udm-pro-se-eu-ea Ubiquiti UNIFI Dream Machine Pro SE

[flacon030]

Bon j'ai aussi a faire fonctionner wireguard su mon UDM pro et mon macbookpro

Cela avance...

[flacon030]

Je vais craquer avec Ces VPN

Plus rien ne fonctionne...

l'UDM refuse mon adresse public, il n'accepte que l'adresse WAN qui elle n'est pas l'adresse public vu que je suis en DMZ sur la live box 6

Quel merde de ne pas pouvoir être en mode bridge....

Modifié 17 novembre 2023 par flacon030

[mprinfo]

Je vois pas le souci

Mon udm pro est derrière ma freebox je n'ai jamais eu aucun soucis
Je ne mets pas la freebox en mode bridge pour 2 raisons
Débit internet beaucoup plus faible
Obligation de faire un vlan pour la tv


Tu as bien branché ta box internet sur le port wan de l udm ?

Envoyé de mon BLA-L29 en utilisant Tapatalk

[mprinfo]

UniFi OS - Dream Machine SE 3.2.7

Important Notes

UniFi OS - Dream Machines 3.2.7 adds support for Subscription Free UniFi Identity, Shadow Mode, InnerSpace, VLAN Magic, DNS Shield and Loop Protection. 

Subscription Free UniFi Identity

UniFi Identity is the new on-premises UniFi user management system, offering lightweight, subscription-free, single-site, unlimited-user access via the iOS & Android apps. Set up UniFi Identity via the Admins & Users > Users section. See the UniFi Identity Help Center article for more information. Former UID options are now called UniFi Identity Enterprise.

Shadow Mode

With Shadow Mode on the UDM-SE, you can ensure High Availability (HA) of your network’s gateway to minimize downtime, and provide a reliable failover mechanism in the face of unexpected hardware failures. In this setup, a secondary Cloud Gateway mirrors the configuration of the primary one, and can easily take over full network and management capabilities should it ever fail. See the Shadow Mode Help Center article for more information.

 

Currently, Shadow Mode operates as a “Warm Spare,” meaning some manual intervention is required, however this will become fully automated in an upcoming release.

InnerSpace

The UniFi InnerSpace Application is a powerful deployment visualization tool that allows you view your UniFi system's WiFi and camera coverage over your own floor plan. InnerSpace replaces the Map option in the Console Settings.

VLAN Magic

With VLAN Magic, you can quickly create a new Virtual Network and associate devices to this VLAN by selecting them on the Topology.

DNS Shield

The new DNS Shield feature ensures privacy and security of DNS traffic by encrypting it using DNS over HTTPS (DoH).

Loop Protection

The new Loop Protection feature automatically disables ports on which loops are detected. It does not depend on Spanning Tree and even works when neighboring devices do not support STP. Enable Loop Protection on all UniFi Gateway and UniFi Switch ports via the Port Manager. Ports that are disabled by Loop Protection need to be manually re-enabled.

Bundled Application

• UniFi Network 7.5.187

Improvements

• Added Subscription Free UniFi Identity.
• Set up UniFi Identity via the Admins & Users > Users section.
• Added Shadow Mode.
• Added InnerSpace application replacing the Map option in the Console Settings.
• Added VLAN Magic.
• Added DNS Shield.
• Added Loop Protection.
• Added support hostname support for IPsec Site-to-Site VPNs.
• Added the console's IP address during setup on the touchscreen.
• Added max login attempts for SSH.
• Entering incorrect credentials 5 times will block for 3 minutes.
• Added fallbacks to default timezones if unsupported ones are provided during setup.
• Added DNS warnings for consoles that cannot resolve the ui.com domain.
• Allow disabling Remote Access where there are connection issues.
• Improved various screens on the Touchscreen.
• Improved detection of failed disks.
• Disks that cannot initialize will be marked as broken.
• Improved RADIUS stability.
• Improved WireGuard VPN Disconnection detection for mobile devices.
• Consoles will no longer erase external storage during a factory reset.
• Updated Suricata to 6.0.12.
• Updated the console reset button count down from 10 seconds to 5 seconds.
• Reduced memory usage of Suspicious Activity, Content Filtering, and Ad Blocking.
• Prevent super admins from deleting their own account.

Backup and Upgrades

• Added DNS resiliency for firmware updates.
• Improved UniFi OS backup resiliency.
• Improved meshing stability when consoles are restarting or upgrading.
• Consoles will now always store backups locally before upgrading the firmware.
• Auto recovery is in place in case there is file system corruption after a power outage.
• Reduced network downtime for firmware upgrades.

Bugfixes

• Fixed an issue where the IPv6 address is lost after interface changes until the next RA.
• Fixed unable to start RADIUS service in rare cases.
• Fixed incorrect WAN IP on the portal after remapping the WAN ports.
• Fixed an issue with DNS servers for VPN Client. This applies to the VPN Client feature, not adding clients to VPN Servers.
• Fixed an issue where servers are not reachable for VPN Client due to incorrect certificates. This applies to the VPN Client feature, not adding clients to VPN Servers.
• Fixed an issue where the default route wasn't present when using a static IP on the WAN port.
• Fixed an issue where IGMP Proxy breaks after PPPoE reconnections.
• Fixed an issue where Traffic Routes didn't take effect for existing connections.
• Fixed an issue where Traffic Routes conflicted with Content Filtering.
• Fixed inability to see DPI statistics for setups with large amounts of clients.
• Fixed unexpected behavior when there are multiple Traffic Rules blocking the same domain.
• Fixed unable to establish IPsec Site-to-Site VPN in rare cases.
• Fixed an issue where jumbo frames are forwarded on LAN ports when Jumbo Frames is disabled.
• Fixed an issue where PPPoE MSS Clamping is lost during provisions.
• Fixed Suspicious Activity not working when enabling Jumbo Frames.

Known Issues

• PPPoE WAN2 Is Disabled
• Users that have a PPPoE WAN2 connection and are running UniFi Network v8.0.24 at the time of the UniFi OS update will need to re-enter their PPPoE credentials to regain WAN2 connectivity.
• We are planning to release a new version of UniFi Network to prevent this from happening while we continue to roll out this version of UniFi OS.

 

https://community.ui.com/releases/UniFi-OS-Dream-Machine-SE-3-2-7/6e5c8f0a-ab9e-45c6-acba-af2211dd5fa6

 

[flacon030]

je l'ai installé, tous se passe bien pour le moment

Modifié 6 janvier par flacon030

[mprinfo]

UniFi Network Application 8.0.26

Important Notes

UniFi Network Application 8.0.26 includes the bugfixes listed below.

Bugfixes

• Fixed an issue where WAN2 configurations were removed after a firmware upgrade when using 8.0.24 with a Static or PPPoE WAN configuration.
• This only prevents new occurrences. Affected setups need to be restored from a backup before this issue or re-create their WAN config.
• Fixed gateway/console showing offline when WAN interface cannot be found.

 

 

Discuss in Community

[mprinfo]

 

 

Bundled application

• UniFi Network 8.0.26

Improvements

• Added notice for speed test during web setup.
• Improved stability around backup restoring.
• Improved Identity user experience.
• Improved Shadow Mode.
• Improved SFP connection compatibility with modules that do not have a proper EEPROM.

Identity

• Added the option to enable "Require a Verification Code When Loading a Credential" in the Identity settings. If enabled, users would be required to specify an additional 4-digit code when importing Identity Credentials into Identity Apps.
• Added ability to manage devices that have the Identity App installed in the user's property panel, including status and (re)sending invites.

Bugfixes

• Fixed an issue where RADIUS certificates were changed while One-Click WiFi was disabled.
• Fixed an issue with establishing Site-to-Site VPNs while Ad Blocking is enabled.
• Fixed a gateway configuration error when enabling Country Restrictions.
• Fixed RADIUS validation failure when a password ends with a backslash.
• Fixed an issue where the IPv6 Single Network was sometimes broken when changing the assigned network.
• Fixed an issue where some system logs filled up the disk space completely.

[Sakkhho]

L udm se est ou sera bientot compatible HSGMII ?


Envoyé de mon iPhone en utilisant Tapatalk

[mprinfo]

UniFi Network Application 8.0.28

Important Notes

UniFi Network Application 8.0.28 includes the bugfixes listed below.

Bugfixes

• Fixed the inability to upload hotspot landing page images on consoles running the Native Application (UDR, UDM, Express).
• Fixed the inability to see the DNS Shield setting in rare cases.
• Fixed the inability to open Security Logs in rare cases.
• Fixed the inability to select multiple APs in Display Options on the Clients page.
• Fixed the inability to update Virtual Networks from the Topology page when DHCP Guarding or DHCP Options are enabled.
• Fixed the inability to see devices that are Pending Adoption as Site Administrator on Network Application Servers.
• Fixed an issue where mesh links went down due to an invalid Monitor IP Address for Wireless Meshing after updating to Network Application 7.5 or newer and Access Point firmware version 6.6.12 or newer.
• Fixed gateway configuration/provisioning issues when the WAN interface can't be found.

[flacon030]

mise a jour effectué, tous se passe comme il faut

[mprinfo]

Important Notes

UniFi OS 3.2.12 includes the improvement and bugfixes listed below.

 

Bundled application

• UniFi Network 8.0.28

Improvements

• Improved configuring fixed speed on SFP ports when the module has a faulty EEPROM.

Bugfixes

• Fixed the inability to send Identity Standard invites.
• Fixed redundant logging to /dev/tty10.

[Sakkhho]

Je cherche un SE si vous avez un bon plan je suis preneur.


Envoyé de mon iPhone en utilisant Tapatalk

[Sakkhho]

UDM SE reçu ! Une belle bête !


Envoyé de mon iPhone en utilisant Tapatalk

[mprinfo]

Il n'y a plus qu'à joué avec

Bienvenue au club [emoji23]

Envoyé de mon BLA-L29 en utilisant Tapatalk

[Sakkhho]

J attends l installation dans la nouvelle maison.
Je vais prendre une offre fibre Red et brancher un Ont modifié directement sur l udm.


Envoyé de mon iPhone en utilisant Tapatalk

[mprinfo]

Tu me diras si cela fonctionne bien stp

Envoyé de mon BLA-L29 en utilisant Tapatalk

[mprinfo]

UniFi Network Application 8.1.127

 

Important Notes

UniFi Network Application 8.1.127 enhances Firewall Rules visibility and adds tunnel IP addresses and OSPF dynamic routing support for IPsec Site-to-Site VPNs.

Improvements

• Added Tunnel IP to Route-Based IPsec Site-to-Site VPNs.
• Added Dynamic option to Remote Networks for Route-Based IPsec Site-to-Site VPNs.
• Use this option to dynamically learn routes over the VPN via OSPF.
• Added option to disable DHCP Ping Conflict Detection on virtual networks. Requires a UniFi (Cloud) Gateway with version 4.0.1 or newer. 
• Pings are sent by default to determine if DHCP leased IP addresses are in use before allocation.
• Optionally disable Ping Conflict Detection if DHCP allocation delays are encountered on large networks.
• For smaller networks, it is recommended to keep Ping Conflict Detection enabled to prevent conflicts.
• Added validation for IPv6 default static routes.
• Improved application startup resiliency.
• Improved user experience when changing WiFi Encryption settings.
• Improved Device image loading.
• Improved the user experience for configuring UBB and UBB-XG devices.
• Improved U-LTE device registration.
• Force auto Prefix Delegation ID for Gateways.
• Prevent additional Network Isolation (ACL) entries if ACL rules limit is reached.
• Prevent selecting L3 Switch networks for OSPF.
• Renamed the Additional Routes option to Remote Client Networks for clients added to WireGuard Servers.
• Improved validation of Remote Client Networks for WireGuard Server clients.
• Prevent WireGuard Server subnet from overlapping with Remote Client Networks.

Firewall

• Improved Firewall Rules user experience by enhancing visibility.
• Predefined Rules now open in side panel.
• Predefined Rules now show additional details such as ports, states, subnets and other criteria that is matched on.
• Updated predefined Firewall Rule names.
• Added descriptions to predefined Firewall Rules in side panel.
• Improved user experience when configuring Traffic Rule directions.

Bugfixes

• Fixed an issue where the Traffic Rules table is not updated after deleting a rule.
• Fixed an issue where the ISP name was not updated after disabling a WAN port.
• Fixed an issue where speed test results were showing undefined speeds in rare cases.
• Fixed Fallback toggle for Policy-Based Routes not working as intended.
• Fixed misplaced description labels on the Topology page when using the Safari browser.
• Fixed the inability to edit Firewall Rules after re-ordering them.
• Fixed an issue where the Voucher Printing option did not open.
• Fixed an issue where Speed Limit data was lost when pausing/resuming Traffic Rules.
• Fixed rare gateway configuration errors.
• Fixed Radar Detections not appearing in System Logs.
• Fixed the inability to adopt USP-Plug/Strip in rare cases.
• Fixed an issue where Stripe Payment in Hotspot Portal failed.
• Fixed missing Up Pkts on the Clients Page.

[Sakkhho]

UDM SE installé et j'ai viré la box SFR en 2secondes (par chance il m'avait livré encore la vieille box 6 je crois avec BOX + ONT Externe) ; debit 900/1000.

Prochaine update virer l'ONT pour mettre la fibre directement dans l'UDM

 

mais moi qui vient d'un USG  + Cloud Key ... ouf changement de siècle :-)

[jojo]

Le 01/06/2024 à 09:02, Sakkhho a dit :

mais moi qui vient d'un USG  + Cloud Key ... ouf changement de siècle :-)

donc je dois remplacer mon USG ?

[Sakkhho]

Udm se est un peu cher mais si tu es en unifi il remplace usg + key2 + switch poe. 
 

perso j adore. Belle machine. 

[jojo]

j'ai :

• un USG
• une debian pour le contoleur Unifi
• un SWITCH 24 ports PoE

Je crains que je doive donc garder mon switch (ou le remplacer également)

 

Question : est-il possible de le connecter en // (sur mon switch par exemple) pour le pré configurer ? (ou si pas possible de remettre mon USG temporairement si je n'ai plus de connection internet ?)

[mprinfo]

@jojo tu n'es pas full unifi donc l'intérêt de ton installation est pas top car tu ne peux pas gérer ton réseau avec le système unifi. Perso je commencerai par changer le Switch 24 ports 

Chez unifi il y a une nouvelle gamme MAX qui gère le 2.5gb. Je suis pas trop fan car la consommation électrique augmente et faut vraiment avoir besoin de ports 2.5gb

 

[jojo]

merci pour tes conseils. Quand j'aurai changé mon switch je serai alor full Unifi et virer ma Debian du Unifi controler sera un plus.

[mprinfo]

Le soucis c'est que les Switch unifi ont connu une forte inflation 

Que tu prennes un 24 port poe

Entreprise 

Pro Max

Pro

C'est plus de 700 euros

 

Perso j'ai pris un usw 24 poe en Switch secondaire c'est pas mal mais 95w pour le poe et seulement 16 ports poe sur les 24

En principal j'ai un usw 24 pro

 

L'avantage des gamme pro, pro max, enterprise c'est qu'ils ont 2 SFP 10g ce qui est parfait pour les liers entre eux

 

Sur le boncoin on trouve la gamme pro a des prix beaucoup plus raisonnable. Car les gens veulent du 2.5gb et passent en gamme pro max

 

 

[jojo]

Il y a 1 heure, mprinfo a dit :

j'ai pris un usw 24 poe en Switch secondaire c'est pas mal mais 95w pour le poe et seulement 16 ports poe sur les 24

je vais compter pour savoir si j'ai assez avec 16 PoE