A complete setup probably costs more than you’re comfortable spending on network infrastructure, but you’re worth it.<\/p>\n
Details<\/h2>\n
There’s a lot of information available generally about this company and their products available on the Internet. I won’t attempt to do a 15-25 page Ars Technica<\/a> style expose on the details. Instead, I’ll focus on the features that I’ve been using and the some highs and lows of the product experience.<\/p>\n I will say that I’ve needed to reboot the device\/software a few times over the past few months, but it’s been generally very stable. I’m not sure what caused the issue. So, make sure you don’t tuck this away so far you can’t unplug and restart it if necessary.<\/p>\n I live in a larger house and when we built it I had 4 ethernet jacks installed in nearly every room. Rather than try to determine which jacks had equipment installed, I’ve always had every jack wired for ethernet to a series of network switches. So, for the Ubiquiti equipment, I bought 3 Ubiquiti US-24<\/a> managed switches. These switches don’t support power over ethernet, so if you’re considering it, you’ll need to upgrade to the more expensive US-24 250W<\/a>.\u00a0 Not wanting to connect the switches with a boring Ethernet cable, I opted for several sets of the fiber connections, the\u00a0Ubiquiti Networks\u00a0UF-MM-1G<\/a>. Compared to the overall setup price, these and the corresponding fiber cable is inexpensive. By using the fiber connection, none of the ethernet ports were used as interconnects.<\/p>\n I took it as an opportunity to recable the patch panel connection terminals as well with what is now my favorite network cable, the Monoprice SlimRun Ethernet 6A patch cable<\/a>. As my new setup was about double the length from where I’d mounted two network switches in the past, new cables were necessary. I bought a few different colors to indicate types of connections …, but the result was so pleasing…, just a nice manageable bundle of cables. It felt almost organized vs. a cabling nightmare. These cables are more expensive and the boot is 50-100% longer than typical patch cables. So, be sure that you have room to accommodate them, especially if you’re using a patch panel. My patch panel with these cables isn’t a perfect fit, but I made it work.<\/p>\n I picked colors based on cable prices. There’s a variety of colors and it seems if you buy them on Amazon that they vary quite a lot in price depending on the color and length combination. Blue and a gray were the least expensive when I purchased. I bought some orange to indicate “interconnects” (between managed switches) and “red” to indicate a power over Ethernet style connection or other critical infrastructure.<\/p>\n I’ve explored quite a few networking switches, routers, firewalls, SOHO devices, custom firmware, including consumer, prosumer, and professional models over the years. There have been a lot of highs and lows. I used various open source routers for many years with a “Tomato<\/a>” based firmware replacement (on various pieces of hardware). While it was generally very stable and had a number of useful features, it wasn’t fun anymore (and new features useful to me weren’t being added). I wanted to try something new.<\/p>\n My first attempt was Google’s OnHub and later I added a more complete\u00a0Google’s Wifi<\/a>\u00a0setup. Admittedly, I bought in too early. The Google Wifi was missing a lot of features from the Tomato firmware (and other competitive products). But, over a period of 18 months, it reached a reasonable feature parity (and exceeded in several cases). Most of the functionality was easy to use. I liked the setup well enough that I bought one for my father’s house so I can help him when he’s having trouble. It’s been rock solid for 9+ months for him with no unplanned reboots needed. If you read reviews of Google Wifi, make sure the reviews are recent, as there was a lot of people that bought it too early, and then complained LOUDLY when they realized that it didn’t have the features they wanted (even though Google hadn’t mentioned them in marketing literature — there was just an expectation that it would have an identical or better feature set).<\/p>\n My biggest issue was that I have a number of Internet of Things devices that just wouldn’t work with the Google Wifi. Several of the devices in my house still require 2.4Ghz connections and couldn’t successfully negotiate with Google Wifi. So, I had to strategically place a few older 2.4Ghz routers around my house to provide service to the older devices. Honestly, it was workable, but sucked from a configuration and reliability perspective. I’m sure I didn’t have the frequencies adequately arranged and there were likely constant conflicts.<\/p>\n Ultimately, I decided that I wanted a setup that would allow me to have more control over my network without needing multiple Wifi access points around to service both new and old devices. I also really wanted a\u00a0web<\/strong> based portal for configuration. Google Wifi is only through an Android or iPhone app (there isn’t even an app that takes advantage of an iPad’s larger screen — it’s simply a scaled iPhone app).<\/p>\n In the prosumer price point, Ubiquiti hardware seems to lead the pack. They have lines for consumer as well, but I wanted the middle ground option.<\/p>\n Given that their solution is built to provide a software defined networking stack, I’ll walk you through a bit of the experience from my perspective.<\/p>\n Firstly, I mentioned I had some experience with a number of hardware and firmware options. The easiest to use overall was Google Wifi. The hardest is a race to the bottom, many of the options blur together in my memory to form a perfectly awful experience. Ubiquiti can never be as simple to use as Google Wifi — they just are not in the same markets nor are the features comparable. That being said, I’m remarkably competent using the Ubiquiti Cloud Controller software. Thankfully Ubiquiti has seriously good documentation for many real world scenarios that you might want to use. Some of the documentation is a bit out of date, but the core is generally still accurate and gets the job done.<\/p>\n For example, it took about 10 minutes to setup a robust L2TP\/IPSec VPN service so that I could connect from my devices back to my home network. It’s great as it’s supported on iOS and Windows 10 out of the box.<\/p>\n I’d never had a virtual LAN setup in a useful way in our house before. I’d tried, but it was always very limited and only functioned with a select group of Wifi connected devices. Now I can configure VLANs both for physical connections and for wifi connections. For example, in the photo above, there’s a red cable on the right side that connects to a PoE (externally powered) security camera (I use red to indicate it’s a special connection). I’d read enough scary things about cheaper IP based security cameras that I decided to sandbox it entirely. My security camera software can access it directly, but the camera can’t access other devices on the network.<\/p>\n There are actually two reasonable ways of putting in a VLAN. As a device, or via a specific port. As shown above, I’ve chosen to associate the device with the\u00a0Distrusted IOT<\/strong> VLAN explicitly. Otherwise, I could have selected a port and placed it in the desired profile (again, the Distrusted IOT profile as shown below). As with many things in the Ubiquiti Cloud Controller software, it’s only a few straightforward steps. Below, I’ve added a Network called Distrusted IOT\u00a0<\/strong>and assigned it the VLAN identifier of 100.<\/p>\n On the settings page for the new VLAN, I’ve specified the ID (100), I gave it a custom gateway\/subnet (for example, you could use 192.168.100.1\/24), provided a custom domain name, DHCP Server and a DHCP range. To prevent rogue DHCP servers, I’ve also enabled DHCP guarding. As I wanted to lock this one down, I’ve disabled UPnP LAN support. I’ve found that some devices need IGMP snooping to work correctly, so I did enable it. It’s up to you.<\/p>\n Then:<\/p>\n Now, the security camera is isolated on it’s own distrusted network, but my security camera software can still access it by IP address. Beautiful. I have the POWER! (Use your imagination to picture He-man right now!).<\/p>\n As a resident of rural Wisconsin, I find the insight functionality of “neighboring access points” far more fascinating than I probably should. Seriously<\/strong><\/em>. The nearest neighbor is 300 foot (100m) away and the nearest secondary road is about 1200 foot (365m). I presume some of these are phones and cars — but the fact that Ubiquiti catches these and logs these is tremendously interesting.<\/p>\n It’s thankfully easy to configure fixed IP addresses. Select Clients, click on the device you want to configure, select the Configuration tab, click “Use fixed IP address” and then type in the IP Address.<\/p>\n Upgrading a Ubiquiti device is stupidly simple.<\/p>\n When logging in, you’ll see a notice that one more more devices has firmware updates available. After navigating to the Devices tab, you’ll see the word UPGRADE next to any of the devices that has an upgrade available. Click upgrade and a confirmation shows (by default) and a second click later, the process begins. Minor updates take a few minutes at most.<\/p>\n Of course, there’s a little downtime when the device reboots, so plan accordingly. I applaud the developers for making this so painless. I don’t need to find a SUPPORT link and DOWNLOAD link on their web site, carefully match hardware revisions, find the correct update given the devices current patch level, download a binary gzipped file and use a crappy uploader to install the firmware. It’s one or two clicks.<\/p>\n The dashboard looks great. I don’t find it very useful though. It’s not “real time” enough to satisfy my needs. In particular, I’d like real-time throughput of download and upload. There are a LOT of folks that bought the hardware expecting the functionality. I however, had done sufficient research to know it didn’t exist. So, my expectations were set properly. Their forums mention it a lot, but it hasn’t gotten traction. Don’t hold your breath until it shows up.<\/p>\n Here are some things I’d like to see added:<\/p>\n Even though the product has a few warts and missing features, I’m generally very happy with the hardware and software. Like many things reviewed, not everyone’s experience has been like mine, but of course, many people with successful installations don’t bother talking about it. It’s the people with problems that are often loud. So, make sure you temper what you may read in forums with a healthy dose of reality. The product does work and can work very successfully if you properly manage expectations and use it in the manner in which it was designed.<\/p>\n As of the end of July 2018, I’d recommend their products.<\/p>\n If you’ve found this helpful and are ready to make a purchase, you may of course buy the hardware from various parties on Amazon. As few (if any) are authorized resellers, you may want to opt for one of the few authorized resellers: B&H Photo and Video<\/a>. As the links are affiliate links and don’t add anything to the cost\/price of the purchase, I’d certainly appreciate it if you used them.<\/p>\n Thanks for reading! I hope this was helpful. If you have any questions, ask away! :)<\/p>\n","protected":false},"excerpt":{"rendered":" TL;DR; The Ubiquiti Networks UniFi products are absolutely worth considering if you’re looking to upgrade your home or small office network to a reasonably affordable, manageable, configurable, and expandable setup. A complete setup probably costs more than you’re comfortable spending on network infrastructure, but you’re worth it. Details There’s a lot of information available generally […]<\/p>\n","protected":false},"author":2,"featured_media":2292,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false,"jetpack_publicize_feature_enabled":true},"categories":[5,6],"tags":[],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/Photo-Jul-23-7-23-26-PM.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pd5QIe-AK","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":2270,"url":"https:\/\/www.wiredprairie.us\/blog\/index.php\/archives\/2270","url_meta":{"origin":2278,"position":0},"title":"Ubiquiti UniFi WiFi and Haiku Big A** Fans Wall Controllers","date":"July 18, 2018","format":false,"excerpt":"If you've purchased either a UniFi access point or a Haiku\/Big A** Fan recently, you may encounter a problem with wall controllers failing to control the associated fan. While the setup nearly works, the final verification step for the wall controller always fails from the app. Further, and confusingly, if\u2026","rel":"","context":"In "General"","img":{"alt_text":"Edit Wifi Settings to Enable ICMP","src":"https:\/\/i0.wp.com\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/edit-wifi-1.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":1773,"url":"https:\/\/www.wiredprairie.us\/blog\/index.php\/archives\/1773","url_meta":{"origin":2278,"position":1},"title":"AV Club \/ Our home setup 2012","date":"December 12, 2012","format":false,"excerpt":"I\u2019ve done a lot of reworking of our computers and network recently and thought I\u2019d post some details about the various physical and digital parts that make our humble WiredPrairie home work. Using Google Docs, I created a labeled diagram with most of the moving parts of our house (WOW,\u2026","rel":"","context":"In "Recommendations"","img":{"alt_text":"Home Setup","src":"https:\/\/i0.wp.com\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2012\/12\/Home-Setup_thumb1.png?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":1340,"url":"https:\/\/www.wiredprairie.us\/blog\/index.php\/archives\/1340","url_meta":{"origin":2278,"position":2},"title":"Nest Thermostat Review, Update #1","date":"December 27, 2011","format":false,"excerpt":"After a few weeks of using the Nest thermostat, I\u2019ve got a few more comments that I\u2019d like to share. (Here\u2019s my post about the installation). The learning feature honestly hasn\u2019t been very useful in the first few weeks. It\u2019s apparently easily confused by days that you're home unexpectedly (for\u2026","rel":"","context":"In "General"","img":{"alt_text":"image","src":"https:\/\/i0.wp.com\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2011\/12\/image_thumb3.png?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":1329,"url":"https:\/\/www.wiredprairie.us\/blog\/index.php\/archives\/1329","url_meta":{"origin":2278,"position":3},"title":"My Nest Thermostat installation experience","date":"December 18, 2011","format":false,"excerpt":"After the amazing mad dash for the Nest thermostats when they were first made available for pre-order, I ordered three thermostats for our home from Best Buy (as Nest.com had sold out). We\u2019ve got a three zone heating system, and I wanted to replace all at once (as the system\u2026","rel":"","context":"In "Recommendations"","img":{"alt_text":"20111218-IMG_0096","src":"https:\/\/i0.wp.com\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2011\/12\/20111218-IMG_0096_thumb.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":1432,"url":"https:\/\/www.wiredprairie.us\/blog\/index.php\/archives\/1432","url_meta":{"origin":2278,"position":4},"title":"Nest Thermostat Review, Update #7","date":"January 7, 2012","format":false,"excerpt":"Update #6, Update #5, Update #4, Update #3, Update #2, Update #1, Install I received a replacement thermostat earlier this week as promised by Nest Labs. I had time this afternoon to do a swap and reinstall. Nest had asked me to swap the thermostats between two floors experimentally to\u2026","rel":"","context":"In "General"","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1963,"url":"https:\/\/www.wiredprairie.us\/blog\/index.php\/archives\/1963","url_meta":{"origin":2278,"position":5},"title":"Blue Iris 3 and Samsung SmartCam SNH-1011N","date":"October 9, 2013","format":false,"excerpt":"If you\u2019ve got a Samsung SmartCam SNH-1011N and you want to use it with Blue Iris 3, I found a reasonable currently undocumented way to make it work. The camera currently isn\u2019t officially supported by Blue Iris, but it can be made to work with a few simple steps. I\u2019ve\u2026","rel":"","context":"In "General"","img":{"alt_text":"image","src":"https:\/\/i0.wp.com\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2013\/10\/image_thumb1.png?resize=350%2C200","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/posts\/2278"}],"collection":[{"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/comments?post=2278"}],"version-history":[{"count":13,"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/posts\/2278\/revisions"}],"predecessor-version":[{"id":2320,"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/posts\/2278\/revisions\/2320"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/media\/2292"}],"wp:attachment":[{"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/media?parent=2278"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/categories?post=2278"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.wiredprairie.us\/blog\/index.php\/wpjson\/wp\/v2\/tags?post=2278"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Lesson 1<\/h3>\n
![\"Cloud](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/cloudkey.png\")
<\/a>I made the mistake of installing the controller software on a laptop first. I hadn’t understood that for maximal data logging and the best management experience, it’s best if it’s installed on a server or workstation that is available 24×7. I decided the ideal option is the Ubiquiti Cloud Key<\/a> was the most effective choice. Low power, no moving parts, plug and play. The cloud software uses a bunch of software like Java that you may not want to install on your server or shared workstation, so take my advice and include one in your budget for a robust Ubiquiti setup. There are instructions available for installation on a Raspberry Pi if you’re so inclined to go it on your own tiny hardware.<\/p>\nDevices<\/h3>\n
Patch Cables<\/h3>\n
![\"SlimRun\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/2018-07-22-20_08_19-Monoprice-SlimRun-Cat6-Ethernet-Patch-Cable-Snagless-RJ45-Stranded-550Mhz-U-184x300.png\")
<\/a><\/h2>\nSoftware Defined Networking<\/h3>\n
Their Software<\/h3>\n
\n
![\"\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/Photo-Jul-23-7-24-31-PM-e1532393842190-1024x506.jpg\")
<\/p>\n![\"Distrusted](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/DistrustedIot.png\")
<\/p>\n![\"Ports](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/Port-VLAN-option.png\")
<\/p>\nConfiguration of a Virtual LAN<\/h3>\n
![\"\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/VLAN-4.png\")
<\/p>\n
\n<\/a>![\"Configuration](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/VLAN-3.png\")
<\/a>Finally, I added a Firewall WAN Traffic rule (Settings > Routing & Firewall > Firewall > WAN OUT). Click [+ CREATE NEW RULE]<\/p>\n![\"Firewall](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/VLAN-2.png\")
<\/a><\/p>\n\n
\n
\n
\n
\n
![\"\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/2018-07-24-20_02_41-UniFi.png\")
<\/a><\/p>\nInsights<\/h3>\n
![\"Neighboring](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/2018-07-23-20_10_50-Window-1024x357.png\")
<\/p>\nStatic IP<\/h3>\n
![\"Static-ip\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/static-ip.png\")
<\/p>\nUpgrading<\/h3>\n
![\"\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/2018-07-24-07_38_43-Window-1024x264.png\")
<\/p>\n![\"\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/2018-07-24-07_39_21-Window-1024x357.png\")
<\/p>\nDashboard<\/h3>\n
![\"dashboard\"](\"https:\/\/www.wiredprairie.us\/blog\/wp-content\/uploads\/2018\/07\/u-dashboard.png\")
<\/a><\/p>\nMissing Features<\/h3>\n
\n
Final Thoughts<\/h3>\n
\n