User Panel
Posted: 2/11/2020 2:03:13 PM EDT
Any one snag one?
Majority of my network is UBNT but I use PFsense for my router/IDS and such. As much as I love PFsense thinking about picking one of these up and going full UBNT. I'm kinda liking the idea of having everything running under one GUI and simplifying my home network. Hardware running my PFsense is older but not really old. It's been 100% reliable. But it's old enough (6 or so years old) that I am starting to worry about it failing. I don't run any crazy firewall rules. Mainly just different VLANS with restrictions on what can talk to my main LAN. Thoughts? |
|
I've been through a handful of UBT APs from hardware defects. Killed the controller over corrupted mongoDB. Even with garbage supermicro hardware, my pfsense box has been more reliable. But I do utilize a bunch of the more less common features that I doubt I could get from a black box. Ymmv.
|
|
UniFi Dream Machine Pro (UDM-Pro) |
|
View Quote |
|
I see it as more of a question of the interface. Can you easily get it to do what you want in Unifi?
|
|
Quoted:
I see it as more of a question of the interface. Can you easily get it to do what you want in Unifi? View Quote |
|
Quoted:
I've never played with one of their router/firewall appliances. With what I've seen using their APs and switches and the video linked above it would be. I really just need to do more research. View Quote |
|
If Suricata with the free ruleset is sufficient, it will be fine.
|
|
I just setup my UDM Pro at home, to replace a EdgeRouter Lite and a Pi running the Unifi Controller. Getting used to the Unifi interface over the separate ERL one.
I'll tell you two limitations that some other nerds are going on about: It doesn't (currently?) support IGMP Proxying, so if you want to control a Sonos it will need to be on the same vlan as what you control it with. It doesn't (currently?) support the advanced json networking config that some other Ubiquiti hardware does. |
|
|
|
First Look: Ubiquiti Unifi Dream Machine Pro (UDM-Pro) Seems like it should still be in beta. I wouldn’t upgrade just yet. Plus the lack of redundancy for the hard drive aspec bugs me. Although most would run a dedicated nvr or a nas |
|
Quoted:
https://www.AR15.Com/media/mediaFiles/77095/28a88df_jpg-1273526.JPG Gotta ensure adequate ventilation for them. (Not my picture) View Quote |
|
you already answered your own question when you said this
"It's been 100% reliable" |
|
|
Check out Untangle
|
|
Quoted:
I've been through a handful of UBT APs from hardware defects. Killed the controller over corrupted mongoDB. Even with garbage supermicro hardware, my pfsense box has been more reliable. But I do utilize a bunch of the more less common features that I doubt I could get from a black box. Ymmv. View Quote |
|
Firewall Feature Comparison 2020: pfsense, Untangle, USG, Dream Machine, UDM Pro, & EdgeRouter chart |
|
The killer for me on this is the fact it does not have POE on the 8 port switch. I wanted to consolidate another large switch and cannot due to this factor. However, I know this one kills my USG-4-Pro in terms of CPU utilization and capability with security features enabled and I do tend to use all available security measures. That means I will end up buying one anyway...sigh.
|
|
op i wish you had posted this a few weeks ago. thats when i bought my pfsense/netgate sg-1100 - having something with a wireless controller and an extra port would have been really nice. oh well, this netgate works flawlessly. though understanding how to tell it to tag certain vlans on certain ports, etc is not at all intuitive (downright retarded actually, how the count some things starting at zero, others at 1, and yet others from high to low. WTF???) I was able to work through it to get it figured out.
plus, you can get a captive portal in pfsense as well, so i guess i got the right thing. |
|
I've had a USG Pro for about 3 years or so. Overall love it, the software has really evolved and for a Prosumer/SOHO user, its great. But I've never really paid a lot of attention to the IDS/IPS once I read about the impact on the firewall throughput. I have a 500 down/100 up fiber to the house ISP and don't want to impact the speed without a clear understanding of what I'm getting in return. Anyone using it and do you find it valuable?
|
|
Quoted:
I've had a USG Pro for about 3 years or so. Overall love it, the software has really evolved and for a Prosumer/SOHO user, its great. But I've never really paid a lot of attention to the IDS/IPS once I read about the impact on the firewall throughput. I have a 500 down/100 up fiber to the house ISP and don't want to impact the speed without a clear understanding of what I'm getting in return. Anyone using it and do you find it valuable? View Quote |
|
Quoted:
I use the IDS/IPS and until a week ago it was hardly running, never giving me feedback on threats so I have no idea if it was stopping anything. Now it has gone crazy without me applying any updates whatsoever and I see the threat by Geo location and the log is chock full of information. Thoughput isnt a problem at all and I am on a 1Gb/1Gb connection. Of course my DL/UP rate increases a bit when IPS is off, I hardly use enough of the bandwidth for it to matter even with Flightsim 2020 streaming content and everything else going on in my network domain. View Quote View All Quotes View All Quotes Quoted:
Quoted:
I've had a USG Pro for about 3 years or so. Overall love it, the software has really evolved and for a Prosumer/SOHO user, its great. But I've never really paid a lot of attention to the IDS/IPS once I read about the impact on the firewall throughput. I have a 500 down/100 up fiber to the house ISP and don't want to impact the speed without a clear understanding of what I'm getting in return. Anyone using it and do you find it valuable? |
|
I bit the bullet this week and installed a UDM Pro with the 8TB drive (three cameras). it was a pain in the ass but now everything is happy and working flawlessly with IDS turned on. CPU usage on the UDM Pro is around 10% peak.
this is way overkill for my needs, and sure would have been nice if they gave you a few POE ports on the built in switch, but I guess that's why it was only $379. Would be awesome if I had a provider to choose from with 10GB so I could use the SFP+ Wan port, but none around here at present. |
|
I would have liked at least a couple POE ports too but figured any more power draw and it would need far more fans or much more aggressive cooling. I don't notice it over the whirr from my PC's fans.
|
|
Quoted:
I would have liked at least a couple POE ports too but figured any more power draw and it would need far more fans or much more aggressive cooling. I don't notice it over the whirr from my PC's fans. View Quote ETA: I also had to manually enter DNS to get it to connect to the internet before it would upgrade |
|
Quoted:
I would have liked at least a couple POE ports too but figured any more power draw and it would need far more fans or much more aggressive cooling. I don't notice it over the whirr from my PC's fans. View Quote I've been completely happy with pfsense. The idea of having my whole network under one management console really intrigues me. My PC running pfsense is prolly from 2012 or so. It runs without issue. I could just drop in a new hard drive and keep rocking. But part of me feels it's getting to time to replace hardware before a major failure and I have no interwebs. I guess this is just the IT guy in me. I'm going to give it some time to see how people do with the UDM Pro in production type environments. All my UBNT equipment has been solid! Love the stuff. I run a cloud key controller but I run it on a VM. Can't wait to get it installed in the house we just bought. |
|
Quoted:
That would be nice but I'm not worried about it. I've been completely happy with pfsense. The idea of having my whole network under one management console really intrigues me. My PC running pfsense is prolly from 2012 or so. It runs without issue. I could just drop in a new hard drive and keep rocking. But part of me feels it's getting to time to replace hardware before a major failure and I have no interwebs. I guess this is just the IT guy in me. I'm going to give it some time to see how people do with the UDM Pro in production type environments. All my UBNT equipment has been solid! Love the stuff. I run a cloud key controller but I run it on a VM. Can't wait to get it installed in the house we just bought. View Quote |
|
Quoted:
That would be nice but I'm not worried about it. I've been completely happy with pfsense. The idea of having my whole network under one management console really intrigues me. My PC running pfsense is prolly from 2012 or so. It runs without issue. I could just drop in a new hard drive and keep rocking. But part of me feels it's getting to time to replace hardware before a major failure and I have no interwebs. I guess this is just the IT guy in me. I'm going to give it some time to see how people do with the UDM Pro in production type environments. All my UBNT equipment has been solid! Love the stuff. I run a cloud key controller but I run it on a VM. Can't wait to get it installed in the house we just bought. View Quote View All Quotes View All Quotes Quoted:
Quoted:
I would have liked at least a couple POE ports too but figured any more power draw and it would need far more fans or much more aggressive cooling. I don't notice it over the whirr from my PC's fans. I've been completely happy with pfsense. The idea of having my whole network under one management console really intrigues me. My PC running pfsense is prolly from 2012 or so. It runs without issue. I could just drop in a new hard drive and keep rocking. But part of me feels it's getting to time to replace hardware before a major failure and I have no interwebs. I guess this is just the IT guy in me. I'm going to give it some time to see how people do with the UDM Pro in production type environments. All my UBNT equipment has been solid! Love the stuff. I run a cloud key controller but I run it on a VM. Can't wait to get it installed in the house we just bought. With my work hat on I completely get not wanting to fix what isn't broken, but the tinkering side of me says NEW GADGETS AND TOYS. |
|
Quoted:
did you have to factory reset yours out of the box too? Mine wouldn't boot and apparently I'm not alone. ETA: I also had to manually enter DNS to get it to connect to the internet before it would upgrade View Quote View All Quotes View All Quotes Quoted:
Quoted:
I would have liked at least a couple POE ports too but figured any more power draw and it would need far more fans or much more aggressive cooling. I don't notice it over the whirr from my PC's fans. ETA: I also had to manually enter DNS to get it to connect to the internet before it would upgrade |
|
Quoted:
That would be nice but I'm not worried about it. I've been completely happy with pfsense. The idea of having my whole network under one management console really intrigues me. My PC running pfsense is prolly from 2012 or so. It runs without issue. I could just drop in a new hard drive and keep rocking. But part of me feels it's getting to time to replace hardware before a major failure and I have no interwebs. I guess this is just the IT guy in me. I'm going to give it some time to see how people do with the UDM Pro in production type environments. All my UBNT equipment has been solid! Love the stuff. I run a cloud key controller but I run it on a VM. Can't wait to get it installed in the house we just bought. View Quote |
|
Quoted:
Thanks, I might turn it on and see what happens. Any tips and/or settings to try or not? View Quote |
|
Quoted:
I've got quite a few Unfi networks I support at this point. Including one I built at home. The only thing I've had problems with is the Cloud Keys. They have been an ongoing issue w/ corruption of the SD cards and crashing. I love the hardware, but the controller is annoying. All of the Cloud Keys I deal w/ are Gen 1 and range from early to recent production. View Quote View All Quotes View All Quotes Quoted:
Quoted:
I've been through a handful of UBT APs from hardware defects. Killed the controller over corrupted mongoDB. Even with garbage supermicro hardware, my pfsense box has been more reliable. But I do utilize a bunch of the more less common features that I doubt I could get from a black box. Ymmv. |
|
Quoted:
That would be nice but I'm not worried about it. I've been completely happy with pfsense. The idea of having my whole network under one management console really intrigues me. My PC running pfsense is prolly from 2012 or so. It runs without issue. I could just drop in a new hard drive and keep rocking. But part of me feels it's getting to time to replace hardware before a major failure and I have no interwebs. I guess this is just the IT guy in me. I'm going to give it some time to see how people do with the UDM Pro in production type environments. All my UBNT equipment has been solid! Love the stuff. I run a cloud key controller but I run it on a VM. Can't wait to get it installed in the house we just bought. View Quote |
|
Quoted:
Yearly bonus is likely going to another 1U supermicro to run HA pfsense with floating vip. Just embrace the geek. I tried to do the backup HA pfsense as a VM on my desktop with dedicated NICs. Not sure if my network or brain hated that attempt more. View Quote Anyway, I've been looking at some embedded stuff to run site routers in a new site topology I came up with for WISPs and I keep coming back to using ESXi with only one VM on it (though I don't know why). |
|
Quoted:
Check out Untangle View Quote |
|
On a side note I added up the cost of my router, core 10Gb switch, main POE switch, and secondary POE switch at home and it came out to over $5K with optics include at MAP
Happily I *only* have $3K in the hardware. I need to stop as I have 3 networking cabinets between the house and the shop as well as a server rack with 200TB of storage. |
|
Quoted:
On a side note I added up the cost of my router, core 10Gb switch, main POE switch, and secondary POE switch at home and it came out to over $5K with optics include at MAP Happily I *only* have $3K in the hardware. I need to stop as I have 3 networking cabinets between the house and the shop as well as a server rack with 200TB of storage. View Quote |
|
Quoted:
Quoted:
On a side note I added up the cost of my router, core 10Gb switch, main POE switch, and secondary POE switch at home and it came out to over $5K with optics include at MAP Happily I *only* have $3K in the hardware. I need to stop as I have 3 networking cabinets between the house and the shop as well as a server rack with 200TB of storage. |
|
Sign up for the ARFCOM weekly newsletter and be entered to win a free ARFCOM membership. One new winner* is announced every week!
You will receive an email every Friday morning featuring the latest chatter from the hottest topics, breaking news surrounding legislation, as well as exclusive deals only available to ARFCOM email subscribers.
AR15.COM is the world's largest firearm community and is a gathering place for firearm enthusiasts of all types.
From hunters and military members, to competition shooters and general firearm enthusiasts, we welcome anyone who values and respects the way of the firearm.
Subscribe to our monthly Newsletter to receive firearm news, product discounts from your favorite Industry Partners, and more.
Copyright © 1996-2024 AR15.COM LLC. All Rights Reserved.
Any use of this content without express written consent is prohibited.
AR15.Com reserves the right to overwrite or replace any affiliate, commercial, or monetizable links, posted by users, with our own.