DHCP lease-time of 86400 seconds = 24hrs. 46400 seconds = 12h53m20s. If I'm working on fleshing out a network setup, and I do a lot of testing, I set the lease time to 5-10 minutes (300-600 seconds) so that I can move stuff around and see what works, but once I'm happy with the setup, I recommend running it at the default 86400 seconds. If you run low of IPs in a 24hr window, you should use a larger address-space, not shorten the DHCP lease time.
Very well presented. Thanks for being down-to-earth, without music, and for using superb language skills. This is so absent from UA-cam, in general, and it really need not be. As others have said, I really appreciated the low level you kept this at. The one thing I might ask is if you would come back and give us an update related to the recent changes UI has made to the Network Application settings, such as the absence of Guest Network and LAN Local (though not covered in this particular video), and some clarification on nomenclature UI recently changed.
Great video, good for those of us who aren't diplomate network engineers or self taught IT pros. I like the way you explained things without eventually shooting off into tech mode that leave novices such as myself behind. Thank you, much appreciated! I look forward to watching more, perhaps a small step or two beyond the basics, even though this is probably as deep as I'll need to go for my home network (not home lab).
I was planning on doing some uni work on networking, and thought i'd watch some youtube for a bit.. Turns out you taught me so much, related to my course that I ended up doing work without realising it. The thing I liked is that you talk from experience, and say why you do it that way, with examples
Great job! This will definitely get most folks up and running. Thanks for the plain language approach and not throwing everything in this video (such as advanced features that can be covered in other videos). Thanks!
You earned a sub, I am a sys admin for state government where I live. I love and have a passion for networking, but all my life I’ve had a learning disability. Once I learn and understand something it’s like on! But until it makes sense to me it’s like a wall is up between myself and progression. I was introduced to unifi products last year around aug. I bought a udm se / the 8 port l3 switch (for offloading lans) and then I have a flex mini and two U6 mesh wireless devices. I’ve setup my stuff so many times only to reset it all and go back to the drawing board. Certain thing during setup might stump me and then the vid I’m watching isn’t helping either. YOU, SIR! YOU ARE SO GOOD AT EXPLAINING THINGS AND YOU HAVE A NICE PACED WITH THE AUDIENCE. I’ll probably need to request some help with the proper setup of the l3 switch and also traffic rules. Unifi has a weird fire wall and I’m just not sure how to approach it. Thank you!
In other Unifi confiuguration videos I've seen, specific Firewall rules are created to prevent inter-VLAN traffic (e.g. an RFC1918 group of all of the private IP address ranges is created and a LAN-IN rule is created with a source and destination of that group), but you didn't show that here. Do you believe that it is needed? There are also rules I have seen other's create for allowing matched state established and match state related related traffic (a LAN-IN rule), as well as dropping matched state invalid (all of which are advanced firewall rule settings) - I'm curious as to your thoughts on that as well
Kudos for you. I have seen some other video's about setting up a Unifi network and this one is by far the best I have seen. Especially because you explain it so understandable for non-engineers. I will most definite keep following you. Keep up the good work.
This video was really helpful. I just had to rebuild my company's Ubiquiti Network when our USG failed and we upgraded to the Dream Machine Pro. I was pretty out of my depth so your video was a big help. Nothing is rocket science, but you explained the interactions of everything and made it easy to understand plus gave me the confidence to tackle it. Thank you!!!!
Thanks for the video. I would love to see a less professional/enterprise tutorial that is catered towards your average tech enthusiast trying to set up a home network with a secure network to also self-host apps.
I have been having trouble with my network for a few weeks now. After watching this I see that I had my wifi and vlans setup incorrectly. Or at least not optimal. I have now created the same type of setup you showed here. Before I had only a IOT wifi, now I have an IOT vlan and a Wifi. This seems to have resolved a lot of my connectivity issues. Also, having that guest network setup is such a game changer. Being able to block family from connecting to things while still allowing them to browse the interwebs freely. It is really is the little things that make life so much more comfortable. The only thing I haven't been able to figure out is how to manage my Unifi Identity network. I added the identity layer and it create a separate network. My wife's devices all use that wifi and mine all use the default networks.
Hey, first of all thanks for the video. I really like the complete setups, both as a refresher and to see some other ideas or configurations of what I could improve on or learn more about. In your upcoming video, I'd be glad if you could delve a bit deeper into specific topics, such as firewall rules, VPN, site-to-site VPN, and RADIUS. I hope there will also be another on-site video soon. Additionally, I have a question regarding your suggestion to place the cameras and NVR together into a VLAN to prevent excessive inter-VLAN-traffic. However, you also recommend separating the staff from the server. Wouldn't this separation result in high traffic and impose a significant load on the UDM, as all the traffic between the staff needs to be routed across VLANs?
Hi Max, I’m glad you enjoyed the video. We are planning to release a new on-site video next Friday, and an additional in-depth UniFi video in the following week. I think our strategy for many tutorials is going to be a beginner guide, followed by a separate video, targeting more advanced or professional users. The strategy may change though. You raise a great question about east/west traffic. This can be a problem in some applications. We actually ran into this with a video production server. UDM’s don’t do a good job moving terabytes of video between VLANs, but it does depend on the application. In the case of the UNVR, viewing the cameras does not take a lot of bandwidth , but the cameras direct connection to the server does. In many situations servers will have access to both networks and we will use the server network only for administration. As an added security feature, we can disable administration capabilities, on the staff NIC IP. Web servers such as NextCloud, always live on their own vLAN. Hope that helps!
Great Video!! Thank you for sharing your knowledge. Videos like these help make our collective IT communities stronger with base knowledge and provide a great opportunity to improve and invent new processes and services. Thanks again!!
Thanks, that was very helpful. I'd also be interested in how to set up several access points within a network regarding frequencies and SSIDs to avoid interference and enable clients to move seamlessly from one AP to another.
This is a great video. While I did not replicate the various VLAN setup settings, this did help to get my UDM Pro and Switch up and running using my Starlink Wifi WALN connection. Thank you.
Awsome video with great information. I set up my VLAN for my camera network but I can't figure out how to port forward in out of a VLAN so my phone app can access my cameras. Do you have a video on this?
Really great video. Was very helpful in getting two small networks off the ground using UDR and UDM SE. As others have said, based off the effectiveness of this video, some more indepth videos would be really great if you guys have the scope to produce them. I'll put another vote in for site-to-site VPN.
Much appreciated, setting up a home-based network, used for professional purposes too, work from home. Since it is small, I was thinking about keeping IOT and Security on the same network and SSID. Does this make sense?
As an IT noob, I really enjoyed this video and the way you explain things. Thank you! One quick question: say I connect all my IOT devices on the IOT network, say Sonos speakers, but my phone is connected to Main network, will I be able to see and control the Sonos speakers?
Hey there! Thanks for your kind words and I'm glad you're finding the videos helpful! To answer your question: Typically, devices on different networks (or VLANs) can't directly communicate with each other. This means that if your phone is on the Main network and your Sonos speakers are on the IoT network, your phone might not be able to detect or control the speakers. However, with some advanced setup, you could potentially make this work. You would need to set up things like Inter-VLAN routing or multicast forwarding which can help your devices talk to each other across the networks. But it's quite technical, and not all routers or network switches support these features. For most people, the simpler solution would be to keep devices that need to interact with each other on the same network. So if you need your phone to control your Sonos speakers, it's easier to have both on the same network. I hope that helps! Feel free to drop more questions, always happy to help. Happy networking!
Just found you guys today. I Subscribed and watching all of your videos. Hope you keep bringing the content I’m sure you guys will grow if you keep it up!
Thanks for sharing this outstanding walkthrough!! Does the Enterprise 48 PoE support WAN failover or load balancing between two ethernet internet connections with different static IP's?
Awesome video. One question: Whenever any of my Android devices are connected to my home Unifi networks (wireless or hard wired) I am unable to download or update applications from Google Play. If I disconnect the phones from the network, they can download and update fine using mobile networks or other WIFI. What went wrong?
I would have liked this to be a little more in-depth would have gone. IGMP snooping, multicast DNS, DHCP guarding. Unfortunately, the firewall part was also only scratched. At almost 40 minutes I had hoped for more. Still a good video for beginners.
very good video , what is the best practice when you have the pro and 3 or more switches connect them all to the pro or connect the switchers between going from switch to switch ? also is better to have all the poe in one switch or spread them in those 3 or 4 poe .(around 16 poe devices )
How would you personally go about connecting an HPE server with ESXi installed on it to a unifi switch, given it's got multiple network connections bridge negotiation would take place on boot
Great video! Is the switch a layer 3 one? We're not sure whether or not a layer 3 switch is necessary for us as a small company. We have a DM- SE and 4 cams. Any advice? Which switch would be good? 24 ports should be enough for now, we plan to buy some flex and flex mini switches that would be connected to the main switch or the DM-SE directly. Thanks in advance!!
It is a layer 3, but in most cases, you are not using any of the L3 features. The 24 port units are great switches, however, if you are planning to already use 18 or more I would upgrade to the 48 port switch. They are significantly cheaper in terms of the cost per port, and cable management is much cleaner in the rack since you can stack 2 patch panels. Hope this helps!
Hi , just a question regarding the aps , say 3x aps wired into the poe switch with the wifi meshing box ticked would it still work fine ? or better to untick it . Also when i was walking around the property i noticed that i wasn't getting the fast speeds all the time I'm assuming its not roaming quick from one device to the other is that normal ? otherwise it works. Thanks.
i really love your content! it's so helpful! i work with ubiquiti in italy but it's very difficult to find good courses to learn things. you video il gold to me! can you do a focus video on the rules? like authorize a specific device on a vlan to access few specific devices on a different vlan, stuffs like these. :D
when you setup wireguard on a different subnet, how do you get devices to be able to see devices on other subnets? for example my home server is on 192.168.1.X but my wireguard devices are on 192.168.10.X
Great video, thnx for all the info you fed me ;-) I was wondering if you could make a video for home users with UID and a NAS (Synology). I am able to connect through my VPN to my homenetwork, but for some reason my NAS isn't showing up in my netwerk explorer of windows? There are numerous discussions about this, but one solution is hard to find.
Good evening Sir, thanks for your time educating us. Pls, kindly help... I have a unified AP Pro that want to use and extend internet service from groundfloor to 4th floor. pls how do i go about it... I have already run cat6 to 4th floor. Thank you.
Can someone please explain to me why you’d use a 10.69 IP scheme with a subnet mask of 255.255.255.0 ? Why not just go with something a bit more standard like 192.169.0.1 ? Is there actually some useful thing this gives you or is it just someone trying to be ‘fancy’ and not like everyone else? I’m under the impression that a 10. Ip address for private use would be Class A and typically have a 255.0.0.0 subnet mask?
Great video. My current home setup uses the USG and a CloudKey, but I am considering upgrading to the UDM Dream Machine. Would it have the same features as the UDM Pro (with less powerful hardware)? It seems that the traffic management feature could simplify my pihole+unbound setup for DNS. I use the pihole not only to block ads but also to filter content for the family devices.
I have one question, if you create a vlan for security and place the unifi cameras in it, then they wont be able to talk to the rest of the wifi gear which is on another vlan, right? Wont that be a problem?
@unifiedIT - Thank you for the video. If I am simply wanting to add an extension to my existing home network due to WIFI coverage drop-out - can I simply add an AP U6-Lite Module and not require the Dream Machine, or a Managed Gigabit Switch/ UB software to run off standard ISP provided modem?
2 questions: #1 which I think all need to know, I saw people in youtube opening a wifi 6 AP, but the packages did not have access points in them, hmmm. I am purchasing 2 of the Long Range wifi 6 so the wifi 6 can use the same POE as the prior version of Ubiquiti AP's or which POE do I need to purchase for the Long Range wifi 6? 2. Can I operate the WIFI 6 APs along with the older original Ubiquiti APs on the same network? I do still have dead spots, a couple wifi 6's should fix that issue, but as I have a 5200 sq ft spread out in diff directions building, need to make sure the 6's won't interrupt the wifi 5's older design Ubiqiti AP's I have in place.
Great video!! I have a follow up question. I have an older unifi setup(usg-3p router+us-16-150w switch) and after an update(I assume device firmware but could be the unifi controller 7.3.83) I started getting alerts regarding IP conflicts due to my linux servers having bonded interfaces. Do you have any suggestions to mitigate this issue?
Did you get this resolved? I just got my first UDM Pro setup and was preparing to bond my server Synology connections, from within the Synology UI, in the next couple of days, as soon as I can get more cables to run to my Unifi Enterprise switch. I was wondering if I need to bond the switch ports from within Unifi as well. Just haven’t gotten to diving into all of that yet so any help is appreciated.
@@williamhicks2763 Nope, I still get the notifications of IP conflict. This started with a controller or switch firmware update I believe. My interfaces are bonded using adaptive load balancing so no change is needed on the switch(and this had been working for years) unlike link aggregation where you would bond the interfaces in the switch too as hardware support is required for it to work.
Can anyone confirm this setup is okay for a small business - WITHOUT a proper firewall like a Netgate or Watchguard? Is the setup in the video safe enough? Thanks!
So I've been testing with my own UDM pro and I have managed to reliably avoid Unifi's VPN filtering. It's not hard. They're blocking certain protocols so you just have to choose something that's not using a standard protocol. And you can also do some port shenanigans, but it should block most unsophisticated users. Of pain point. It also blocks stuff like cloud flare, tunnels and tail scale which might be getting used as a VPN but are more likely being used for remote services access
While in normal AP you just login streight into device, set it as AP, done. Ubnt is maybe good with large companies with lots of devices in lots of places to manage, but it should give customer a choice, either do big which requires all the account bs, or small where you just log into the device and set it as AP without all the managment-accounts-clouds bonanza.
If I want the cable going to my access point to not be a entry point into my network (example: unplug the AP and plug in a laptop), whats the best way to accomplish that?
I think I figured it out with Firewall rules to block management network (where AP's live) from talking to the production network(s). Let me know if there is a better way.
DHCP lease-time of 86400 seconds = 24hrs. 46400 seconds = 12h53m20s.
If I'm working on fleshing out a network setup, and I do a lot of testing, I set the lease time to 5-10 minutes (300-600 seconds) so that I can move stuff around and see what works, but once I'm happy with the setup, I recommend running it at the default 86400 seconds. If you run low of IPs in a 24hr window, you should use a larger address-space, not shorten the DHCP lease time.
Very well presented. Thanks for being down-to-earth, without music, and for using superb language skills. This is so absent from UA-cam, in general, and it really need not be. As others have said, I really appreciated the low level you kept this at. The one thing I might ask is if you would come back and give us an update related to the recent changes UI has made to the Network Application settings, such as the absence of Guest Network and LAN Local (though not covered in this particular video), and some clarification on nomenclature UI recently changed.
Great video, good for those of us who aren't diplomate network engineers or self taught IT pros. I like the way you explained things without eventually shooting off into tech mode that leave novices such as myself behind. Thank you, much appreciated! I look forward to watching more, perhaps a small step or two beyond the basics, even though this is probably as deep as I'll need to go for my home network (not home lab).
I was planning on doing some uni work on networking, and thought i'd watch some youtube for a bit.. Turns out you taught me so much, related to my course that I ended up doing work without realising it.
The thing I liked is that you talk from experience, and say why you do it that way, with examples
Great job! This will definitely get most folks up and running. Thanks for the plain language approach and not throwing everything in this video (such as advanced features that can be covered in other videos). Thanks!
That's the idea! We are planning to release several more advanced guides on specific topics.
You earned a sub, I am a sys admin for state government where I live. I love and have a passion for networking, but all my life I’ve had a learning disability. Once I learn and understand something it’s like on! But until it makes sense to me it’s like a wall is up between myself and progression. I was introduced to unifi products last year around aug. I bought a udm se / the 8 port l3 switch (for offloading lans) and then I have a flex mini and two U6 mesh wireless devices.
I’ve setup my stuff so many times only to reset it all and go back to the drawing board. Certain thing during setup might stump me and then the vid I’m watching isn’t helping either.
YOU, SIR! YOU ARE SO GOOD AT EXPLAINING THINGS AND YOU HAVE A NICE PACED WITH THE AUDIENCE.
I’ll probably need to request some help with the proper setup of the l3 switch and also traffic rules. Unifi has a weird fire wall and I’m just not sure how to approach it. Thank you!
Thank you for you kind words!
If you need help, we offer hourly consulting.
www.unifiedit.tech/meetings/discovery-meeting
@@unified-it thank you and I’ll be in contact
In other Unifi confiuguration videos I've seen, specific Firewall rules are created to prevent inter-VLAN traffic (e.g. an RFC1918 group of all of the private IP address ranges is created and a LAN-IN rule is created with a source and destination of that group), but you didn't show that here. Do you believe that it is needed? There are also rules I have seen other's create for allowing matched state established and match state related related traffic (a LAN-IN rule), as well as dropping matched state invalid (all of which are advanced firewall rule settings) - I'm curious as to your thoughts on that as well
Kudos for you. I have seen some other video's about setting up a Unifi network and this one is by far the best I have seen. Especially because you explain it so understandable for non-engineers. I will most definite keep following you. Keep up the good work.
Same for me, best video so far i've seen for configuring a unifi network from scratch.
This video was really helpful. I just had to rebuild my company's Ubiquiti Network when our USG failed and we upgraded to the Dream Machine Pro. I was pretty out of my depth so your video was a big help. Nothing is rocket science, but you explained the interactions of everything and made it easy to understand plus gave me the confidence to tackle it. Thank you!!!!
Keep your own style. You packed in a lot of detail.
Thanks for the video. I would love to see a less professional/enterprise tutorial that is catered towards your average tech enthusiast trying to set up a home network with a secure network to also self-host apps.
I have been having trouble with my network for a few weeks now. After watching this I see that I had my wifi and vlans setup incorrectly. Or at least not optimal. I have now created the same type of setup you showed here. Before I had only a IOT wifi, now I have an IOT vlan and a Wifi. This seems to have resolved a lot of my connectivity issues. Also, having that guest network setup is such a game changer. Being able to block family from connecting to things while still allowing them to browse the interwebs freely. It is really is the little things that make life so much more comfortable.
The only thing I haven't been able to figure out is how to manage my Unifi Identity network. I added the identity layer and it create a separate network. My wife's devices all use that wifi and mine all use the default networks.
Hey, first of all thanks for the video. I really like the complete setups, both as a refresher and to see some other ideas or configurations of what I could improve on or learn more about.
In your upcoming video, I'd be glad if you could delve a bit deeper into specific topics, such as firewall rules, VPN, site-to-site VPN, and RADIUS. I hope there will also be another on-site video soon.
Additionally, I have a question regarding your suggestion to place the cameras and NVR together into a VLAN to prevent excessive inter-VLAN-traffic. However, you also recommend separating the staff from the server. Wouldn't this separation result in high traffic and impose a significant load on the UDM, as all the traffic between the staff needs to be routed across VLANs?
Hi Max, I’m glad you enjoyed the video. We are planning to release a new on-site video next Friday, and an additional in-depth UniFi video in the following week. I think our strategy for many tutorials is going to be a beginner guide, followed by a separate video, targeting more advanced or professional users. The strategy may change though.
You raise a great question about east/west traffic. This can be a problem in some applications. We actually ran into this with a video production server. UDM’s don’t do a good job moving terabytes of video between VLANs, but it does depend on the application. In the case of the UNVR, viewing the cameras does not take a lot of bandwidth , but the cameras direct connection to the server does. In many situations servers will have access to both networks and we will use the server network only for administration. As an added security feature, we can disable administration capabilities, on the staff NIC IP. Web servers such as NextCloud, always live on their own vLAN.
Hope that helps!
Great Video!! Thank you for sharing your knowledge. Videos like these help make our collective IT communities stronger with base knowledge and provide a great opportunity to improve and invent new processes and services. Thanks again!!
This is a great video. Love your schema. Can you add a couple of branch offices connected via site to site to the scheme?
Super ! Thanks for this clear video.
Small mistake Lease time of 86400 sec is one day and not 8 days as mentioned. I learned a lot!
Thanks, that was very helpful. I'd also be interested in how to set up several access points within a network regarding frequencies and SSIDs to avoid interference and enable clients to move seamlessly from one AP to another.
Awesome information! Starting a job that uses ubiquiti on Monday and I've never used it. This definitely makes me feel a bit more prepared. Thanks!
Just what I needed for my new network! Thank you for making this video!
This is a great video. While I did not replicate the various VLAN setup settings, this did help to get my UDM Pro and Switch up and running using my Starlink Wifi WALN connection. Thank you.
Great video! Was wondering if this setup applies to all Ubiquiti Cloud Gateways including the Cloud Gateway Max and Extra units?
Meant to say Cloud Gateway Ultra....Sorry
Awsome video with great information. I set up my VLAN for my camera network but I can't figure out how to port forward in out of a VLAN so my phone app can access my cameras. Do you have a video on this?
អរគុណ សម្រាប់ការពន្យល់បានល្អ ច្បាស់ៗ និងងាយស្ដាប់ 👍👍❤❤
The guy in this video is highly intelligent. Thanks for the video!
wrong info
Definitely a great setup tutorial! Great job!
Very detailed information! Thank you so much! I do wonder of how I can secure Access Points from being hyjacked? Thank you!
Thank you for the video. I really wanted to apply this in my office and see how it behaves.
Great video. I have a project to create new network. this video filled me with confidence. thank you.
Glad it was helpful!
Really great video. Was very helpful in getting two small networks off the ground using UDR and UDM SE. As others have said, based off the effectiveness of this video, some more indepth videos would be really great if you guys have the scope to produce them. I'll put another vote in for site-to-site VPN.
Nice to know that I had done all of those things already, always good to get a second opinion
Much appreciated, setting up a home-based network, used for professional purposes too, work from home. Since it is small, I was thinking about keeping IOT and Security on the same network and SSID. Does this make sense?
Awesome video. Looking forward to the next episode.... Especially in areas of creating guest hotspot and using RADIUS server for user authentication.
As an IT noob, I really enjoyed this video and the way you explain things. Thank you!
One quick question: say I connect all my IOT devices on the IOT network, say Sonos speakers, but my phone is connected to Main network, will I be able to see and control the Sonos speakers?
Hey there! Thanks for your kind words and I'm glad you're finding the videos helpful!
To answer your question: Typically, devices on different networks (or VLANs) can't directly communicate with each other. This means that if your phone is on the Main network and your Sonos speakers are on the IoT network, your phone might not be able to detect or control the speakers.
However, with some advanced setup, you could potentially make this work. You would need to set up things like Inter-VLAN routing or multicast forwarding which can help your devices talk to each other across the networks. But it's quite technical, and not all routers or network switches support these features.
For most people, the simpler solution would be to keep devices that need to interact with each other on the same network. So if you need your phone to control your Sonos speakers, it's easier to have both on the same network.
I hope that helps! Feel free to drop more questions, always happy to help. Happy networking!
Excellent video! Made a great refresher, thank you to the host for going over everything as well as he did
More ubiquiti videos please!
👍 More is in the works!
Nice Genuine personality and gentleman Very clear & clean office!! great Job :))
Just found you guys today. I Subscribed and watching all of your videos. Hope you keep bringing the content I’m sure you guys will grow if you keep it up!
Great Video. You make it easy to follow, and I can understand you clearly!
Easy to understand, enjoyed seeing you work off a Mac, too.
Thanks for sharing this outstanding walkthrough!! Does the Enterprise 48 PoE support WAN failover or load balancing between two ethernet internet connections with different static IP's?
Awesome video. One question: Whenever any of my Android devices are connected to my home Unifi networks (wireless or hard wired) I am unable to download or update applications from Google Play. If I disconnect the phones from the network, they can download and update fine using mobile networks or other WIFI. What went wrong?
I would have liked this to be a little more in-depth
would have gone. IGMP snooping, multicast DNS, DHCP guarding.
Unfortunately, the firewall part was also only scratched.
At almost 40 minutes I had hoped for more.
Still a good video for beginners.
Thanks for the feedback, it really does help! We are planning to make a more advanced video, and a video on RADIUS.
very good video , what is the best practice when you have the pro and 3 or more switches connect them all to the pro or connect the switchers between going from switch to switch ? also is better to have all the poe in one switch or spread them in those 3 or 4 poe .(around 16 poe devices )
Great video. Also you have a fantastic presenting and explanation style. Thanks man!
How would you personally go about connecting an HPE server with ESXi installed on it to a unifi switch, given it's got multiple network connections bridge negotiation would take place on boot
Awesome video. Can't wait to start my setup.
Great video. I am having a problem when I go to the port -> port profile, I do not see the All setting in the drop down menu. Any suggestions?
thanks man, you really hit it, and very informative
am falling in love with unifi day after day
Hi, is it possible to have the Unifi controller on one vlan and the AP U6 on another vlan? I am struggling to make this work. Thank you. Great video!
Thanks for the video, please how do I change my internet connection provider. I just got a cheaper quote for internet , how do I switch the internet?
Great video! Is the switch a layer 3 one? We're not sure whether or not a layer 3 switch is necessary for us as a small company. We have a DM- SE and 4 cams. Any advice? Which switch would be good? 24 ports should be enough for now, we plan to buy some flex and flex mini switches that would be connected to the main switch or the DM-SE directly.
Thanks in advance!!
It is a layer 3, but in most cases, you are not using any of the L3 features. The 24 port units are great switches, however, if you are planning to already use 18 or more I would upgrade to the 48 port switch. They are significantly cheaper in terms of the cost per port, and cable management is much cleaner in the rack since you can stack 2 patch panels.
Hope this helps!
Does UDM Pro gateway doesn't need seperate controller? Is it built-in already? Thanks. 🤙
Great video. Really appreciated the thought put into creating your vlans.
Hi , just a question regarding the aps , say 3x aps wired into the poe switch with the wifi meshing box ticked would it still work fine ? or better to untick it . Also when i was walking around the property i noticed that i wasn't getting the fast speeds all the time I'm assuming its not roaming quick from one device to the other is that normal ?
otherwise it works.
Thanks.
hello, is there a way to setup alert email in case one of the Ubquite item went down please?
Great video - it helped me a lot with my new Unifi Network. Still a lot to learn for me ;) Thank you !
i really love your content! it's so helpful! i work with ubiquiti in italy but it's very difficult to find good courses to learn things. you video il gold to me! can you do a focus video on the rules? like authorize a specific device on a vlan to access few specific devices on a different vlan, stuffs like these. :D
What is the practical benefit of changing 192.168.x.x to 10.xx.xx?
Also curious about this
Can you do one for Protect? This was excellent!
when you setup wireguard on a different subnet, how do you get devices to be able to see devices on other subnets? for example my home server is on 192.168.1.X but my wireguard devices are on 192.168.10.X
Great video, thnx for all the info you fed me ;-) I was wondering if you could make a video for home users with UID and a NAS (Synology).
I am able to connect through my VPN to my homenetwork, but for some reason my NAS isn't showing up in my netwerk explorer of windows?
There are numerous discussions about this, but one solution is hard to find.
Wait, so it auto writes the firewalls depending on selections made from initial network setups and from the Threat Management selections you make?
Thanks.
I have my servers and workstations in the same vlan as the Unifi devices, I may consider changing that.
Too cool. Great vid. Thanks.
Good evening Sir, thanks for your time educating us. Pls, kindly help...
I have a unified AP Pro that want to use and extend internet service from groundfloor to 4th floor.
pls how do i go about it... I have already run cat6 to 4th floor. Thank you.
Can someone please explain to me why you’d use a 10.69 IP scheme with a subnet mask of 255.255.255.0 ? Why not just go with something a bit more standard like 192.169.0.1 ? Is there actually some useful thing this gives you or is it just someone trying to be ‘fancy’ and not like everyone else? I’m under the impression that a 10. Ip address for private use would be Class A and typically have a 255.0.0.0 subnet mask?
Great video. My current home setup uses the USG and a CloudKey, but I am considering upgrading to the UDM Dream Machine. Would it have the same features as the UDM Pro (with less powerful hardware)? It seems that the traffic management feature could simplify my pihole+unbound setup for DNS. I use the pihole not only to block ads but also to filter content for the family devices.
Do I need a Layer 3 switch to make these configurations work?
I have one question, if you create a vlan for security and place the unifi cameras in it, then they wont be able to talk to the rest of the wifi gear which is on another vlan, right? Wont that be a problem?
@unifiedIT - Thank you for the video. If I am simply wanting to add an extension to my existing home network due to WIFI coverage drop-out - can I simply add an AP U6-Lite Module and not require the Dream Machine, or a Managed Gigabit Switch/ UB software to run off standard ISP provided modem?
2 questions: #1 which I think all need to know, I saw people in youtube opening a wifi 6 AP, but the packages did not have access points in them, hmmm. I am purchasing 2 of the Long Range wifi 6 so the wifi 6 can use the same POE as the prior version of Ubiquiti AP's or which POE do I need to purchase for the Long Range wifi 6? 2. Can I operate the WIFI 6 APs along with the older original Ubiquiti APs on the same network? I do still have dead spots, a couple wifi 6's should fix that issue, but as I have a 5200 sq ft spread out in diff directions building, need to make sure the 6's won't interrupt the wifi 5's older design Ubiqiti AP's I have in place.
Can you setup Unifi to link to Microsoft Entra ID? I want to have the ability for users to connect to our network using their Entra ID credentials
great video. I just started with DM Pro.
Glad it was helpful!
Great video!! I have a follow up question. I have an older unifi setup(usg-3p router+us-16-150w switch) and after an update(I assume device firmware but could be the unifi controller 7.3.83) I started getting alerts regarding IP conflicts due to my linux servers having bonded interfaces. Do you have any suggestions to mitigate this issue?
Did you get this resolved? I just got my first UDM Pro setup and was preparing to bond my server Synology connections, from within the Synology UI, in the next couple of days, as soon as I can get more cables to run to my Unifi Enterprise switch. I was wondering if I need to bond the switch ports from within Unifi as well. Just haven’t gotten to diving into all of that yet so any help is appreciated.
@@williamhicks2763 Nope, I still get the notifications of IP conflict. This started with a controller or switch firmware update I believe. My interfaces are bonded using adaptive load balancing so no change is needed on the switch(and this had been working for years) unlike link aggregation where you would bond the interfaces in the switch too as hardware support is required for it to work.
are all these Ubiquiti features available on an entry-level device such as the Unifi Dream Router?
I've seen alot of Ubiquiti vids and gotta say. Yours is up there 👍👍
Thank you! We keep trying to raise our quality with each video.
What do y'all use for power?
thanks Cody! super helpfull!
Extreme shout out. Love it.
Hi, do we need to turn on IGMP snooping for IOT vLan ? Thanks!
Is there a way to block or kick off multiple clients (personal iphones, watches, etc) by selecting multiple instead of 1 at a time?
Can anyone confirm this setup is okay for a small business - WITHOUT a proper firewall like a Netgate or Watchguard? Is the setup in the video safe enough? Thanks!
Thanks, awesome tutorial!
Yo good stuff man. Nice explanations!
Could you do a more in depth video on Vlans. I tried setting them up but whenever a port is put on one the device attached just disappears.
Great video sir🎉
Thanks 👍
Really awesome 🤩 thank for this video
Glad you liked it!
Does the UXG-Pro support 1-1 NAT?
Good stuff, thanks.
So I've been testing with my own UDM pro and I have managed to reliably avoid Unifi's VPN filtering. It's not hard. They're blocking certain protocols so you just have to choose something that's not using a standard protocol. And you can also do some port shenanigans, but it should block most unsophisticated users.
Of pain point. It also blocks stuff like cloud flare, tunnels and tail scale which might be getting used as a VPN but are more likely being used for remote services access
While in normal AP you just login streight into device, set it as AP, done. Ubnt is maybe good with large companies with lots of devices in lots of places to manage, but it should give customer a choice, either do big which requires all the account bs, or small where you just log into the device and set it as AP without all the managment-accounts-clouds bonanza.
Hello, Is it possible to change the MGMT IP of the UniFI switch to another VLAN? I just need a PoE++ Switch, no L3 features. My GW is a firewall.
Great video.
Most excellent work
Hi there, would you be able to help us set a wireless small ISP with Ubiquity gears please?
Let's talk about that!
www.unifiedit.tech/meetings/discovery-meeting
If I want the cable going to my access point to not be a entry point into my network (example: unplug the AP and plug in a laptop), whats the best way to accomplish that?
I think I figured it out with Firewall rules to block management network (where AP's live) from talking to the production network(s). Let me know if there is a better way.
Awesome video, but you did skip the the Internal Honeypot! lol
Thanks for addressing iot
Should I still install PFSense?
Thanks! Great video