GB SSD. 🤷
Amazing review
Apologies for this silly question but how can a single ISP be connected to two Max’s if the ISP modem device only has a single Ethernet connection when in modem mode? Thinking about it further, the ISP device has a switch and when DHCP enabled can support multiple users. Therefore, do I use ISP switch and connect both Max’s to it; would this cause double NAT issue?
UDM Pro SE also had a 2.5Gbe WAN, So far it feels like an OS update that could goto the original Pro and SE and some minor revisions.
Pro Max has 8GB RAM and +300mhz on the Quad Core CPU.
@Ancaruin But that's all... its not something I really see warranting a "Max" branding the dual HDD bays and SSD on board are great but again this is what the SE should have been... the Pro Max should have had PoE on board 2.5Gbe ethernet 10Gbe WAN.
It feel like a half measure
@@Asgard2693 Well lets face it, for large scale someone will probably have the Pro Max or the Enterprise switch, no need for PoE on LAN Ports. It would've been nice to have a 5GbE WAN Port though beside the SFP+ ports.
@Ancaruin I have the Pro in my Lab, I dislike having to have another switch just to do PoE, I mean sure I have a core switch doing 10Gbe SFP and that can do many PoE ethernet. But having all my Cameras and APs directly on the Pro would be nicer. Especially for a top end device!
If you have two 10Gb capable devices it would be pretty easy to test the WAN ports with one device on each side and using iperf.
Is the 8 port switch back end still limited to 1gb like it is on the udm pro
10G WAN test? What about a double NAT option, for this testing purpose? It's still a WAN/LAN setup. Does this would suffice your needs? :)
And right after I bought my second UDM SE lol. This looks awesome, thanks for the run down!
I was so excited about this until I realized it's a very marginal upgrade from UDM SE and they are STILL using GbE ports in this machine which makes it obsolete even before it was released. Why can't UniFi realize that nobody wants 1GbE ports anymore? 🤦♂
I read there is a new model in the works, the udm pro max ultimate max edition second generation
In your failover test, you simply pulled the power from the primary UDM-ProMax.
I know it's a theoretical test, but in reality, are users really going to put each UDM-ProxMax on different AC power sources? Likely not.
Obviously, if you disconnect the link between the primary UDM-ProMax and the switch, this would simulate the failover from the primary to the secondary?
Would you not test WAN continuity by disconnecting the primary UDM-ProMax's WAN connection?
With both UDM-ProMax's still powered on AND connected via the downstream switch, would this cause the secondary to become the active/primary?
On e simple question. Is this new device able to handle 3 WAN’s ?. 2 WANS IN BALANCE Mode and a third one in FAILOVER?.
I have UDM-PRO with two ISP's (load balance). Im looking to get two Max's (replace my single UDM-PRO) but will both ISP's work on the shadow device?
Good question, I would assume so if I am understanding you correctly. The Secondary is on standby until Primary goes down. All configuration is mirrored so as long as you are mirroring the ports it Should Just Work™️
how do you configure shadow mode with dual wan?
Why would they call it a pro max and not include the things that make other "max" switches "max"? No etherlighting and no additional 2.5G ports. Thats such a weird choice when they could just call it the UDM pro 2 or just retire the older UDM pro and keep the name for this box.
Its a small thing, but their naming conventions for their products are very inconsistent it seems.
Either way, enjoyed the video! Neat to see the new shadow mode feature.
Why update an existing ageing product for a similar price point when you can slap a "Max" badge on it and charge more money? /s
I just remotely updated from 2.4.27 to 3.7.12 and it crashed. I know i have to go onsite but will it just need a reset or what happen. Why offer it remote if it wont work?
I'll probably wait to upgrade until the UDM Pro Max Ultra SE.
is the UDM Pro MAx an Upgrade from the UDM Pro SE?
oooooo i see you put linux on that imac did you mx it out yet?? i remember you mention that in your desk tour
Good eye! Not yet! I am hesitant to rip it apart when it runs Linux great as is! When I have some more free time I will for sure because the hybrid drive in there needs to be replaced!
@@TechnoTim so 2 things
temp sensor for the hhd -ifixit has adapters otherwise fans will go 100% at all times
tape the screen to the case for testing before using the adhesive,..
can we use proxmox as 2 gamers 1 cpu like unraid and if we do plz make a video on it
12:00 So the 8 port 1Gbit switch is connected internally with 1Gbit connection to the rest of the device (maybe some 10-12 port chip)? Seems like a waste, especially if you have 2 Gbit internet uplink, you can't have 2 x 1 Gbit downloads at the same time. At the end of the day, that means you can only get 2.5 Gbit via the 10 Gbit SFP+ adapter.
What I found in my testing is that the connection from the 8 port switch over to the other group of ports (10G/2.5G) seems to only support 1Gb/s. That was also the case with the Pro/SE.
Hello sir can you make a video on two games one CPU on proxmox rather than unraid
seems like not much of an upgrade over the SE
WAN ports are unchanged from SE.
So how is your WAN pass thro, Do you have a dumb switch that goes to both UDM?
In my test I was just running it double NAT, having my (main) UDM SE give it IPs.
@@TechnoTim I think the units inability to actually handle failover of a single wan connection (or multiple for that matter) between units should be called out as a major flaw. This could only be done in hardware with a relay for example, so it'll never come to this device without yet another hardware re-design. Shadow Mode has been pushing the friendship of using the term HA from the start, and in a real world application, this latest rendition would still ultimately require user intervention.
When will they replace the super ultra version?
Are those 8 1GB ports PoE?
@TechnoTim they need to be at par with the compeition when it comes to IDS/DPS buy assinging its own separate CPU, this way they can provide full wire speed without IDS/DPS being the bottleneck. This is nothing new, we just installed a new SonicWall 8 months ago that has this feature, I know Fortinet, Cisco and others have his feature too as I was checking them out while I was shopping for a new firewall. This new UDM Pro Max will be nothing more than a upgrade from the UDM Pro for home labs.
i love how they let anyone buy these. im so excited to buy a UDM pro
Meanwhile my Topton chineze mini PC with 2 SFP+ ports and 4 2.5 Gbe ports, pentium gold 8505 cpu, 16 GB DDR 5, running VYOS can do full 10gbps inter-vlan routing and 1Gbps OpenVPN DCO site to site, for almost half the price, while consuming 17watts.
its weird it doesn't come with all 2.5Gb ports
In my opinion they should provide 10GB WAN and 2.5GB LANs
Do i have to wait a day after a blackout for it to work again? That is my only grip about mine. I get a blackout (home user) and the Dream Machine needs about 12 hours before it will reboot properly. I know I am far from the only person with this issue. The Squirrells in my yard fucking with my Transformers vs 12 hour reboots.
I bought a UPS for this exact reason. That way if I'm home I can gracefully power my network down.
But there’s no POE!!! It was almost perfect!
Can you get a new UDM Pro Max and have it failover to an UDM Pro first edition?
Unfortunately no. They have to be the same model. The automatic failover is also coming to the Pro/SE with UniFi OS 4
I think all this is missing is POE which is a shame as the name would suggest this is the better UDM but there are plenty of people who still need POE on those 1gbps ports
waiting for POE version... oh, DM Pro Max SE where are you? ((-;
Why not compare it to the UDM PRO SE ?
Because it's called the UDM Pro Max and who knows if they will ever have a UDM SE Max?
Finally I can replace my DM 1st gen 👍
Unify should have sent you 2 switches also for true full redundancy. If the switch fails .... the entire network is down. If one goes redundant, then go all the way.
I like the way you think 😅
@@TechnoTim Honestly it makes no sense to have two "gateways/routers" and not two core switches. I could understand for home/small office use using one UDM Pro with two services that are redundant, where down time is not that critical, but once anyone thinks about dual gateways they need to go all the way or not at all. Anyway I enjoy your videos, keep on trucking.
I dont get it, why are they putting all thr effort into failover for gateway only if you want a truly redundant setup you'll also need dual core switch.
So they need more 10gbe
2x WAN (10gbe)
2x LAN (10 gbe)
1x Sync/HA (1gbe)
And what underlying protocol are they using? OSPF? VRRP? that failover time leaves a lot to be desired I've used meraki equipment using VRRP on wan and lan which can be no packet loss whatsoever.
Understandably if someone was truly looking for HA and had the $$ for dual 10gbe WAN they wouldn't be looking at Ubiquiti.
Is this a ZimaCube in the background.👀👀👀👀👀👀?
I don't know why they don't just use dr;bd to sync the data, it's been part of the Linux kernel forever and they are just using Debian for ARM.
No PoE on that switch which is meant for their PoE cameras? That is really disappointing.
:-( I really want to see a unit that can do 10Gb inter vlan and 10Gb to internet no IDS/IPS but the ability to enable IDS/IPS on some zones VLAN Office -> Internet for example but not VLAN DMZ -> Internet.
At this price tag, the built-in 8-port switch is underwhelming to be honest. Then again, I'm probably not the intended audience for an all-in-one network appliance like this.
Side note, it very much feels like the clip at 14:15 doesn't belong in this video. I don't see the connection between a GPU and network gear, pun totally intended.
Good eye, I needed some B Roll of a repair and that's all I could come up with!
The failover was pretty slow in my opinion
1:18. Thanks for sharing the retail cost of $599 at launch. Many a creator should take note of this...
I think you have a typo on the price but no problem! 😅
@@TechnoTim thanks, fixed!
kek max! ill stick to the udm pro se..
Without 2.5gbe 😢 FAIL!!!
"The UDM Pro Max has been upgraded in almost every way possible..."
Tim... *narrows eyes*
- No 2.5 GbE, still GbE (and latest UniFi APs support 2.5GbE) in 2024 on a "Pro Max" business gateway
- No PoE, PoE+ or PoE++, the things used to power your... UniFi APs and UniFi Cameras, and was built-in to previous SE model
- Replaced the super-obsolete quad-core Arm A57 CPU ... with a quad-core Arm A57 clocked 20% faster
I guess I'll be waiting for the... UniFi Dream Machine Pro Max Special Edition
or UniFi Dream Machine Special Edition Pro Max
Oh, Ubiquiti.
Of course after I finally buy a UDM-PRO, they release a new version…
Don’t worry guys: I’ll let you know when I upgrade so you know to wait a few weeks… 🤦♂️
firewall not as good as pfsense
It was all about the port lights, no lights no sale.
I want a UniFi router with 8-10x 10GbE and Wifi 7, UniFi Controller I run as an LXC on Proxmox.
I was writing a comment and halfway into the 3rd paragraph I decided it wasn’t worth the effort. I have 2 SE’s in “shadow mode”. Don’t buy this device, they should be doing better.
I'm so tired of the GbE ports
Please help, भाई मुझे tecno spark 6air ke6 का सोर्स कोड चाहिए😊
you lost me at 1gb ports.
Based!
First!
you sob, Chris.
Very meh. Thanks for reviewing so I know my opinion that they aren’t offering good value anymore was confirmed.