This has already been suggested for the EdgeMAX series in,
but it is just as important for the UniFi series of products. The Linux 3.10 kernel has reached end of support in November 2017 and will not receive security fixes from upstream. Especially with network equipment security is vital, hence UniFi products must be upgraded to use a supported kernel.
Please update firmware for existing Unifi switches to make them layer 3 switches. This functionality was originally advertised on the product page for the switches for quite some time last year and quietly all mention of layer 3 routing was removed.
It would be nice if we had the ability to control the speed of the fan, that can be overide automatically if it does get too hot. Let say, you can keep it on at a low speed so that it doesn't have to turn on and off, and automatically switch to a higher speed if it does get too hot. That will greatly improve my sex life, as my wife will stop asking "why the hell is that thing turning on and off?".
The LAN1 and LAN2 should have STP to you could connect LAN1 port to switch A and LAN2 port to switch B. That way if switch A goes down, the LAN2 port would come online and still provide DHCP service to the network via LAN2.
For example, a software setting that when checked, the reset button globally resets the following hardware. And you can further check what hardware to reset.
It would be nice if the traffic generated by the periodic speed test (which seems to be quite frequent) doesn't get included in the maximum throughput on the upload/download graphs on the dashboard.
As it is now, the maximum throughput data is relatively useless - I'd rather see the maximum throughput obtained from clients, not the router itself. (perhaps another metric is needed ?)
At this stage in the networks settings you can define a network for
- VLAN Only
- Remote User VPN
- Site-to-Site VPN
- VPN Client
I would be great to have added another network type specific to IPTV and tailored for multicast traffic
With automated firewall set-up from the network config ( like voip )
Possibility to set DHCP options like ; vendor-class-identifier code 60 and option broadcast-address code 28
As it said, an optional file which you can place on the USG (before placing it somewhere remote).
That even IF you reset the USG to default, it always uses it if it is present.
In the file just the inform URL, to which it should inform.
This would also fix the errors like:
Apr 6 05:18:48 18.104.22.168 syslog: ace_reporter.reporter_fail(): Unable to resolve (http://unifi:8080/inform) Apr 6 05:18:48 22.214.171.124 syslog: ace_reporter.reporter_fail(): initial contact failed #8, url=http://unifi:8080/inform, rc=1 Apr 6 05:18:48 126.96.36.199 syslog: ace_reporter.reporter_next_inform_url(): next inform url=http://unifi:8080/inform
Instead of the http://unifi:8080 it would then automaticly use the inform url in the file.
So that when the unit is resetted or rebooted it will always send the first inform to the controller specified.
Now we have to use teamviewer for instance to get on an computer at the remote location to set the inform url again.
A lot of tools out there allow for automation of treatment for endpoints on the network. This can range from moving an endpoint to a remediation VLAN to killing access all together depending on the health/state of said endpoint.
Currently the API is not officially supported. Its geared mostly towards the unifi wireless. It does not provide much control of the Switching and USG portions of unifi. Previously the last.inform was a goldmine in gatherthing data, however since 5.4.9 it no longer exists...
For control of devices we do have dynamic VLAN assignments via 802.1x, but this functionality is biast towards the wireless gear, as it is near useless on the switches. You cannot create a VLAN on the switch in which its ID will be used by dynamic VLAN. Which means it is impossible to get a routeable interface from the USG to the switch as the switch's uplink cannot tag said VLAN... Additionally dynamic VLAN assignments via 802.1x is lacking by the fact Change of Autorization is not supported by both the AP's and Switches Ubiquiti produces.
Allow the API to be queried for DPI data/VLAN assignments/etc by MAC and/or IP address.
Allow the API to be queried for all data previously found in the inform.last i.e. USG external IP address.
Allow the API to reassign a switch port to a new VLAN when fed a MAC address or switch/port.
Manipulate USG firewall policies through the API.
I can't be the only person who finds it difficult to find the corresponding LED status light. Placing the LED's in a single file line on the side of the ports which are placed in pairs is really confusing.
Either place the LED's in 2 lines off to the side to more closely resemble the port layout, or
place the LED's in the ports themselves, like they are are on the SFP+ ports on the US-48-500w.
I really like the form factor of the new US-8 and US-8-60. I have replaced my desk switch with the US-8-60 model, but wish it had rear ports like my previous switch. I can understand that rear port switches don't offer too much value when rackmounted with patch panels, but for a desk rear ports are absolutely wonderful.
Hi no idea if this is possible but I have a 24 port unifi switch which is much louder than I expected. Would be great if there was some way to reduce the fan speed manually/ reduce noise in a non-commercial setting? I've seen others commenting on this but didn't spot a specific idea request - so here it is. Tks
Internal servers are more likely to be exposed to the Internet and more likely to be infected by malware. For example, if a bot cannot reach its C&C then it cannot be activated.
Would like to be able to set a persistent value for the Unifi Controller Inform URL.
Right now there is an option under Controller Settings "Override inform host with Controller Hostname/IP". This will set the inform URL for all adopted devices, which is very helpful. I would like another option that allows this to be a persistent value saved to the local device. After a reset (factory defaults), it would still call home to the controller it was connected to prior. Everything else would be the factory defaults.
Should a device need to be reset, there are plenty of reasons, it would try to make contact with your controller again. This would make it much easier to remotely troubleshoot and reconfigure devices.
I know you can make an AP or Switch call home to your controller after a reset using DNS and defining an IP for the hostname "unifi". However, there is no way to accomplish this for a Gateway, which is the most critical device in my opinion.
I would like to suggest adding 802.11ac capability to the UniFi Security Gateway unit. I think that would make it the perfect road warrior device, easily replacing the Apple Airport Express. What are your thoughts?
A switch with all optical interfaces that could connect to products like:
With LC connections, density could be pretty high.
As well as the wall-mount fiber-to-copper device. Ideally this device would be able to use the Active Ethernet (Standard Ethernet) standards as well as the GPON (and NG-PON2) standards.
If you can provide a simpler DPI customization option for appids that work by identifying uris or part of uris (using regular expressions?), that would probably cover 90% of user needs.
I'd like to use that to direct traffic (in my case to different VPNs), but I'm currently limited to IPs, Ports or [built-in] AppIs.
- andyc on: New client event class for notifications - New client connected
- greatwhitehat on: Full Switch Port Mirroring
- dumiller on: NBase-T switches
- bcsanford on: Looking for help
- adhocadhoc on: UDP Relay for the USG
- UBNT-cmb on: DNS services
- UBNT-cmb on: MCLA support
- UBNT-cmb on: Allow further firewall rule processing after a match
- zviratko on: Enable arp_filter/rp_filter etc.
- ml1950 on: RADIUS Users alias or note field
- New client event class for notifications - New client connected
- Full Switch Port Mirroring
- Speed limits for VLANs
- Trojan Alerts options
- Bandwidth setting per WAN port (Provider Capabilities)
- Thermal Notification Request for Switches
- NBase-T switches
- USG - WAN watchguard
- Static IP assignment for the Switches and per port RSTP enable/disable
- [USG] choice to select Routing mode or NAT mode