The one time in my life I'm like "I'm going to use a purpose built device" boy do I regret that, I can't do the simple things I used to do

@@freman Simple things like what? I'm looking to grab Unifi stuff for my home but I don't want to go anywhere else because the UI is so nice and it looks like it looks so nice in a rack.

Well, good for you since the new 3.x firmware added the actual full Wireguard.

Yeah, they are finally doing things like a normal firewall.

@@LAWRENCESYSTEMSI try at the moment a UDM-Pro as Firewall... but hmm... The Domain Filter isn't working and so on. The concept with the In and Out is very strange and that you have all open as default is strange as well.

they may have issues with turn over and getting good engineers to program for them due to thier issues and scandals

Perhaps doing these videos complaining about the weird way they do things is working. 😆

I prefer pfsense ense firewalls

Same, super easy and don't have to mess around with their poor excuse of a VPN

oh that's possible? That's awesome, maybe I will start dabbing into VPNs then!

@@nster3 Easiest way to get started is probably using PiVPN. Works on most Linux installs and configuration is simpler than plain Wireguard.

@Timi Yep that's the smart way of doing it.

Similar. I have a NUC which runs Proxmox. Proxmox hosts Home Assistant, Pi-Hole, Unifi Controller, a Windows 10 VM and Shinobi security camera software either as VMs or containers. I also run Plex on my separate TrueNAS Core box. Home Assistant has a Wireguard add-on which is super simple to configure. I can VPN into any VM, container, or TrueNAS or Plex using Wireguard. Very easy to set up.

Go learn the OSI model would be a good start

@@Crazy--Clown already did that. Studying for my ccna right now

Awesome to hear about your aspirations! That's really cool, and yeah I'm in the same boat in the sense that I decided to go the "affordable" route and upgrade my home network and equipment to an all UniFi (Prosumer) setup as some of the other higher grade cloud options require licenses and are stupid expensive. However something to note, although something may advertise/market themselves as "Enterprise" doesn't always hold water. The company I work for and manage their networks is a 100% all Cisco Meraki network. And oh boy, do you pay the stupid price of enterprise grade equipment and licenses but my guy....Is it faaaarrrrr from actually being enterprise ready. There are so many quirks, bugs, limitations, etc. that prevent it from being a true enterprise ready product. With that said, it's still great, easy to set up, manage, etc. But yeah, always do your homework when looking for the next best thing to upgrade your home network or any network for that matter, sometimes you'll get burned by general marketing wank even from big name reputable brands such as Cisco.

i wonder how that would go with a USG i've heard it works with the same config tweaks as well

I agree that it should, but I’ve only tested the setup on UDM and UDM-Pros. I have a few USG and G2’s that I manage, but they are on systems with pfSense firewalls and do not perform any firewall functions.

@@plrpilot the only reason i'll consider the udm pro is for the g4 door bell pro but, if any SMALL poe onvif door bells come out it's game over. i don't like the vendor lock in too much but, it does integrate with unifi but normally i run dd-wrt or untangle. in another 10 years there might be a FOSS network device integration API or something. perhaps i should look at the back door setup. this setup uses starlink and needs either a cgnat tunneling service or phone vpn or wireguard

@@cdoublejj I’m not recommending any hardware. I’m just passing along my specific experience.

@@plrpilot oh for sure and thank you. I just like pissing and moaning. Lol

pfSence implements it's no much better, hopefully bare linux terminal do the trick.

Worked fine for me in Aus

It is dated, they have fixed many of the issues.

I just did a test with the AP25rw here at home..

@@JasonsLabVideos and?

@@stijnphilips It's nice. Video is on my channel.

Make sure you have the proper routing rules

Crosstalk did a video years ago using a raspberry pi works awesome to display cameras on TV or monitor.

@@nubaus I run 2 Pi's for this purpose but beware that the code is no longer being updated and only works on Pi3 with older Raspi. It's the support of the video player that changed. I saw on git that he may update it to VLC in the future.

You could

@@LAWRENCESYSTEMS I am in the middle of replacing a network and I did their VPN with OpenVPN but once I get the UniFi system up, I will have to figure something out, can DMZ to their old router and should work instantly as long as the new firewall rules allow it. Your videos have been very helpful.

Struck out on this, so strange, if I go into the old UI I can see a network for the VPN that’s not there I’m the new UI. Tried to forward VPN traffic to the old router but it wouldn’t allow me to forward to ports 500 or 4500, due to that hidden network I assume. I read a post saying if you create the radius user from the new UI, it causes a bug that can’t be fixed without a factory restore and total reconfiguring of the network! All at a business that can’t allow much ti be done while they are open, but the minute they get close they want to lock up and go home. Rock and a hard place.

Why is it so hard to understand why UniFi won't do that?

Well@@NoName-lq6vw you seem to be under the misunderstanding that UniFi are are charity looking to make your life easy for the sake of good feelings. They're not. They're a for profit enterprise and commercial hardware manufacturer whom set themselves apart by not charging for their dashboard. They're unconcerned about the consumer market because that's not where the money is made. A consumer buys a few thousand dollars worth of equipment, an enthusiast consumer maybe even ten or more thousand worth of equipment. But a health department, hotel chain, sports stadium or enterprise customer is dropping a million, 5 million, 10 million on hardware and Ubiquity need to incentivise those customers to spend as much of that on UniFi hardware as possible. Those kinds of customers aren't trying to block ads on TVs because any TVs those customers have run through closed loop networks where they have end to end control, or direct agreements with a third party whom do. Ubiquity have listened to enterprise customers and their needs. That's what's being built out. If you want open source get an open source gateway solution. Build a pfsense box or buy one off the shelf. Whilst UniFi can be deployed in your home, soho or ultra small business, that isn't it's intended use case. Those aren't the target customers. So you shouldn't be upset when they aren't focusing on the needs of those users. There are plenty of excellent consumer and soho focused appliances on the market that are better suited for those customers and their needs.