Configuring VLANs, Firewall Rules, and WiFi Networks - UniFi Network Application
Рет қаралды 199,418
Күн бұрынIn this video, we will explore the capabilities of the UniFi Network Application for setting up VLANs and enhancing network security. With the UniFi Network Application , you can easily create and manage VLANs to segment your network and improve performance, as well as implement security policies to protect your network from unauthorized access. Whether you're a small business owner, a home user with IoT devices, or running a small HomeLab, this video will provide you with valuable insights on how to utilize the UniFi Network Controller to optimize your network performance and security using VLANs.
Video Notes: technotim.live/posts/vlan-fir...
📦 Products in this video 📦
Ubiquiti UniFi 6 Lite Access Point - l.technotim.live/ubiquiti
UniFi UDM SE - l.technotim.live/ubiquiti
UniFi UDM Pro - l.technotim.live/ubiquiti
Support me on Patreon: / technotim
Sponsor me on GitHub: github.com/sponsors/timothyst...
Subscribe on Twitch: / technotim
Become a KZfaq member: / @technotim
Merch Shop 🛍️: l.technotim.live/shop
Gear Recommendations: l.technotim.live/gear
Get Help in Our Discord Community: l.technotim.live/discord
2nd channel: / @technotimtalks
(Affiliate links may be included in this description. I may receive a small commission at no cost to you.)
#vlan #network #unifi
00:00 - What is a VLAN and How Do They Help?
01:48 - How to Create a VLAN with UniFi
07:33 - Creating Wireless Network for a VLAN
09:41 - Assigning a VLAN to a Switch Port
11:07 - Testing Default Firewall and Security Rules for a VLAN
13:29 - Inter VLAN Communication
14:35 - Configuring Firewall Rules Using Profiles
23:38 - Testing Our Firewall Rules
24:43 - Configuring Trusted Networks & Inter VLAN Communication
26:20 - Firewall Rule Order / Block & Allow
29:59 - Stream Highlight - "So many people have asked for this video"
Thank you for watching!
@TechnoTim Жыл бұрын
A couple of mistakes: - I misused "VLAN Hopping" - I meant "inter VLAN Communication" - "local" in UniFi speak means "traffic that is destined for the UDM/USG itself." - "All" in UniFi speak is a Trunk that includes all VLANs (which are tagged) This is why I love this community! Lots of networking experts so keep the knowledge coming! Thank you all for the help!
@bcookbsdwebsol Жыл бұрын
It is called routing.
@MorphicStates Жыл бұрын
Yeah, I was going to call this one out, but "inter VLAN Communication" = Routing Trunks don't always include all VLAN traffic. Only vlans assigned to that trunk. But basically you either have trunk or access.
@VicFryzel 8 ай бұрын
Hi, I came across your video and appreciated you walking through this. Shortly after your video, Unifi released Traffic Rules. Would you please consider updating your video's description to mention those? The reason I ask is that folks should know that using those eliminates much of the burden you mentioned of maintaining IP groups, making securing your VLANs faster to do, if not simpler overall. Just a thought, thanks!
@Sauron_Says 7 ай бұрын
@TechnoTim You might wann pin your comment as its fallen down the comment list
@BenCos2018 6 ай бұрын
your pin got lost when you edited it @TechnoTim
@JavierPerez-fq2fi Жыл бұрын
Great full explanation Tim! This is becoming more critical specially since working remotely from home and the increase amount of IOT devices at home. However, I still believe it is not as easy as plug and play yet so reserved to bit more advanced users than my parents for instance. Thanks spreading knowledge around this hot topic ;)
@mountainsinmymind Жыл бұрын
Literally was working on some VLAN stuff last night, great timing to make sure I have everything buttoned up properly. Thanks!
@LAWRENCESYSTEMS Жыл бұрын
At 10:44 yes I am watching and yes you got it right! :)
@TechnoTim Жыл бұрын
Thank you Tom! 😅
@ryan.stutzman 4 ай бұрын
Well he's mostly right. Ha. A trunk port does include traffic from multiple VLANs (or in this case all of them), but they're NOT untagged. They do in fact have their VLAN tags. This is how you can connect multiple switches together with both switches being able to communicate on all the VLANs.
@johnjbateman Жыл бұрын
Thanks for this! I made it through the VLAN’s myself and got intimidated by the FW rules. Now I can follow what you have and finish the job!
@richardsieminski5447 Жыл бұрын
I am fairly new to home networking/Linux and I found this episode to be the ONLY explanation I have understood of VLANs. Thank You. lol
@harryburton959 Жыл бұрын
Hi Tim. Excellent explanation. You may not be an IT guy but your explanations are superb. Keep up the good work and thanks for helping to make difficult tech easier to undersstand.
@uniXlyTV 4 ай бұрын
This video is fantastic. I have a controller and AP's and have been thinking about using a gateway but putting it off for ages. This covers pretty much all the questions I had.
@Photoshopuzr Жыл бұрын
I have been having massive issues with my udm idk what the hell was going on but i decided to create some vlans to get some more control on whatever is going on. Changed all ports and added rules. Now things are working like they should. Big thanks for taking the time to go through how to set things up. much appreciated. for days my network was sometimes working off and on. This was a huge help. thanks.
@cvought1 Жыл бұрын
I just got my UDM PRO SE and Tim as usual has perfect timing for the content I need! Wow thanks Tim!
@Vaedan 9 ай бұрын
Loved this video so much. Great quality and very specific to my needs luckily. I would have loved to know a little more about what other rules you made and for what reason so i knew what i had to look out for when i start setting up my own network next year. I hope to see more great content in the future. I wish you the best!
@jairuschristensen2888 4 ай бұрын
Worth mentioning this is now much, much simpler with Traffic Rules. It can be done in a single rule. Action: Block Category: Local Network Local Network: IOT-Better Traffic Direction: Traffic from all local networks Device/Network: All Devices Schedule: Always Name: Block IOT-Better to All
@fernandotfmx2805 3 ай бұрын
You're the hero we don't deserve...
@scottcook6912 Жыл бұрын
In the IT space here on KZfaq, I think Tim is the best teacher. Dude's got skills.
@TechnoTim Жыл бұрын
Thank you!
@xaviervillalobos3958 7 ай бұрын
This is awesome....period! I had no idea how to set my Unfi gear up. This video walked me thru step by step. I learned so much along the way. Again, this was top notch! Thank you man. :)
@dragonrider6875 Жыл бұрын
THANK YOU for helping me get this setup! I needed it for PCI compliance. Thank you again!!!!
@faikwo Жыл бұрын
This is exactly the video I have been after. Such a great explanation. Thanks a lot Tim!
@Ralin Жыл бұрын
I just bought the UDM SE and this video was the best I found to explain how to make an IoT network. Thank you!
@TechnoTim Жыл бұрын
Thank you!
@AlbusRegis Жыл бұрын
In a nutshell, trunk ports expose all traffic from the VLANs by appending the VLAN id to the ethernet frame. This enables devices capable of reading this tag to manage the VLANs as well, making possible things like using the same VLAN across multiple switches or exposing the VLANs to a hypervisor for it to manage them internally.
@rethinking3289 Жыл бұрын
There is something I don't understand about the trunk port. As you said the trunk port got all the vlans. So if i have port 1 as trunk and connect it to my router with one cable. And the router and switch got vlans 20,30,40. When i make a firewall rule to route between vlan 20 and 30. The traffic has to go through the router right!? My question is that one cable is my bottleneck for bandwidth right? So if i want to increase my bandwidth i have to create LAGG between the switch and the router? I got confused about this because Dlink switches call LAG trunk ports.
@Techintx Жыл бұрын
@@rethinking3289 yes that’s right: by default inter-VLAN traffic will have to go from your device, through a switch (if you’re using one) up to the router and then back down through the switch and to the other device. If you have a L3 switch, then there’s the potential to bypass the router, and have the switch route the inter-VLAN traffic, but then you’re also bypassing any firewall rules in the router, at least when using a unifi router and switch. Given this, I’m still struggling to understand how a unifi L3 switch is useful, unless you want all inter-VLAN traffic to be wide open.
@rethinking3289 Жыл бұрын
@@Techintx yeah, to me in most cases you create vlans to isolate your network and only allow specific traffic with firewall rules as needed.
@aaidenmel87 11 ай бұрын
Thank you Tim! I am a 17 year old network admin in training, and I finally understand all of this! 😅
@Bill_the_Red_Lichtie Жыл бұрын
Really nice video, very informative. I use pfSense but the concepts are the same. An untagged port passes all the "tagged" traffic that you allow. So you can set the port to allow IoT and IOT Better through but block the other VLAN tags. The other aspect of a "tagged" port, this that the device behind that port doesn't know about VLANs and the switch automatically tags traffic from the port with the VLAN id.
@kriswachtell Жыл бұрын
Thanks Tim! You do a wonderful job. Do you still have your virtualized pfSense router when you use the UniFi Dream Machine? or do you run both?
@NickMach007 Жыл бұрын
Thanks. Very helpful. Definitely getting my head around all of this more and more. Appreciate your making this video. Cheers!
@nadavraz4334 Жыл бұрын
Thank you for the hard work, you make it look really easy 🙏🏽
@MarkJay Жыл бұрын
thanks Tim!, this was super helpful. I set my VLANs up a long time ago and this was a great refresher.
@CliffVachon 5 ай бұрын
This was great and easy to follow! Thank you!
@darrenyorston 5 ай бұрын
Great video as usual Tim!
@boomerrange689 Жыл бұрын
I am a CCNA and you did a great job.
@MactelecomNetworks Жыл бұрын
Great video Tim! Easy to follow and under stand. For blocking inter-vlan routing I just use 1 rule ( Rfc1918 to Rfc1918) just condenses the list a bit As for LAN local this is gateway, you would need to put block rules for your gateway so the other networks ( IoT) can’t hit the firewall interface. Have a great weekend very entertaining :)
@TechnoTim Жыл бұрын
Great tip! Thanks for stopping by!
@Polkster13 Жыл бұрын
@@TechnoTim You need to pin this comment to the top.
@TheRealAnthony_real Жыл бұрын
WAN-Local same story, WAN-IN jumps the gateway (I think)
@pbear06 11 ай бұрын
Wouldn't be better to set a DROP default policy for everything ? And then open only what we need when we need. That's what's going on with pfsense. It should be the choice of ubiquiti.
@TechnoTim Жыл бұрын
Have you set up VLANs? How do you use them?
@Bill_the_Red_Lichtie Жыл бұрын
I currently have 4 VLANs, LAN, IoT, DMZ and Guest. I have also been considering moving my servers to their own VLAN because they don't normally initiate communications to my LAN devices.
@CRK1918 Жыл бұрын
I have six VLANs, sever /25, management /27, Home /24, Iot /26, Guest /23, and Native /24. Under normal circumstances, all communication between VLANs is prohibited unless I allow certain activities, such as management allowing to all, and guest denying to all RFC1918 networks, and home to some server network, and server deny to some IoT net, all this with Pfsense makes it straightforward to set up.
@tljstewart Жыл бұрын
You found your voice, an inspiration. Love watching your content.
@TechnoTim Жыл бұрын
Thank you!!!
@Woodscape718 24 күн бұрын
Great vid! Easy to follow and all made sense to me. One question, I tried adding a camera vlan and when I added the 'block' firewall rule you explained I can no longer access the cameras on my default network. I can only access them on the network/subnet I created for the cameras. My IoT vlan which I configured the same way is fine regarding access from my default network. Anything I'm missing or need to change? Something specific to reolink perhaps?
@dpz1 Жыл бұрын
What tool did he use draw and animate his network architecture diagram? Awesome video as usual.
@zippi777 Жыл бұрын
Hi Tim, thanx as always for this awesome video very important for a noob like me!
@ghlghl604 Жыл бұрын
Been looking forward to this one!
@EricWieber-mi9yj 5 ай бұрын
Hi Tim, I really enjoy your videos because you take your time to explain by providing details. I do have a question for you. It appears that somebody keeps hijacking my Unfi AP Pro and possibly my wifi access. How can I protect myself better my controller is a DMSE but I am new to Networking. Thank you.
@jforbush Жыл бұрын
another excellent video, thansk!
@drossi2002 10 ай бұрын
Hi Tim. Excellent video. I also use UDM and I am setting up a similar configuration to isolate IoT devices but I am not sure about the best way to deal with Proxmox. Do you have the VE in a specific VLAN? What about the different VMs? I am running HomeAssistant as a VM and by default it installs in the same VLAN as the VE. How can I get the VM installed in the IoT VLAN? More in general, how can I get to select a specific VLAN in which a given VM will be installed? Hope you can give me some guidance. Cheers
@derekribbons8308 6 ай бұрын
Great info and explanation, liked and subbed, appreciate the hard work you put into these.
@pabloqp7929 Жыл бұрын
This is gold 🥇 thank you mister
Жыл бұрын
Great video, I wish it existed a few months ago when I went through this. One thing though, when you set up the allow rule for DNS you use IOT Only as the source. Before you said that the "Only" groups contained all the networks except for the one in the name. Then, aren't you allowing DNS access from all the networks except for the IOT one?
@TurtleMatey 9 ай бұрын
Very informative video! What's the difference between your Default and Main networks?
@marcomusso3515 Жыл бұрын
Greate Tim! What about recording a video to show different vulnerability scan tools? Greenbone, nexsus, Kalilinux and so on... Thanks!
@badazz12r Жыл бұрын
from your video, you have a mgmt default network and a main network that the rest of the home user are on (the main) in the video. so what network will you placedPlex in?
@kyrujames 4 ай бұрын
I would love a spreadsheet of your rule setup. I'm trying to run a similar setup. I got super hung up on trying to do inter vlan blocking without the established and related sessions rule at the top.
@TwinTailTerror Жыл бұрын
@Techno Tim another way is just to dchp over the vlan i use opnsense dchp over vlan and this will allow the firewall to stop traffic from teach to each other much more easy than the way your doing it here tho it does work of course ps love the channel =3
@ericilkwatson5557 24 күн бұрын
Hi, thank you for this tutorial. Is there any way to setup DSCP tagging for QoS based on ports?
@JBoy340a Жыл бұрын
This is great!! I got a new UDM SE and some security cameras. You made this pretty easy. I want to clear up one issue for my setup. I assume devices in your IOT-Better VLAN can do bidirectional communication with external network and services with the rules you defined. Is that correct? If so, I think my situation is the same. I need my cameras to be able to connect to security operators that get contacted when the camera and their AI host software detect inappropriate activity. If that occurs the security operators come on interactively and starts querying the perps, and as required dispatching the police.
@MrWadezz Жыл бұрын
Hey, there's a terraform provider for unifi ! You can do it all as-code ! It's very handy to avoid the click simulator that is the unifi interface. Once you understand how it works by spending a little time maybe in the UI, you can really get stuff done fast using the tf provider ! I would love a video about that if you get to spend some time with it ! Great videos man keep it up
@bcookbsdwebsol Жыл бұрын
Hey there.. can you share? (thank you)
@MrWadezz Жыл бұрын
@@bcookbsdwebsol comment got removed twice... paultyng/unifi on the terraform registry
@b.bimmer4688 2 ай бұрын
Awesome tutorial that helpt me BIGTIME so thank you !
@qnxvr576 Жыл бұрын
Did I miss a video on how the rings of the networks are numbered / used? Would be interested in a useful strategy if there's one to be shared.
@specialblend218 6 ай бұрын
Thanks Tim!
@fredman1956 Жыл бұрын
Dude, I have been waiting for from you, so thank you very much and please release a printout.
@TechnoTim Жыл бұрын
It's there, on my docs site!
@CliffordFullerton 11 ай бұрын
Thanks, that was helpful. But it stopped just as it was getting interesting. I set up an entertainment network, an iot network and so on. But certain devices need to communicate accross vlan boundries. For instance Home Assistant (now running in iot) needs to access a few devices in other vlans and vice versa. Hope to see a video on this. Thanks!
@RoxioCZE Жыл бұрын
communication between vlans is just inter vlan routing, vlan hopping is an attack that allows the hacker to hop around between different vlans I think
@visualoddity Жыл бұрын
One issue after doing this. Thoughts? First - Great video! I've been wanting to segregate my IoT network for a long time now, but haven't. I randomly searched and found this yesterday, and it was so well done I decided to learn this morning. Follow step by step, and got it done a few minutes ago. Thank you! I can see the IoT devices (such as chromecasts) when I pull up the menu to cast from youtube, but if I try to cast to any of them, it just hangs and won't connect. If I move my phone to the IoT network, it works flawlessly. Any idea why this might be? For reference, my network is super simple. Basically it's all auto configed and using the default settings. The only major change is following this process to put the IoT devices on their own VLAN (101) by restricting the WiFi they use (Pariahs) to the IoT newtork.
@ryan.stutzman 4 ай бұрын
At 10:40 with the trunk port, you're mostly right. Ha. A trunk port does include traffic from multiple VLANs (or in this case all of them), but they're NOT untagged. They do in fact have their VLAN tags. This is how you can connect multiple switches together with both switches being able to communicate on all the VLANs.
@OGParzoval Жыл бұрын
I have not seen one, but I think people could benefit from a greenfield video. We have very similar setups and man going from 2 docker boxes, to tearing down my 4 server vmware cluster to building a 3 server harvester cluster has been a journey and now I'm at the "now what" point. The VMUG savings alone pays the power at least :) while I burn brain cycles trying to bone up on what I'm missing. In the homelab tour you talk about the three piholes and I was curious what you meant for the dns vip. What's running the VIP or did I miss that as a pihole feature?
@cxl520 Жыл бұрын
Actually all the trunk are tag port except the native vlan in Cisco, which means it a allow one untag vlan go to trunk; and trunk port are usually between switches and router and sometime also support Pc NIC that support it, for a sample in your window machine if you find the adopters setting that you can specify a VLAN number and then you can connect to an trunk port Is very useful if you using VM and all the access port is on untag port, for security and device doesn’t understand VLAN ID
@josephstacklin3853 Жыл бұрын
regarding the "vlan hopping" it isn't that, it's because you have "Multicast DNS" on for the Network. That allows devices to traverse VLANs.
@shwagonvids 7 ай бұрын
Any pointers on sharing a wireless printer across multiple VLANs setup using this process?
@bronxandbrenx Жыл бұрын
Can you discuss about disposable containerization
@BloodlyKill 9 ай бұрын
Is it possible to allow traffic to for example sonos on a guest network?
@ronm6585 6 ай бұрын
Thanks Tim.
@MrRosentorp Жыл бұрын
Would like to avoid end users to be able to connect switches to there network outlet. Only one device connected to a port shall be allowed to get connected to the network. Can this be done in a Unifi switch? Thanks!
@notafbihoneypot8487 Жыл бұрын
Is it posiable to have my VMs on proxmox use this on a single NIC on my server?? I have UDM pro and their Layer 2 switch
@davidesguerra7837 3 ай бұрын
Thanks man!
@plotikai Жыл бұрын
I see you're using LastPass, maybe considering recent news its time to make the switch? Have you thought about doing a video on Bitwarden deployment?
@BTC_Solo Жыл бұрын
Tim, great video and very informative. When I created a VLAN and assigned one of the ports on my 10gb switch to a specific device I still have the same ip address that used to have it from the main network. Is there away to change it to the new VLAN ip address bundle . Thanks
@leecurcio6132 10 ай бұрын
I have a question. If you have multiple switches, do you set up the VLAN on the router or even on the switch, or just the switch? Thanks
@TechnoTim 9 ай бұрын
You should only need to set this once in UniFi Network when you create a network. It will take care of pushing it out too all UniFi devices!
@kb1qzh Жыл бұрын
General Unifi question: is the interface the same across devices? I'm trying to shrink route/switch in my lab to 1U and I noticed my local Micro Center has Edge Router X open box for sale.
@williamp6800 Жыл бұрын
This video shows the Unifi interface. The Edge series of devices is completely separate. Unifi devices are set up via the controller application. Edge devices are setup via a web interface in each device. I’ve got an Edgerouter X. It’s is a nice little box, but I upgraded to pfSense.
@24torbenbeck 4 ай бұрын
Hey Tim Great video. I followed it and all worked great by having a Chromecast on my IoT network and my smartphone on my main (trusted) network until i add the firewall rule "blok IoT to All". After adding the rule I can´t see my Chromecast (On IoT) on the list of devices I can cast to on my smartphone. I have Multicast DNS and IGMP Snooping enabled. If I pause the firewall rule, the Chromecast return on the list of devices I can cast to. Do you have any ideer what I am doing wrong?
@nathairsgiathach3728 4 ай бұрын
Thanks mate
@spartan5280 Жыл бұрын
Do you know how to block IOT devices from accessing the udm console? Whenever I try to make a LAN local rule it shows up after the Accounting Defined Network rules so it doesn't seem to work.
@mccawley 11 ай бұрын
Is it possible to have Ui Protect on a different vlan? When I moved my cameras, protect couldn't see them anymore.
@pbear06 11 ай бұрын
Hello, in which situation could it be useful to apply a rule on the OUT interface ?!?
@stratixmedia 10 ай бұрын
It's odd that Unifi has inter-VLAN routing enabled by default considering that virtual network segmentation is pretty much the primary reason most people set up VLANs in the first place. I can confirm that both Cisco and HP MLS switches have lanbase routing disabled. On the subject of port assignment, it seems that Unifi takes a space somewhere in the middle of Cisco and HP. By default, Cisco lets any VLAN travel on a Trunk (tagged) port unless specified otherwise, while HP requires you to tag the port for any and all expected VLANS other than Native.
@FeliXGamR-Jp Ай бұрын
Hey @TechnoTim, I think you should do an update video to this, i just bought my UDM-SE and found your video extremely helpful but i think Ubiquiti Updated the Ability to Isolate Vlans with a checkbox without having to do all the firewall rules & groups manually, i was using my Laptop connected to the WiFi AP turned off my firewall like you did and tried pinging my desktop and it returned lost packets when "Isolate Network" was checked. BTW Love your videos man they are really informative and helpful for someone new to all of this Gear.
@tobayekaina8610 Жыл бұрын
Sir, thanks for sharing
@user-rd9kb6ox1v 11 ай бұрын
Great video!!!
@Crazy--Clown Жыл бұрын
Nicely Done
@hungarianzozo 8 ай бұрын
Good content, what’s missing for me is a schema like at 0.31 sec for hardware, their various connections and their must have dependencies.
@1990Kronic Жыл бұрын
when you remoted into the laptop for the first time, at the top right there was an overlay showing that you were RDP'd into the machine and its IP address. is this a feature or just done in video editing?
@TechnoTim Жыл бұрын
Editing to let you know which machine I was one, although there are apps out there that can overlay this information on your background
@j.b6991 7 ай бұрын
disallowing ping means blocking ICMP, what other protocols needs to be blocked when a VLAN getting configured for better security?
@xSBridge 6 ай бұрын
Is it possible to create a VLAN for my unifi protect cameras? I tried doing this but I cannot get the cameras detected inside of Protect.
@urmastertech Жыл бұрын
Wow I haven't watch ItsMyNaturalColour in a long time. I'll have to lookup his vlan videos after this
@notsrynot 10 ай бұрын
What about IOT communicating with your media server. I want my Poweredger to be on a separate vlan from my IOT but still want some of my IOT to communicate with truenas for media
@ferguson4260 10 ай бұрын
super great guy love you
@brijeshdave Жыл бұрын
What is DNS suffix used by you? Please make a video on it. 12:57
@danieltur-bes2036 Жыл бұрын
I tried adding a unifi ac long range access point to my network. It shows up in my wifi but won't connect to it. Any ideas?
@jhmc93 Жыл бұрын
can you do a video of how you setup a vip? 🙏
@kaspermeesen2798 Жыл бұрын
Ever thought about using terraform to manage it? It's nice to have it in code and I don't like clicking in a UI :)
@kgottsman Жыл бұрын
Never knew there was a terraform provider plug-in for UniFi. There goes my day. 🙂
@TechnoTim Жыл бұрын
Yes, I have looked at it a few times! It's in my backlog!
@MrWadezz Жыл бұрын
yup, way to go ! I use the tf provider and CI pipelines to push updates to my network and it's been saving me so much time clicking around in the UI
@plozex 7 ай бұрын
In my network, UDM PRO not change to Third Party Gateway. Why? My gateway is a Fortigate. I buy this UDM to manager UAP's
@survivingnetworkingandit2084 10 ай бұрын
Great video.... but calling UBNT/Unifi enterprise is probably a bit of a stretch. Its great for what it is... but enterprise usually needs more than what UBNT can provide unless you're only needing basic wireless access.
@TechnoTim 10 ай бұрын
Thanks! Understood.
@ihasmax 8 ай бұрын
Thank you for the video. Unfortunately, on Network 7.5.176 I can't seem to get this to work. I have my IoT device connected to a USW flex mini and set the port it's connected to be the IoT VLAN. I can ping the device just fine from the Default (main) network. But if I then create the same LAN In rule, I can't ping the device any more.
@Ret_af_vet_2019 4 ай бұрын
Did you figure this out? I have a similar issue.
@BenjyBoo Жыл бұрын
When I get a new Router to replace my old one and set the same SSID and password as my original router will all my many WIFI devices automatically connect to it? Thanks.
@TechnoTim Жыл бұрын
Yes!
@Xjaje 10 ай бұрын
For clarification, on Wifi VLANs you always need to create a new wifi SSID? If you need 10 different vlans on wifi, you need to setup 10 different SSIDs? Can't be done on same SSID the vlan splitting?
@TechnoTim 10 ай бұрын
not that I am aware of, it's 1:1 unless there's something I am overlooking
@Xjaje 10 ай бұрын
@@TechnoTim That was a quick answer. Thanks. A quick search it is mentioned about tagged Vlans with Radius autentication that can do the trick.
@Craxter Жыл бұрын
How do you RDP into a "isolated" IOT network? If i try to ping my now locked down network i dont get a response obv. because its getting dropped. But like now i cant access anything anymore.
@braderunnah2204 11 ай бұрын
Having the same issue - did you figure this out yet?
@Craxter 11 ай бұрын
@@braderunnah2204 yeah i didnt use Firewall rules now. I Opted for traffic rules and then i blacklisted communication between my networks. Works flawlessly and whitelisting stuff also works easy. And with my knowledge its the same thing from a security standpoint.
@bryanmontgomery610 4 ай бұрын
Hey everyone, maybe this was already answered but if not then I apologize. I just got my first UDM Pro and when I create a new network and then assign the new Wi-Fi SSID to the network I just created, my devices will connect to the IoT network for example, but they won't DHCP or get out to the internet. I have ATT fiber and have enabled passthrough and it's still not working. Any guidance would be greatly apprecated!
@Ex_impius Жыл бұрын
Ive been using unifi for almost 3 years and i never used profiles for my firewall rules lol. My firewall rules are a mess lol, i have everything secure but its definitely a mess.
@JW-jl8iq 11 ай бұрын
With the new release of Firmware it doesnt let me add networks anymore?
Jason Derulo
Рет қаралды 24 МЛН
The Hook Up
Рет қаралды 442 М.
Leader Academy
Рет қаралды 19 М.
Raid Owl
Рет қаралды 297 М.
Яблочный Маньяк
Рет қаралды 64 М.