This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
networking:wireless:unifi [2023/01/31 13:12] gcooper |
networking:wireless:unifi [2024/02/05 10:44] (current) gcooper |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Ubiquiti Unifi ====== | ====== Ubiquiti Unifi ====== | ||
+ | |||
+ | **Optimize Your Network**: https:// | ||
**User Guide**: http:// | **User Guide**: http:// | ||
Line 26: | Line 28: | ||
* Version 3.0+ | * Version 3.0+ | ||
* Integrated billing system available | * Integrated billing system available | ||
+ | |||
+ | <note tip> | ||
+ | |||
+ | ====== Server Prep ====== | ||
+ | |||
+ | [[internet: | ||
===== Controller Installation ===== | ===== Controller Installation ===== | ||
+ | |||
+ | :!: Unifi Controller seems to be easy to install, run and update under **Docker**. | ||
https:// | https:// | ||
- | :!: This is for a minimal Ubuntu 22.04 LTS Server with 2 vCPU, 2GB RAM and a 20GGB vHD. | + | :!: This is for a minimal |
< | < | ||
apt install curl haveged gpg openjdk-8-jre-headless | apt install curl haveged gpg openjdk-8-jre-headless | ||
- | curl https:// | + | |
+ | # This library is not in the default repos | ||
+ | wget http:// | ||
+ | dpkg -i ./ | ||
+ | rm -f libssl1.1_1.1.0g-2ubuntu4_amd64.deb | ||
+ | |||
+ | curl https:// | ||
echo 'deb [signed-by=/ | echo 'deb [signed-by=/ | ||
- | curl https:// | ||
- | echo 'deb [signed-by=/ | ||
- | apt update | ||
+ | curl https:// | ||
+ | |||
+ | echo 'deb [signed-by=/ | ||
+ | |||
+ | apt update && apt install -y mongodb-org-server && systemctl enable mongod && systemctl start mongod | ||
+ | |||
+ | apt install unifi -y | ||
</ | </ | ||
Line 47: | Line 68: | ||
^TCP Ports| 22, 8080, 8443, 8880, 8843 | | ^TCP Ports| 22, 8080, 8443, 8880, 8843 | | ||
^UDP Ports| 3478 | | ^UDP Ports| 3478 | | ||
+ | |||
+ | < | ||
+ | ufw allow 22/tcp | ||
+ | ufw allow 8080/tcp | ||
+ | ufw allow 8443/tcp | ||
+ | ufw allow 8880/tcp | ||
+ | ufw allow 8843/tcp | ||
+ | ufw allow 3478/udp | ||
+ | |||
+ | ufw --force enable | ||
+ | |||
+ | ufw status numbered | ||
+ | </ | ||
==== Management ==== | ==== Management ==== | ||
Line 105: | Line 139: | ||
===== Guest Networks ===== | ===== Guest Networks ===== | ||
- | |||
- | **Guest FAQ**: http:// | ||
- | |||
- | **Guest Doc**: https:// | ||
- | |||
- | **If Using VLANs**: https:// | ||
Simple guest access uses single DHCP server and restricts access to Internet only. | Simple guest access uses single DHCP server and restricts access to Internet only. | ||
+ | |||
+ | <note tip> | ||
* To **restrict bandwidth of guests**, create a " | * To **restrict bandwidth of guests**, create a " | ||
Line 129: | Line 159: | ||
:!: Click in '' | :!: Click in '' | ||
- | |||
- | :!: To **restrict guest access**, make sure your guest/ | ||
- | |||
- | < | ||
- | 192.168.0.0/ | ||
- | 172.16.0.0/ | ||
- | 10.0.0.0/8 | ||
- | </ | ||
===== Site Administrators ===== | ===== Site Administrators ===== | ||
Line 286: | Line 308: | ||
- Enable the Multicast Enhancement. **WIFI -> SSID -> Advanced** | - Enable the Multicast Enhancement. **WIFI -> SSID -> Advanced** | ||
- Enable Fast Roaming. **WIFI -> SSID -> Advanced -> Enable Fast Roaming** | - Enable Fast Roaming. **WIFI -> SSID -> Advanced -> Enable Fast Roaming** | ||
+ | |||
+ | ===== Docker ===== | ||
+ | |||
+ | <note warning> | ||
+ | |||
+ | Unifi Controller seems to be easy to install, run and update under Docker. | ||
+ | |||
+ | ==== docker-compose.yml ==== | ||
+ | |||
+ | === Simple Version === | ||
+ | |||
+ | < | ||
+ | version: " | ||
+ | services: | ||
+ | unifi-controller: | ||
+ | image: lscr.io/ | ||
+ | container_name: | ||
+ | environment: | ||
+ | - PUID=1000 | ||
+ | - PGID=1000 | ||
+ | - TZ=Arizona/ | ||
+ | - MEM_LIMIT=1024 #optional | ||
+ | - MEM_STARTUP=1024 #optional | ||
+ | volumes: | ||
+ | - / | ||
+ | networks: | ||
+ | - unifi-net | ||
+ | ports: | ||
+ | - 8443:8443 | ||
+ | - 3478: | ||
+ | - 10001: | ||
+ | - 8080:8080 | ||
+ | # - 1900: | ||
+ | # - 8843:8843 #optional | ||
+ | # - 8880:8880 #optional | ||
+ | # - 6789:6789 #optional | ||
+ | # - 5514: | ||
+ | healthcheck: | ||
+ | test: curl --fail -k https:// | ||
+ | interval: 5m | ||
+ | timeout: 15s | ||
+ | restart: unless-stopped | ||
+ | |||
+ | networks: | ||
+ | unifi-net: | ||
+ | name: unifi-net | ||
+ | </ | ||
+ |