Subscribe: Patrick's Soapbox (v8)
http://soapbox.co.nz/rss
Added By: Feedage Forager Feedage Grade B rated
Language: English
Tags:
eth  failover  https youtube  https  key  media  photo  ping target  route test  via https  wan failover  wan  youtube watch  youtube 
Rate this Feed
Rate this feedRate this feedRate this feedRate this feedRate this feed
Rate this feed 1 starRate this feed 2 starRate this feed 3 starRate this feed 4 starRate this feed 5 star

Comments (0)

Feed Details and Statistics Feed Statistics
Preview: Patrick's Soapbox (v8)

my I/O



Published sporadically by Patrick Quinn-Graham



 



Unifi Security Gateway - Multi WAN, multi VLAN, failover oh my

Wed, 01 Nov 2017 21:19:02 +1100

I recently picked up a Unif Security Gateway Pro to replace a pfSense router (I really like the having an integrated configuration for my router, switches and APs), but had one thing I really wanted: I have two wireless networks, and two WAN connections (one cable, one LTE), and with pfSense I had one wireless network going to each, but clients could talk to each other (routed through pfSense of course).

Ubiquiti make it super easy to set up “failover” multi-WAN - so all traffic goes over cable, unless it goes down and then it uses the LTE connection. Being able to make one internal network go over one WAN and the other over the other WAN isn’t something the GUI supports.

In the end I decided the best thing to do was setup one internal network (10.0.113.0/24) to go over LTE, and the rest to go over cable - unless either connection is down (in which just use whatever is available).

Fortunately it’s not too hard to do custom configuration, once you know what configuration you want to do!

You’ll need to put the configuration on to your Unifi Controller. How will depend if you are using a Cloud Key or running it somewhere else. If you’re using the Cloud Key, scp (using your “device” username and password) it to /src/unifi/data/sites/{site-id - probably default}/config.gateway.json

Here’s my config:

{
  "interfaces": {
    "ethernet": {
      "eth2": {
        "dhcp-options": {
          "name-server": "no-update"
        }
      },
      "eth3": {
        "dhcp-options": {
          "name-server": "no-update"
        }
      }
    }
  },
  "firewall": {
    "modify": {
      "LOAD_BALANCE": {
        "rule": {
          "3012": {
            "modify": {
              "lb-group": "wan2_failover"
            },
            "source": {
              "address": "10.0.113.0/24"
            }
          },
          "3013": {
            "action": "modify",
            "modify": {
              "lb-group": "wan_failover"
            }
          }
        }
      }
    }
  },
  "load-balance": {
    "group": {
      "wan_failover": {
        "interface": {
          "eth2": {
            "route-test": {
              "type": {
                "ping": {
                  "target": "8.8.8.8"
                }
              }
            }
          },
          "eth3": {
            "route-test": {
              "type": {
                "ping": {
                  "target": "8.8.8.8"
                }
              }
            }
          }
        }
      },
      "wan2_failover": {
        "interface": {
          "eth2": {
            "failover-only": "''",
            "route-test": {
              "initial-delay": "20",
              "interval": "10",
              "type": {
                      "ping": {
                              "target": "8.8.8.8"
                      }
              }
            }
          },
          "eth3": {
            "route-test": {
              "initial-delay": "20",
              "interval": "10",
              "type": {
                      "ping": {
                              "target": "8.8.8.8"
                      }
              }
            }
          }
        },
        "lb-local": "enable",
        "lb-local-metric-change": "enable",
        "sticky": {
          "dest-addr": "enable",
          "dest-port": "enable",
          "source-addr": "enable"
        }
      }
    }
  }
}



(via https://www.youtube.com/watch?v=Ro4o1pPN3OM)

Tue, 25 Apr 2017 12:44:59 +1000

width="400" height="225" id="youtube_iframe" src="https://www.youtube.com/embed/Ro4o1pPN3OM?feature=oembed&enablejsapi=1&origin=http://safe.txmblr.com&wmode=opaque" frameborder="0" gesture="media" allowfullscreen>

(via https://www.youtube.com/watch?v=Ro4o1pPN3OM)




(via https://www.youtube.com/watch?v=M8o4NOyfrL0)

Tue, 25 Apr 2017 12:44:05 +1000

width="400" height="225" id="youtube_iframe" src="https://www.youtube.com/embed/M8o4NOyfrL0?feature=oembed&enablejsapi=1&origin=http://safe.txmblr.com&wmode=opaque" frameborder="0" gesture="media" allowfullscreen>

(via https://www.youtube.com/watch?v=M8o4NOyfrL0)




I also started a YouTube channel. We taste things so you can...

Wed, 19 Apr 2017 16:00:24 +1000

width="400" height="225" id="youtube_iframe" src="https://www.youtube.com/embed/6XqlduemKcU?feature=oembed&enablejsapi=1&origin=http://safe.txmblr.com&wmode=opaque" frameborder="0" gesture="media" allowfullscreen>

I also started a YouTube channel. We taste things so you can avoid injesting weird colours (unless we tell you it’s great, then you should totally eat these things too)




Two Pats in a Pod(cast)

Wed, 19 Apr 2017 15:58:41 +1000

Two Pats in a Pod(cast):

Recently I started a podcast. You should go listen! Then subscribe. Then tell all your friends and make them subscribe too.




Photo

Tue, 19 Feb 2013 15:25:50 +1100

(image)




Dear John Key

Tue, 13 Nov 2012 16:36:54 +1100

I happen to be wearing a red shirt, but that’s coincidence, honestly.

You may think “I came in as John Key and I’m going out as John Key. The media or our opponents will try and portray that as being too casual”, but honestly that is not good enough.

I find it appalling that you think using the word gay to describe something as bad is doing anything but reinforcing the idea that homosexuality itself is bad. You may not mean it that way. That doesn’t matter. Every time you, or someone else, uses the word gay in this way, someone who is coming to terms with their own sexuality finds it harder to be who they are. It might seem acceptable, and not like directly calling someone a “fag”, but it is just as much part of the problem.

It is not ok when children do it.

More importantly, it is never acceptable for any person in a position of authority to do it.

You might say the media cannot change you. But the citizens of New Zealand deserve better than that.

Sincerely,

Patrick Quinn-Graham




Photo

Tue, 18 Sep 2012 11:21:31 +1000

(image)




Photo

Sat, 14 Jul 2012 21:41:08 +1000

(image)




Taken at Rivendell, untouched other than raw-to-jpeg conversion

Sat, 14 Jul 2012 21:39:33 +1000

(image)

Taken at Rivendell, untouched other than raw-to-jpeg conversion




Photo

Sat, 14 Jul 2012 01:40:38 +1000

(image)




What over 100 iPads put together looks like

Sat, 14 Jul 2012 01:39:24 +1000

(image)

What over 100 iPads put together looks like




Looks strange when empty.

Sat, 14 Jul 2012 01:38:03 +1000

(image)

Looks strange when empty.




Photo

Sat, 14 Jul 2012 01:37:15 +1000

(image)




Photo

Sat, 14 Jul 2012 01:36:18 +1000

(image)




Photo

Sat, 24 Dec 2011 19:10:40 +1100

(image)




QVB Christmas Tree (first of 3 levels)

Sat, 03 Dec 2011 18:04:17 +1100

(image)

QVB Christmas Tree (first of 3 levels)




Photo

Thu, 17 Nov 2011 13:04:13 +1100

(image)




I’m really impressed by the camera in the iPhone 4S....

Mon, 31 Oct 2011 20:59:39 +1100

(image)

I’m really impressed by the camera in the iPhone 4S. It’s not as good, obviously, as the NEX-5 I also shoot with, but it’s at least as good as the other point & shoot cameras I’ve tried.




Squawk!

Mon, 31 Oct 2011 20:51:55 +1100

(image)

Squawk!