Reply
New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2
Accepted Solution

ERL + UniFi problems

Hi,

I originally posted this in the UniFi forum but I'm not getting any responses so hopefully someone here can help me out.

I'm having a problem connecting to a lighting system through the UniFi AP. The AP is on port 1 of ERL using the bridged SOHO config posted in the ERL forum. Address is 192.168.2.xxx for all the devices on that network and when I hook my laptop directly to the switch I have no problems accessing the lighting processor.

However, when I take the laptop of of the wired network and try to access the lighting processor wirelessly I can't get it to connect or even find the processor. I thought the AP would treat my wireless conection as a bridge and there would be no difference between wired and wireless.

I called the lighting manufacturer (Lutron) and they told me that the software uses multicast to find the processor and that it uses port 21 when I upload to it and telnet for 3rd party control. Do I have to setup anything on the AP for all of this to work or is this a routing problem?

I have replied to a seperate post for a Panasonic tv that can't access the smart features via the unifi AP but works fine when connected to the wireless router provided by the carrier. Hoping this is the same problem and I can solve both at the same time. No ERL in the case of the Panasonic.

Thanks,

Tim


Accepted Solutions
New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@tkarps wrote:

@UBNT-ancheng wrote:

@tkarps wrote:

could this be a multicast issue as I have been reading in the forums that it is curently not supported as per this:


Could you confirm again if the UAP and the lighting processor are connected to the same switch, and when the laptop is connected wirelessly to the UAP, does it obtain the right IP address and is otherwise working (e.g., Internet access)? If so, as mentioned the traffic between the laptop and the lighting processor should not go through the ERL so multicast routing etc. on the ERL should not be relevant for this particular setup.


That is correct. All devices (laptop, UAP, lighting processor etc.) are on the same switch. When I connect to the UAP with laptop I get an address in the correct range 192.168.2.xxx and am able to surf the web and get my email etc.

I can't see any reason for this not to work but it is now 2 devices that are having issues that are not there with a simple linksys router setup or any carrier supplied router / switch combination. I have also tried connecting the UAP to a linksys router along with the lighting processor with the same result. Tried to bypass the switch to see if it was the problem. One additional note: the panasonic tv and the lighting processor are not on the same jobsite. 2 different UAP's and 2 different setups in terms of routing (ERL vs Carrier).

Tim


Just received a new pack of UAP-AP-LR's

Replaced UAP-AP-AC with UniFi-AP-LR and everything is running as it should. Does this mean I have a defective UAP-AP-AC or is there something different about the AC version that I need to know about?

Tim

View solution in original post


All Replies
Previous Employee
Posts: 13,551
Registered: ‎06-10-2011
Kudos: 5465
Solutions: 1656
Contributions: 2

Re: ERL + UniFi problems

Sounds like you mean the following:

  • The UAP is connected to one port on the ERL
  • A switch is connected to another port on the ERL
  • Those two ports on the ERL are bridged together so they are on the same 192.168.2.x subnet
  • The "lighting processor" is connected to the switch
  • If laptop is connected to the same switch, accessing the lighting processor works
  • If laptop is connected wirelessly to the UAP, it cannot access the lighting processor

If so, one thing you can try to narrow down the issue is to connect the UAP to the same switch and then connect the laptop to the UAP wirelessly again and see if that changes anything. This way the traffic does not go through the ERL so we can get some more information on whether the issue involves the ERL or not.

New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@UBNT-ancheng wrote:

Sounds like you mean the following:

  • The UAP is connected to one port on the ERL
  • A switch is connected to another port on the ERL
  • Those two ports on the ERL are bridged together so they are on the same 192.168.2.x subnet
  • The "lighting processor" is connected to the switch
  • If laptop is connected to the same switch, accessing the lighting processor works
  • If laptop is connected wirelessly to the UAP, it cannot access the lighting processor

If so, one thing you can try to narrow down the issue is to connect the UAP to the same switch and then connect the laptop to the UAP wirelessly again and see if that changes anything. This way the traffic does not go through the ERL so we can get some more information on whether the issue involves the ERL or not.


The switch is connected to port 1 on the ERL (192.168.2.xxx). From there the UAP is connected to the same switch along with the lighting processor. If I connect directly to the switch everything works. connecting through the UAP it can't find the processor. Port 2 is internet (WAN) connection and port 0 is empty. Port 0 and 1 are bridged.

Something must be happening when I'm going through the UAP as it's having the same effect on the Panasonic tv. Tried 2 different laptops; one running windows 7 and the other running windows 8. Same result on both. Using the new UAP - AC (square version).

Does this help?

Thanks, Tim

Previous Employee
Posts: 13,551
Registered: ‎06-10-2011
Kudos: 5465
Solutions: 1656
Contributions: 2

Re: ERL + UniFi problems


@tkarps wrote:

The switch is connected to port 1 on the ERL (192.168.2.xxx). From there the UAP is connected to the same switch along with the lighting processor. If I connect directly to the switch everything works. connecting through the UAP it can't find the processor. Port 2 is internet (WAN) connection and port 0 is empty. Port 0 and 1 are bridged.

OK If I understand correctly, since the lighting processor and the UAP are already on the same switch, as I mentioned the traffic between the laptop (connected wirelessly through the UAP) and the lighting processor should not go through the ERL. In that case, it does look like the ERL is not involved and this may be an issue with the UAP. Maybe there is an option to enable multicast forwarding or something like that for the UAP?

New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@UBNT-ancheng wrote:

@tkarps wrote:

The switch is connected to port 1 on the ERL (192.168.2.xxx). From there the UAP is connected to the same switch along with the lighting processor. If I connect directly to the switch everything works. connecting through the UAP it can't find the processor. Port 2 is internet (WAN) connection and port 0 is empty. Port 0 and 1 are bridged.

OK If I understand correctly, since the lighting processor and the UAP are already on the same switch, as I mentioned the traffic between the laptop (connected wirelessly through the UAP) and the lighting processor should not go through the ERL. In that case, it does look like the ERL is not involved and this may be an issue with the UAP. Maybe there is an option to enable multicast forwarding or something like that for the UAP?


I haven't seen anything in the controller software. I'm running 2.4.5 do you know if there is a setting I should be changing?

Tim

Regular Member
Posts: 341
Registered: ‎11-25-2012
Kudos: 85
Solutions: 11

Re: ERL + UniFi problems

What brand and model of switch? Managed or unmanaged? Could you post your ERL config in the "Insert Code" function of the forum and also the config screens from the UniFi controller?

There is no logical reason, assuming from your description that the ERL port links to the switch that all of these devices are connected to, that you should be able to connect to the Lutron Controller wired but not through the UniFI AP. Wondering if you have guest settings applied, a VLAN, UniFi on a different subnet, ...

New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@it_monkey wrote:
What brand and model of switch? Managed or unmanaged? Could you post your ERL config in the "Insert Code" function of the forum and also the config screens from the UniFi controller?

There is no logical reason, assuming from your description that the ERL port links to the switch that all of these devices are connected to, that you should be able to connect to the Lutron Controller wired but not through the UniFI AP. Wondering if you have guest settings applied, a VLAN, UniFi on a different subnet, ...


not sure how i would post the config as I just loaded the bridged soho file from this forum to get me going. definitely didn't turn on any guest settings or configure a VLAN on the UAP or ERL unless both these items come on by default. Where would I get the config for the ERL and Unifi Controller?

could this be a multicast issue as I have been reading in the forums that it is curently not supported as per this:

http://community.ubnt.com/t5/EdgeMAX/Multicast-routing/m-p/484349#M9869

and this:

http://community.ubnt.com/t5/EdgeMAX/Multicast-Sonos-DLNA-With-SOHO-Config/m-p/476639#M9518

Tim

New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@tkarps wrote:

@it_monkey wrote:
What brand and model of switch? Managed or unmanaged? Could you post your ERL config in the "Insert Code" function of the forum and also the config screens from the UniFi controller?

There is no logical reason, assuming from your description that the ERL port links to the switch that all of these devices are connected to, that you should be able to connect to the Lutron Controller wired but not through the UniFI AP. Wondering if you have guest settings applied, a VLAN, UniFi on a different subnet, ...


not sure how i would post the config as I just loaded the bridged soho file from this forum to get me going. definitely didn't turn on any guest settings or configure a VLAN on the UAP or ERL unless both these items come on by default. Where would I get the config for the ERL and Unifi Controller?

could this be a multicast issue as I have been reading in the forums that it is curently not supported as per this:

http://community.ubnt.com/t5/EdgeMAX/Multicast-routing/m-p/484349#M9869

and this:

http://community.ubnt.com/t5/EdgeMAX/Multicast-Sonos-DLNA-With-SOHO-Config/m-p/476639#M9518

Tim


Standard, non managed switch (netgear)

Tim

New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@it_monkey wrote:
What brand and model of switch? Managed or unmanaged? Could you post your ERL config in the "Insert Code" function of the forum and also the config screens from the UniFi controller?

There is no logical reason, assuming from your description that the ERL port links to the switch that all of these devices are connected to, that you should be able to connect to the Lutron Controller wired but not through the UniFI AP. Wondering if you have guest settings applied, a VLAN, UniFi on a different subnet, ...


 firewall {
     all-ping enable
     broadcast-ping disable
     conntrack-expect-table-size 4096
     conntrack-hash-size 4096
     conntrack-table-size 32768
     conntrack-tcp-loose enable
     group {
         network-group BOGONS {
             description "Invalid WAN networks"
             network 10.0.0.0/8
             network 100.64.0.0/10
             network 127.0.0.0/8
             network 169.254.0.0/16
             network 172.16.0.0/12
             network 192.0.0.0/24
             network 192.0.2.0/24
             network 192.168.0.0/16
             network 198.18.0.0/15
             network 198.51.100.0/24
             network 203.0.113.0/24
             network 224.0.0.0/3
         }
:
 firewall {
     all-ping enable
     broadcast-ping disable
     conntrack-expect-table-size 4096
     conntrack-hash-size 4096
     conntrack-table-size 32768
     conntrack-tcp-loose enable
     group {
         network-group BOGONS {
             description "Invalid WAN networks"
             network 10.0.0.0/8
             network 100.64.0.0/10
             network 127.0.0.0/8
             network 169.254.0.0/16
             network 172.16.0.0/12
             network 192.0.0.0/24
             network 192.0.2.0/24
             network 192.168.0.0/16
             network 198.18.0.0/15
             network 198.51.100.0/24
             network 203.0.113.0/24
             network 224.0.0.0/3
         }
     }
     ipv6-receive-redirects disable
     ipv6-src-route disable
     ip-src-route disable
     log-martians enable
     name LAN_IN {
         default-action accept
         description "Wired network to other networks."
     }
     name LAN_LOCAL {
         default-action accept
         description "Wired network to router."
     }
     name WAN_IN {
         default-action drop
         description "Internet to internal networks"
         enable-default-log
         rule 1 {
             action accept
             description "allow established/related"
             log disable
             state {
                 established enable
                 related enable
             }
         }
         rule 2 {
             action drop
             description "drop invalid"
             log enable
             state {
                 invalid enable
             }
         }
         rule 3 {
             action drop
             description "drop BOGON source"
             log enable
             protocol all
             source {
                 group {
                     network-group BOGONS
                 }
             }
         }
         rule 4 {
             action accept
             description QNAP
             destination {
                 address 192.168.1.10
                 port 8080
             }
             disable
             log enable
             protocol tcp_udp
             source {
             }
             state {
                 established enable
                 invalid disable
                 new enable
                 related enable
             }
         }
     }
     name WAN_LOCAL {
         default-action drop
         description "Internet to router"
         enable-default-log
         rule 1 {
             action accept
             description "allow established/related"
             log disable
             state {
                 established enable
                 related enable
             }
         }
         rule 2 {
             action drop
             description "drop invalid"
             log enable
             state {
                 invalid enable
             }
         }
         rule 3 {
             action drop
             description "drop BOGON source"
             log enable
             protocol all
             source {
                 group {
                     network-group BOGONS
                 }
             }
         }
         rule 4 {
             action accept
             description "rate limit ICMP 50/m"
             limit {
                 burst 1
                 rate 50/minute
             }
             log enable
             protocol icmp
         }
     }
     name WLAN_IN {
         default-action accept
         description "Wireless network to other networks"
     }
     name WLAN_LOCAL {
         default-action accept
         description "Wireless network to router."
     }
     receive-redirects disable
     send-redirects enable
     source-validation disable
     syn-cookies enable
 }
 interfaces {
     ethernet eth0 {
         address 192.168.1.1/24
         description LAN
         duplex auto
         firewall {
             in {
                 name LAN_IN
             }
             local {
                 name LAN_LOCAL
             }
         }
         speed auto
     }
     ethernet eth1 {
         address 192.168.2.1/24
         description "Wireless LAN"
         duplex auto
         firewall {
             in {
                 name WLAN_IN
             }
             local {
                 name WLAN_LOCAL
             }
         }
         speed auto
     }
     ethernet eth2 {
         address dhcp
         description WAN
         duplex auto
         firewall {
             in {
             }
             local {
                 name WAN_LOCAL
             }
         }
         speed auto
     }
     loopback lo {
     }
 }
 service {
     dhcp-server {
         disabled false
         shared-network-name wired-eth0 {
             authoritative enable
             description "Wired Network - Eth0"
             subnet 192.168.1.0/24 {
                 default-router 192.168.1.1
                 dns-server 192.168.1.1
                 lease 86400
                 ntp-server 192.168.1.1
                 start 192.168.1.10 {
                     stop 192.168.1.100
                 }
                 time-server 192.168.1.1
             }
         }
         shared-network-name wireless-eth1 {
             authoritative enable
             description "Wireless Network - Eth1"
             subnet 192.168.2.0/24 {
                 default-router 192.168.2.1
                 dns-server 192.168.2.1
                 lease 86400
                 ntp-server 192.168.2.1
                 start 192.168.2.10 {
                     stop 192.168.2.100
                 }
                 time-server 192.168.2.1
             }
         }
     }
     dns {
         forwarding {
             cache-size 150
             listen-on eth0
             listen-on eth1
             system
         }
     }
     gui {
         https-port 443
         listen-address 192.168.1.1
         listen-address 192.168.2.1
     }
     nat {
         rule 5010 {
             description "WAN MASQ"
             log disable
             outbound-interface eth2
             protocol all
             type masquerade
         }
     }
     ssh {
         listen-address 192.168.1.1
         listen-address 192.168.2.1
         port 22
         protocol-version v2
     }
     upnp {
         listen-on eth0 {
             outbound-interface eth2
         }
         listen-on eth1 {
             outbound-interface eth2
         }
     }
 }
 system {
     host-name ubnt
     ipv6 {
         disable
     }
     login {
         banner {
             post-login "Welcome to EdgeMAX"
             pre-login "\n\n\t UNAUTHORIZED USE OF THE SYSTEM\n\n\t IS PROHIBITED! \n\n "
         }
         user ubnt {
             authentication {
                 encrypted-password $6$R0tERhM5JPDg$w808vSeWV1JJICgvhFGt81Vfxx6HiM3ErQ7V1nkpx1V16sPBNM01taOj60AjyXdPx493hbWugpjS8I1V/XBPW.
                 plaintext-password ""
             }
             level admin
         }
     }
     name-server 8.8.8.8
     name-server 8.8.4.4
     ntp {
         server 0.ubnt.pool.ntp.org {
         }
         server 1.ubnt.pool.ntp.org {
         }
         server 2.ubnt.pool.ntp.org {
         }
         server 3.ubnt.pool.ntp.org {
         }
     }
     offload {
         ipsec enable
         ipv4 {
             forwarding enable
         }
         ipv6 {
             forwarding disable
         }
     }
     package {
         repository squeeze {
             components "main contrib non-free"
             distribution squeeze
             password ""
             url http://ftp.us.debian.org/debian/
             username ""
         }
         repository squeeze-updates {
             components "main contrib"
             distribution squeeze/updates
             password ""
             url http://security.debian.org/
             username ""
         }
     }
     syslog {
         global {
             facility all {
                 level notice
             }
             facility protocols {
                 level debug
             }
         }
     }
     time-zone UTC
 }

 

is this what you need?

Tim

Previous Employee
Posts: 13,551
Registered: ‎06-10-2011
Kudos: 5465
Solutions: 1656
Contributions: 2

Re: ERL + UniFi problems


@tkarps wrote:

could this be a multicast issue as I have been reading in the forums that it is curently not supported as per this:


Could you confirm again if the UAP and the lighting processor are connected to the same switch, and when the laptop is connected wirelessly to the UAP, does it obtain the right IP address and is otherwise working (e.g., Internet access)? If so, as mentioned the traffic between the laptop and the lighting processor should not go through the ERL so multicast routing etc. on the ERL should not be relevant for this particular setup.

New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@UBNT-ancheng wrote:

@tkarps wrote:

could this be a multicast issue as I have been reading in the forums that it is curently not supported as per this:


Could you confirm again if the UAP and the lighting processor are connected to the same switch, and when the laptop is connected wirelessly to the UAP, does it obtain the right IP address and is otherwise working (e.g., Internet access)? If so, as mentioned the traffic between the laptop and the lighting processor should not go through the ERL so multicast routing etc. on the ERL should not be relevant for this particular setup.


That is correct. All devices (laptop, UAP, lighting processor etc.) are on the same switch. When I connect to the UAP with laptop I get an address in the correct range 192.168.2.xxx and am able to surf the web and get my email etc.

I can't see any reason for this not to work but it is now 2 devices that are having issues that are not there with a simple linksys router setup or any carrier supplied router / switch combination. I have also tried connecting the UAP to a linksys router along with the lighting processor with the same result. Tried to bypass the switch to see if it was the problem. One additional note: the panasonic tv and the lighting processor are not on the same jobsite. 2 different UAP's and 2 different setups in terms of routing (ERL vs Carrier).

Tim

Previous Employee
Posts: 13,551
Registered: ‎06-10-2011
Kudos: 5465
Solutions: 1656
Contributions: 2

Re: ERL + UniFi problems


@tkarps wrote:

That is correct. All devices (laptop, UAP, lighting processor etc.) are on the same switch. When I connect to the UAP with laptop I get an address in the correct range 192.168.2.xxx and am able to surf the web and get my email etc.

I can't see any reason for this not to work but it is now 2 devices that are having issues that are not there with a simple linksys router setup or any carrier supplied router / switch combination. I have also tried connecting the UAP to a linksys router along with the lighting processor with the same result.


That would almost certainly point to some issue with the UAP since ERL is not in this setup. You might have better luck on the UniFi forum about this as people on EdgeMax forum might not all be familiar with UniFi settings, but of course I also see there are some people with a lot of UniFi experience here as well so maybe they could provide some help.

New Member
Posts: 35
Registered: ‎10-14-2012
Solutions: 2

Re: ERL + UniFi problems


@tkarps wrote:

@UBNT-ancheng wrote:

@tkarps wrote:

could this be a multicast issue as I have been reading in the forums that it is curently not supported as per this:


Could you confirm again if the UAP and the lighting processor are connected to the same switch, and when the laptop is connected wirelessly to the UAP, does it obtain the right IP address and is otherwise working (e.g., Internet access)? If so, as mentioned the traffic between the laptop and the lighting processor should not go through the ERL so multicast routing etc. on the ERL should not be relevant for this particular setup.


That is correct. All devices (laptop, UAP, lighting processor etc.) are on the same switch. When I connect to the UAP with laptop I get an address in the correct range 192.168.2.xxx and am able to surf the web and get my email etc.

I can't see any reason for this not to work but it is now 2 devices that are having issues that are not there with a simple linksys router setup or any carrier supplied router / switch combination. I have also tried connecting the UAP to a linksys router along with the lighting processor with the same result. Tried to bypass the switch to see if it was the problem. One additional note: the panasonic tv and the lighting processor are not on the same jobsite. 2 different UAP's and 2 different setups in terms of routing (ERL vs Carrier).

Tim


Just received a new pack of UAP-AP-LR's

Replaced UAP-AP-AC with UniFi-AP-LR and everything is running as it should. Does this mean I have a defective UAP-AP-AC or is there something different about the AC version that I need to know about?

Tim

New Member
Posts: 1
Registered: ‎09-19-2014

Re: ERL + UniFi problems

I know this thread is old, but I had the exact same problem and our solution was the same. The AP AC's are not deffective, they simply will not work with Lutron for some reason. In our system we tested by placing one AP AC on end of th house and an AP LR on the other.  When our laptop was attached to the AP AC we could not connect, when we walked to the other end of the house and the laptop attached to the AP LR it worked fine. We thought. Over time however even the AP LR began exhibiting some connectivity issues with Lutron. We are going to try the AP Pro.

Reply