Where To Host Your UniFi Controller and Why
HTML-код
- Опубликовано: 30 сен 2024
- Amazon Affiliate Store
➡️ www.amazon.com...
Gear we used on Kit (affiliate Links)
➡️ kit.co/lawrenc...
Try ITProTV free of charge and get 30% off!
➡️ go.itpro.tv/lts
Use OfferCode LTSERVICES to get 5% off your order at
➡️ lawrence.video...
Tesla Referral Program Offer
🚘 www.tesla.com/...
Lawrence Systems Shirts and Swag
👕 teespring.com/...
Digital Ocean Offer Code
➡️ m.do.co/c/85de...
HostiFi UniFi Cloud Hosting Service
➡️ hostifi.net/?v...
Protect you privacy with a VPN from Private Internet Access
➡️ www.privateint...
Google Fi Service Referral Code
📱g.co/fi/r/TA02XR
More Of Our Affiliates that help us out and can get you discounts!
➡️ www.lawrencesy...
Twitter
🐦 / tomlawrencetech
Patreon
🔗 / lawrencesystems
Our Forums
🔗 forums.lawrenc...
GitHub
🔗 github.com/law...
Discord
🔗 / discord
Our Web Site
🔗 www.lawrencesy...
UniFi Cloudkey Gen2 Plus with UnFi Protect & UniFi SDN Review
• UniFi Cloudkey Gen2 Pl...
Hey Tom, it would be cool to see a video about setting up captive portals, in unify and in pfsense. thanks for the great videos.
Hey Tom. Can you do a video how you setup your clients VPN so only de Unifi traffic hits you? I would really appreciate that
Hostifi is insanely expensive now.
Yeah I like the concept but $50 with a device limit is just too much considering it's like $10 for good VPS that will run UniFi just fine.
Rasberry Pi is 25$ and runs perfectly. ! Everything is going to this god damn cloud crap with subscriptions! It's not hard to run a controller! People are just Lazy !
@11 11 True, but what are you going to do when someone gets into their account. AFAIK the cloud usg hosted doesn't do 2fa :(
Oh 2 years ago. A golden age.
In the apocolypse future of 2022, 4gb pi's are closing in on $100 before shipping.
8gbs...? Haha no one has seen those available ever since tge great video card famine of 2021began.
Docker within my lab combined with portainer - a pleasure to use and maintain :)
The re-create container makes updating a breeze.
I'm a newbie on Unifi. My biggest issue is which software. Cell app cloud key pc app and how to keep the login organized. There is the Ubiquiti account and the local cinfig app.
I hosted mine on a rasberry pi. Works really well as it can run 24/7 in a closet and still use it for other stuff. Is also cheap
Hi, which version of the Pi are you running it on please? Do you find it's got enough grunt for the performance to not be laggy?
And did you install it directly on the Pi or run it in a container?
Would be very grateful for any help! Thanks :)
Gen 1 cloud keys are like $40 on Ebay.....just saying.....
thanks for your video i watched it late, but i already linked my Unifi controller on my own pc.
and after adapting all access points and switches and all configurations i notice my fault to link the host controller with my pc I always make sure my own pc is running to manage the access points and etc... but i have another pc is always connected to the Network and it is always running. so my question is how to transfer the host controller from my pc to this pc?
Do you have a video on how to do the remote setup?
Another inexpensive but hands on option is running the controller on a Raspberry Pi 3b+ or newer. You do need to maintain the OS patching (automated with cronjob) and update the unifi controller periodically but it’s pretty light weight.
Brandt F I run mine on a raspberry pi zero. Runs fine.
Brendan Rosa Nice that’s good. I run pihole on mine as well. Doesn’t need all the “horsepower” but like a little bit more oomph.
I run mine on a raspberry pi 3b. It was a PIA to get installed and configured with raspbian lite. I think it was just the version I was using (I forget which ones they are). The older one was OK, but after I updated, it broke and was very time consuming to get fixed. I almost wanted to take the SD card and throw it out the window. Nonetheless, really nice on the raspberry Pi. No need to buy additional equipment or pay a service fee.
I have my UniFi Controller running in a FreeNAS Jail, needs almost no RAM at all (less than a 512MB Ubuntu Server VM)
Me too. Flawless. Who in their right mind would host something like that off site…
Oh, why the Ubuntu vm? You can install it directly into a naked jail.
@@the_jcbone i do have it in a jail instead of in a Ubuntu VM is what I wanted to say
Felix I See. 👍
If you run a NAS on your home network for backups or media storage, you can run it within a docker container on them.
Does the controller have to run 24/7? I don't have a system that stays online 24/7, so i'm wondering where I could host it. I'm considering running it on my linux vm on my laptop, though if it's more worth I'd just grab a raspberry pi or something until I get a NAS up. What would I be missing out if I don't get a separate controller device?
Hi Tom great vid , just a heads up , just check that your unifi switches havent been rebooting frequently , found this strange behavior , ever since I upgraded my controller weird , lucky did a role back and are checking ito stability , if it persists will need to do packet analysis to determine what else is causing it :-( any how have a great one and keep smiling
Yikes, what firmware version did you have the problem with?
Hi Reilly Chase , I have rolled back my controller , no change , I thought that it could be a heat issue , and checked in the switch no issues , I have done a packasge analysis with pfSense and wireshark and mite have seen some broad casting that may have caused the switch to reboot , I then proceeded to switch off some of my VM'S and the switch has been stable , I believe one of my VM'S maybe running rogue eg broad casting - I am running a zabbix and wazuh servers, wazuh has complained about security vulnerabilities with my debian experimental box ( I have been guilty of loading and testing all kinds of 3rd party software lol like Odoo) , I want to do a little more analysis to see exactly what the package looks like example DOS and which application is initializing it !!!!! will keep you posted happy days are here again :-) have a great one
@@ReillyChaseHi Reilly Chase , I have rolled back my controller , no change , I thought that it could be a heat issue , and checked in the switch no issues , I have done a packasge analysis with pfSense and wireshark and mite have seen some broad casting that may have caused the switch to reboot , I then proceeded to switch off some of my VM'S and the switch has been stable , I believe one of my VM'S maybe running rogue eg broad casting - I am running a zabbix and wazuh servers, wazuh has complained about security vulnerabilities with my debian experimental box ( I have been guilty of loading and testing all kinds of 3rd party software lol like Odoo) , I want to do a little more analysis to see exactly what the package looks like example DOS and which application is initializing it !!!!! will keep you posted happy days are here again :-) have a great one
Unifi network poor benchmark WIFI/network speeds?
I am running a unifi network which has USB-3P (firmware: 4.4.52.5363511) gateway, US-16-150W (firmware:5.43.23.12533)
PoE switch, and one UAP-AC-LR (firmware: 4.3.24.11355) WAP. All running the latest firmware updates.
Unifi Controller v6.0.45 on my Windows 10 Pro x64 and on the controller dashboard speed test I am getting 166 Mbps down
27 Mbps, 14ms latency. I have confirmed it on wifiman.com speedtest at 111 Mbps down and 25 Mbps up.
Can anyone explain to me why when I plug on computer directly to the modem, I get 933Mbps down and 33Mbps up
when speedtesting??
I like the stickers on your new Lenovo Thinkpad L480 :)
haha
That is why we like to have the Gen Key controller on-site of each client so we can access it in the cloud remotely from our office.No ports to open.
Hey Tom, I absurdly love your RUclips videos, they are positive and informative. After watch several of videos I made the change going from tplink mesh network to ubiquity usg, 24 port switch, and WiFi ac. I run my controller on a HP t620 thin client $35 w/Linux mint 4 gb memory 64gb m.2 nvme hd. Not exactly the fastest pc but cheap to run for sure. I can remote into it monthly/bi-monthly to do manual updates and so forth.
Thank you.
Thanks this answers a lot of the questions I had about a possible deployment of this for a potential client.
How can you run the controller on a truenas scale server?
Is there a virtual appliance you can run instead of having an extra device? like run it on vmware, hyper-v or virtualbox?
You can easily install it in a linux vm (e.g debian, ubuntu) on an vmware/hyper-v/virtualbox host. There are plenty installation guides online! Docker is also an option.
I dont think this is possible. @TomLawrence am I right?
@@parl-88 Have a look at my comment, you can easily host unifi in an own vm on vmare/hyper-v/virtualbox!
hub.docker.com/r/linuxserver/unifi-controller
It's possible.
Very doable. I have run them on vultr and digitalocean.
What ports should I open if I want to host it on a remote computer that is connected via a VPN?
none, that's the point of a VPN
Tobimai I know, but the problem is a WAP can't reach the controller. So I see it as disconnected...
fromNYC just setup a port forward for 8443 and whatever the STUN port is
I have mine on Docker with Portainer. I have Watchtower monitoring and updating daily. All data for containers are stored using NFS accessible by the Docker system only.
Are there any issues with hosting USGs from a remote controller? I know the APs and switches are perfectly happy with a remote controller but is a USG just as flexible?
Chris Shaw Yes USG works just fine. You can actually configure the WAN from the web gui to get internet working before adopting it to the server.
Nice video!! If the controller on Windows platform died, can I migrate the Unifi APs to a dream machine?
I know things have changed but how would I go about hosting my own controller if using the Dream Rotuer?
can you suggest the best captive portal you guys like, aside from the one in unifi? thanks!
None
UNIFI IS NOT READY FOR PRIME TIME! You have to use their server and if it doesn't work you are screwed. If you don't have the right Java or if it conflicts with something It just doesn't work. And they have had this problem for over 10 years! SAD! Where would Apple be if they put out such crap!
Correct, Unifi does not work for people who don't know how to set up the controller properly or do not want to buy one of their cloud keys or other devices that make it easier to set up.
I can't even get into their server because there is some type of port 8080 conflict. And maybe I don't have the correct Java. But you look up the sever error and you get post from 10 years ago! So they know of the problem but still haven't fixed it! I can't believe I spent so much money on something that is such shit. And who wants to take down all their security just to see if that's the problem. What are they thinking?@@LAWRENCESYSTEMS
Another helpful Unifi video. It’s also worth mentioning the controller can run on fairly low end fanless hardware running Linux with no penalty beyond the web UI perhaps being a bit slower. So even a $120 netbook grade laptop works just fine. You can also run it in a VM on various hardware or most anything already running Linux or Windows with minimal impact. So many may already have suitable hardware.
Shared Knowledge I run my controller on a raspberry pi zero just fine...
try getting a unified controller to run in docker. it doesn't work. it hasn't worked and sometime.
Hi,
super Video.
I use a hosted Debian System for 4€ per Month.
And i add all my friends to it and it works fine.
I had got the Problem that the unifi cloud keys are damaged after 2 years and cant start or cant create backups to restore.
So best thing ist hosted vm if you have the knowledge
Trying to set up a new switch and I couldn't log in. I created an account at ubnt and my stupid last pass didn't save the f'n password and now I can't change it because it asks for the old password to change to a new one (stupid process tbh) any tips?
Hi Tom, I'm new to this UniFi technologies, I came across I nice offer in amazing warehouse section 😃 so I have a question , there is this server with 32 gigs ddr4 2 tb of HDD and other.. I think it's a very attractive price, but I have a question, I don't really need their software solution because I'm not using IOT as I understand it's their role. Can I use it as plain server for web hosting for example? Thanks a lot
get yourself a Cloud Key Gen2 Plus? WHAT? just get a 40 dollars raspberry pi. you are only running a Unifi controller, geeeez.
Not really as fast, more work to maintain.
@@LAWRENCESYSTEMS yea not as fast like a Ford vs Ferrari. Both get job done. And to maintain it with updates, it's literally like two cl commands.
Thanks for the video. I'm attempting your option for my own system and two friends systems and while I'm able to connect their external systems to my UniFi docker instance successfully, my own devices (3 x AP, 4 x SW, 1 x USG) randomly will not reconnect to my controller when the controller is updated. Should I be overriding the Controller Hostname/IP section? At the moment is has just my external domain name (without http or any ports) and 'override inform host...' is not checked.
Please correct me if i'm wrong but Isn't it that system updates are done by aws and azure automatically. so if someone is to set that up he just needs to make sure that Unifi App is updated.
What does that mean to have the the controller behind a vpn?
Not exposed publicly
Heaps informative, thanks mate!
Glad it was helpful!
5$ Digital Ocean droplet has been working flawlessly.
This. I have 30+ client sites on one droplet, controller via docker, behind nginx-proxy to get rid of the certificate errors, and get rid of the non standard port
Ditto to this. I'm using the Google cloud always free tier with this script metis.fi/en/2018/02/unifi-on-gcp/ haven't had to touch it in about a year. All upgrades go smoothly.
Docker and kill the controller. Run when needed
Hi Lawrence, One of the issues with the CloudKey, is that if you have a break-in, it's very easy for them to take the device with them when they leave, and thereby removing the video evidence. I have looked around and there are various proposals for replication the video to some other remote location, but since your an Ubiquiti expert, and have deep insight into many network related subjects, I was thinking that I would like to see you make a video, analysing the various options; Pros-Cons, and show some practical implementation of the solution you think is the best. Michael
Not using UniFi video is the solution as the don't offer any official way to back up the video
It can also be run on a raspberry pi. I have it installed on a pi zero W that is powered by the usb port on my router (wireless disabled because it got unstable over time), so it's on whenever the network is active. I prefer this to having it on a computer. Much lower power.
Nice video, is there any way to host the UniFi controller in a Raspberry Pi? I'm thinking that it could be an option for projects that have a small budget
If you decided to host the software on a local machine, raspberry pi, vm, docker, etc. and then for one reason or another blow that machine away, delete it, suffer a hardware failure, etc. Can the software be just reinstalled from scratch? or are there exportable config files for backups?
You can safe the config to a file to import into your new installation
With a few docker unifi-controller available, has anyone had any good luck with one? What one?
I am not aware of one offer directly by Ubiquiti so I don't trust them.
You didn't mention the pros and cons of running it in a container.
Docker adds another layer to setup and the docker is not officially from UniFi so it's only up to date as long as that third party maintains it and you have to trust that third party to do it properly and securely.
@@LAWRENCESYSTEMS I think his name is Jason Alberty, he might be an interesting interview if you ask him to come on.
i am wanting to set this up in my home network, i have a modem and that is all i am wanting to get 2 AP for my home do i need any other hardware to set them up?
I'm really not liking these devices that can only be feasibly managed via a central control interface. It gives a single point of failure where your whole network could go down. Worst of all, an externally hosted one makes it even more difficult. Imagine trying to set up your device but you can't because you can't access the internet to set it up and begin accessing the internet
Give me a good old fashioned direct web interface any day
" good old fashioned direct web interface" does not easily scale to managing a thousand devices very easily and if the controller goes down the network does not.
@@LAWRENCESYSTEMS No, you're absolutely right, and I was incredibly hasty with my comment. As someone who uses Cisco Meraki daily for a large(r) scale network, I do think a central control panel is brilliant for scaling
But for tinkering at a "prosumer" sort of level, I'm not sure I like it. And it's not just Ubiquiti. TP-Link, Netgear, Tenda. All the consumer gear stuff is now controlled from an app. Though I suppose it makes it easier for the non-techy people.
Jesus, am I old before my time?
Hey Tom i have some questions with my set up do you have a company/Ave preferred for me to contact you?
www.lawrencesystems.com/hire-us/
Can you make a video of installing the Unifi controller on TrueNAS scale?
There is not any official support so not likely, unless it's in a VM
@@LAWRENCESYSTEMS No wonder I can’t find much on the topic haha thanks for your response and all the content you post. You’ve saved me a million headaches
Great work sir
Sir where data saved in unifi controller in pc?
This is an awesome video. Could you provide a checklist of restrictions for the computer or server running the Controller?
Captive portal on pfSense? Is it doable instead of using cloudkey? Thanks
yes
@@LAWRENCESYSTEMS Hi sir you have a tutorial for captive for on pfSense? Thanks
When you say for your msp clients you run it behind a firewall with no ext access do you mean that you have a network in your office that you specifically use for site/site vpn from security gatways so the devices communicate that way? Any more info on the setup?
No access to the management interface is exposed externally. I will make a video about UniFi for MSP soon
@@LAWRENCESYSTEMS Your a legend would be very helpful currently just have 30 od cloud keys hanging around different places and starting to consider options on hosting it all in one for easier management
What about the UNMS Cloud service? It's free now and I've been using it to manage my tiny (2 device) network.
UNMS is used for the edge gear where as unifi is a separate product line
FYI you have to add 10 devices by the end of the month or they will cancel your free UNMS account
blog.ui.com/2019/08/29/unms-cloud-is-now-free/
@@ReillyChase Good to know!
Right now I run the google wifi mesh system in my house. I have a 24 port TP Link Unmanaged Switch.
I was thinking of changing over to a full ubiquiti setup. I was looking at buying USG pro the 24 port 500watt Poe switch
For home use. So if I’m not running a server with it do I still need to pay for the cloud
Jamie The devices have to be configured by a UniFi server, but you can run it on your laptop, or buy a Cloud Key instead of a HostiFi server. Soon we are going to have new plans for home users like $39/year though.
@@ReillyChase thanks man I don't mind updating stuff as I update my stuff all the time. Just want something better for my house I have 18 wired devices right now. But never know how many more I'm going to have.
I thought I would buy a bigger switch to future proof myself but with only having 22 ports to go thinking I'm going to need a 2nd 24 port switch in no time as I also want to add the ubiquiti light panels and switches as well
@@jamiealite I would run UniFi controller in a VM on a server at your place for that, and then another VM for UniFi EoT which is a separate server for the lights. Make sure to use a supported OS like Debian 9 / Ubuntu 16.04 for each help.ubnt.com/hc/en-us/articles/360008200454-UniFi-LED-Installation-Guide help.ubnt.com/hc/en-us/articles/360012282453-UniFi-How-to-Install-Upgrade-the-UniFi-Network-Controller-Software
@@ReillyChasedo you have any home user plans yet? It’s been about 4 years and couldn’t find any info on your website so guessing not?
Why dont we have an opensource roll your own firmware for Switchs ?
Why do we need a controller past an HTTP UI on switch's ?
Cant we use some sort of protocol already to manage switch's ?
at 5:47 Well ,, if you do updates the device you are updating will reboot and go down,, and so will switches too so if you update the first switch in a network the whole network will go down until the switch have rebooted which will take a couple of minutes. Just so you know.
Yes, device firmware updates will cause a disruption
@@LAWRENCESYSTEMS Thank you for the really quick response. It is important to point out both the good and the bad. Not only the good.
I believe he was talking about the controller. Your point is still valid, but not related to what he was talking about there. And he clearly said what goes down and what would be an issue if the controller was updated and down.
@@stetay2233 he said "do updates" that means updating unifi controller as he said or updating costumers antennas and switches with the unifi controller which means downtime for the network at the costumers. So no he cant do updates when even he wants becouse of what i wrote.
@@Mysticsam86 I'm really not sure why I replied to you, or why I'm replying again, but your comment telling him to "point out the bad as well as the good" bugged me.
Watch from 5:20. He literally says that he is talking about the controller; this whole video is about the unifi controller and where to put it and nothing else. Again like I said before in my original, you have a point about updating switches and APs, but Tom is literally talking only about the controller.
As long as you are ok with not having stats logged for time of the update and you don't have customers using captive portal, you can update the controller without taking down customers networks, which is exactly what he said.
Tom has always been very upfront in these videos about the pros and comes of unifi, so not sure why you think you're telling him something he doesn't know...
+1 for Hostifi. They are experts and it is a very cost effective solution.
Thanks Eric!
I would better buy Aruba aps ( like aruba iap-207) with integrated virtual controller that to deal again with Unifi's piece of crap...
"we just have to open a couple ports", you're talking about updating servers and controllers(these go automatic) but you're solution is opening a couple ports and than hackers are already in your environment. Yeah great solution
I run my UniFi Controller on a Windows 10 1903 PC which is also running Plex
I use Hostifi. It is good.
Thanks Kirk!
Curious: how many sites? 2,000 ? ...
Rod Fer I’ve got one HostiFi server with over 2,000 devices on it.
For a company wanting to have the controller on site but updated by you, wouldn't it be easier to enable remote access and create a admin and login using that or is that just too much of a headache to manage?
if you plan to manage just a couple of customers then YES remote in and update. he is talking about scalability. oncne you start bringing in more and more customers it's gonna be a headache to log in to each one of them.
do they purposely make this unify controller difficult to install? I've tried docker on Synology, installing bare metal linux, installing docker on Windows. the only other option is to buy their $400 cloud key box. all I wanted to do was set up this access point. but it's garbage if you can't even get to the admin panel! unify is overrated and their software is junk
You might be functionally retarded if you can't figure out how to install a UniFi controller. Not to mention, the cloud keys don't cost $400 (unless you live in some other country where it does)