Upgrading my Home Network to a UniFi Dream Machine Pro (UDM-Pro) - My Experience

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

in this video i'm going to do the first upgrade to my home network that i've done in a couple of years and that's where i replaced my usg pro with a udm pro or the unifi security gateway pro with a unified dream machine pro because that's the names and yeah for the last couple of years i've been using a unified security gateway pro as my router and it's worked really well i did a video previously talking about two years of unify so if you've not seen that go and watch it because i've talked about the hardware a lot of good things but a couple negative things i've found but i just fancied a bit of an upgrade the usg pros worked absolutely fine but fans a bit of a change and moves something a bit newer so i'll try this out and i'll be good for future expansion if i ever get any 10 gig equipment or want to replace my switch in there with one that has a 10 gig uplink which could be quite good to have but what i also want to do is take a bit of a critical look at this just look at actually how it works what it's good for but also where it's potentially a bit worse than the usg in certain niche use cases because there's a lot of videos on youtube of people showing these going this is the ultimate router this is the best router ever thumbnails of people holding up and screaming into the camera you know that sort of stuff but actually while this is an amazing device hopefully and it should be really good for my use case there's definitely times where this is not necessarily as good as a usg so let's take a look so this is unified dream machine pro this is one of their dream machine lines so it is a separate product line things like the unified security gateway and cloud key they've launched this i think we'll start starting last year end of 20 or end of 2019 they launched these they launched the dream machine and the dream machine pro now the dream machine is a little sort of cylinder type thing a little tabletop thing that's got i think four or five network ports on it and a built-in access point so essentially it's like a unified system in the box it runs the unifi controller it has a unified router on it and it has a unified access point built in the udm pro on the other hand this one here is more designed for small business use or home use where you've got a rack where you want something you know a bit bigger a bit more powerful and you don't mind having it in a rack although if you don't have a rack you can also use this table top mount or you could for example run mount it vertically on a brack and have it sort of mounted flat to a wall the udm pro has a slightly different feature set to the udm it doesn't have a built-in access point you know the idea with this is you'd use an external one but what it does have is an internal hard drive bay you can use for unifi protect so you can connect unified cameras to this and use it as an nvr for them and we'll talk about that a bit later now where the sits in unified product line i'm a little bit i'm not sure because a lot of people seem to see this as being a replacement for the unified security gateways however this is a bit different because it does most the same jobs as a security gateway but we'll talk about the software later but it runs different software and it can only be used with its built-in controller because this acts as a unified controller you cannot adopt this to an external controller so if you're deploying these in say a business environment where you've maybe got a centralized controller hosted in the cloud or on your own servers and then you've got multiple devices out in the field you can't actually use a udm connected to that controller you can only connect this to its own controller whereas if you had a usg you can connect that to an external controller so there are differences there now this video is going to be two parts this one we're going to unbox it take it out try it out install it in my rack i'll show that and i'll do a setup of it and i'll just talk about how it all works how i'll set how i set it all up and then we'll try it out in the next video i'm going to do a tear down of it so i'm going to take it apart look at all the components talk about how it's all laid out and just take a look at the architecture because there's a few little quirks around things like this built in eight port switch it has and how that's all linked together so i'll do a second part of that just to split the video up a little bit so yeah as i mentioned the udm pro is like an all-in-one unify system so it gives you the controller and the router all in one box and the camera nvr if you want that it can also run things like their access control and voice for their phones if you need to and it's designed for small business use or home use like high-end home use and price-wise this costs around 340 pounds which is expensive but actually when you look at the feature set and compared to other things it's not too bad so what we'll do is we'll take out the box and take a look at it so this is it here quite a big box they definitely sort of upgrade the packaging a little bit this seems a bit better than the old one but yeah we can pull this open like that and see what we get and yeah as i mentioned i don't really need this but i'm just really excited to try out because i've really wanted to sort of see one of these in person because i've all seen videos of them yeah that's their shows how to set it up just plug it and plug it in use the app it's a bit weird like yeah when they the first thing all the setup guys say use the app not use the computer which again feels like they're targeting this a smaller home use type thing because i would never think of setting up a router on my phone as the primary option but there you go see what we get that box here i've got very bad angles on boxes but anyway there we go got the box here see what comes it comes with accessory wise and in here we get we get a power cable now this is an eu power cable this is something quite common with ubiquiti stuff i think i don't think they package them for the uk so you always almost always get an eu power cable but then the seller like the retailer i think i bought it from box stock could it be i think the retailer tends to include a power cable so i got a uk power cable with it as well but for mine i've actually bought a separate power cable because this is quite a bit deeper than anything else i've got in my wall cabinet and i'll actually have to move stuff forward in the wall cabinet to fit this so i've actually gone out and bought this right angle power cable just because hopefully that will it'll go a bit less deep into the rack than say that one so hopefully that means i won't have to worry about the depth as much because yeah it's quite a bit deeper but yeah comes the uk you power cable but the retailer did include one then you get the rack ears so these will mount on the side of the udm try that out as well and then just yeah a little little quick start guide manual thing you're just going to get this little box here of mounting accessories i think sounds like it yep so i mean that is a nice presentation isn't it and that's quite nice so what you're going to get here is you're going to get some rubber feet so if you want to stand on a table it comes with those you also get some smaller screws and some larger screws i think the larger screws look like they're to mount the rack ears on yeah they would be i also don't have a clue these smaller screws are interesting take a look at that later maybe replacement case screws but oh that's what they'll be the hard drive and because you can make a hard drive in this for uh for unified protect so they also be hard drive mounting screws that makes a lot more sense and then you get cage nuts now we'll quickly look at these cage knots because is this going to be yep so this is still a slight gripe i have with ubiquinone it's just something to bear in mind and it's me being really pedantic is that unifying ubiquity include cage nuts with all their kit which i really like it's really handy but they because they're an american company the cage nuts and screws include are imperial measurements not metric so i tend to avoid using these on purpose because in a in the uk and presumably the rest of europe generally we use metric screws and metric and cage nuts usually m6 or m5 and my problem is that anytime i put imperial ones in they inevitably get mixed up in a bag of metric ones and then you've got these cages that you'll put in then find the screw doesn't fit and then you've lost the screw that actually fits it and it's a nightmare so yeah come on ubiquity if you're putting eu power cables and put metric screws in because yeah that has driven me mad so many times when i've like put a device in and then one of the cage nuts has ended up being imperial and then i can't find an imperial screw to fit it but yeah i'm just moaning though but let's take a look at the udm so let's play that out and possibly the worst angle possible try and do this over the camera there we go and that's it there let's get out of the way oh smash everything in the process and here it is so definitely nicely packaged a lot better than the old one used to be it's in this nice foam so hopefully that should be quite good for being robust across ship like when it's being shipped pretty sure the old ones came in a cardboard box like a bit foam on top it wasn't definitely wasn't like this cool that comes off and now here we have the udm pro so it wasn't a little bag let's just undo that you basically always do a nice job in their packaging which you know that they're also targeting and targeting is that more of us are slightly consuming audience or just to produce something nice because obviously most or business equipment just tends to come in a very boring box but it is nice experience and there is the unified dream machine pro so that looks really really nice there actually um i really like the style this new equipment they're doing but they've got these like vents on the top and little lcd and the problem is i'm going to put this in a rack next to an older first generation switch and i am absolutely convinced that it'll be maybe a few months before that bugs me and i end up buying a newer switch if only just so it matches it just matches the aesthetic of this but yeah these new ones do do look really nice so what we'll need to do now is we'll just peel off all the plastics on the front so there's this little bit plastic covering the lcd i presume it's an lcd not an old we'll take a look at that hopefully isn't that actually an lcd because i mentioned in my previous video that my cloud keys lcd it's cloud keys oled has like got screen burn over the years so i presume it's lcd hopefully and then here we've got this little hard drive base so is that just oh yeah so you push it in that comes out that's a hard drive bait and then there's a bit tape on it so just take that off there because i think that's it i presume that's just ah that's what it is to hold the front shut i think when it's being shipped so it doesn't pop open so we take that out like that so there we go so what i'll now do is i'll install the rack ears and we'll come back and take a tour of the hardware okay so let's put the rack ears on that's them there what's quite good is the screws are in a proper square pattern so if you wanted to you could actually mount it like that and then use it as a way to mount it like a wall which could be quite useful in certain environments if you don't want a full rack for this although generally when it comes to things like that i tend not to do that you can get quite cheap brackets i can't really call them just like a vertical rack bracket or something or vertical one new bracket or something that basically you can screw to a wall and then actually attach the equipment on using the rack ears and they tend to like mount a little bit better they've got more mounting holes and stuff so that's pension options as well plus you can get ones that like to use so you could fit this next to a switch but still have it vertically which can be really good in a sort of tightly constrained cupboard yep put these in and then we can do the other side as well then we'll fire up and try it out so start there shut up here's the other side and then i'll come back so now let's take a tour of the udm pro so if you look at the front first of all because we've got the rack ears on left hand side you've got this little screen now this is actually a touchscreen as well so you can kind of get status of the device and do very basic operations with it so it's quite nice like that i suspect for example you can maybe tell to do like a safe shutdown and stuff but it's mostly a bit of eye candy just to get a bit of information out of it this also does that unifi ar stuff where like this will show a qr code you'll scan on your phone with an app and then your phone will kind of on its camera will superimpose all the connections and cables that are coming out of it so you can see what's connected i'll probably try it out i don't know how useful it really is in practice but it is a bit of fun and it's yeah it uses that screen there you think there's air vents along the top your hard drive bay eight gigabit ethernet ports for the lan side a gigabit ethernet port for the one side and then a pair of sfp plus ports that can either be 10 gig or one gig one for one one for lan so we'll take a quick look at the hard drive mounting first just probably a bit less to go into the networking side but the hard drive cage pops out the single button there pulls out like that i think about hard drive and i noticed it came with five screws but the manuals explained what it is so with this you can mount a two and a half inch drive or a three and a half inch drive for two and a half inch drive you just align it in this corner here put the four screws in the bottom and that mounts it for a three and a half inch drive it's not tool less but it's it's quick to install so what you have is you've got this little mechanism here and then this not sort of notch here or knob sticking out an idea is you'll you line your hard drive and you can then clip it in and it clips in basically toollessly and then there's one screw here that you can use to put that final screw in to secure it in place so that's kind of nice i suppose i guess that explains why they've done that now i actually won't be using a hard drive in this phone if i protect i'm going to continue using my cloud key and i'll explain that later but yeah you can be hard over there for unifi protect and i think you can go up to presumably you know tens of well over 10 terabytes of storage in this although equally if you wanted a lot of storage and you're really serious about your camera stuff they also do the unifi nvr which can take four hard drives and then supports things like raid so that might be a better option because it's not that expensive because of course with this you've only got a single drive so if it feels you're going to lose all the data that's on it but yeah that's there the only thing i've found is there isn't like any way to like secure that and stop someone pulling the drive out now obviously ideally you just mount this in a secure location but it would have been quite nice for example if there's always like put a screw through the bottom into this just to stop the car a casual person pulling out then you can mount in a rack with potentially security screws and just make a bit harder to get access to but yeah the hard drive pulls out there next up on the right we've got all the network connections so this is when things get a little bit interesting and something i've seen a lot of people very confused by as well so now for the simplest side that requires very little explanation we have this side here you've got an sfp plus port you've got two sfp plus ports and a gigabit ethernet port two of these have little blue globe symbols next to them and these are your one connections so you can either connect your internet connection into the gigabit port over copper on rj45 cable or you can connect it into the sfp port and either run at 10 gig or one gig you can choose and then you can connect and stay over fiber these have little covers in the pull out that they aren't the rubber ones they used to do they're a bit harder to get out but they also look a bit smarter when they're in there i suppose so yeah you've got you've got for your one option you've got either gigabit ethernet or one gig or 10 gig sfp plus next up down here you've got port 11 this is a 10 gig lan port so again this is sfp plus so you can do one gig or 10 gig and you could upload that into one of their pro switches at 10 gig and that would mean you'd have a much higher sort of uplink to your router which could potentially help for things like inter vlan routing because this would be able to root way beyond one gig so that's quite good and it's definitely an upgrade over the usg pro now one thing i'm not sure about here is whether these are assignable i don't think they are because it could be nice for example to have two sfp pluses set on the lan side because that's usually going to be more useful for most people most people do have 10 gig one connections but yeah it'd be nice if they were assignable but i don't think they are so that's the one and 10 gland side of it but what about one gig lamp well for that you've got these eight gigabit ethernet ports here and this is something that's a little bit of a weird design decision they've done here and it's something i've seen a lot of people online talking about and then using the wrong terminology and getting confused and then other people reading the wrong terminology misinterpreting and getting even more confused and lots of really confusing stuff going about online which way i also want to properly test this but you do have eight gigabit ethernet ports on here but this isn't equivalent to say building a pf sense box with eight nicks in it or buying a router from lots of other companies that have eight nicks in them this is a switch so this is more equivalent to having say an external imagine an external nine port managed switch where one of the ports is plugged into the cpu on this and the other eight ports are available for use that's what you've got here you've got eight ports externally and this is then connected to the main cpu over a single port now it is managed so you can set vlans and do all that sort of stuff on it but the downside of this is it's uplinked to the main cpu at one gigabit now that's where i've seen a lot of people getting confused online because people have then said that that means i've referred to this as having a one gigabit back plane and then other people are then hearing that and then assuming this has like one gigabit of total switching capacity which isn't correct like any switch has you know enough switching capacity to allow all its ports to communicate at the same time at full speed but what it does have is a one gigabit up link that means if you've got devices connected to this if they're all on the same subnet or vlan and they're all plugged into this they can communicate with each other a full gigabit speed you know you could have you know eight devices and then four of them could be sending data to the other four at full gigabit constantly and that would be fine however if you've then got traffic that needs to traverse that one gig link from this to the main cpu you're going to be bottlenecked so for example if you've got devices on this on different vlans or different subnets that are going to need to be rooted by the router that traffic's going to pass over that one gig link and then come back to the switch and that's going to be a bottleneck potentially more annoyingly though it seems as though this the uplink comes from here to the main cpu at one gig and then the 10 gig lan port is also connected directly to the cpu it's not like you've got a switch here where the 10 gig port is part of the switch that means if you've got a switch up linked at 10 gig and then you've got devices plugged into this say eight devices in here if those eight devices want to then talk to your 10 gig switch they internally have to go over that one gig connection which will again bottleneck them interestingly i was looking at some stuff online and it seems like when they initially developed the udm pro this was up linked to 2.5 gig to the main cpu which still isn't amazing but it's at least something it could allow you know communication boeing going both ways and so it would be a little bit better but apparently there was an issue that when they had that it meant that you could only run the two sfp plus ports at the same speed as each other so if you wanted for example have a 10 gig link into an internal switch your one sfp plus would also run at 10 gig you couldn't have one of these set to 10 gig and one of these set to one gig so they decided to change it and instead have this linked at one gig but allows you to have separate speeds on these which is maybe better but that's just worth bearing in mind that this is a 8-port switch it will work normally like an eight-foot switch devices on this can communicate perfectly fast with each other but anytime it needs to go through the main cpu it will be slowed down so don't think of this as its individual mix think of this as being a nine port switch where one of the ports is connected into this at one gig so yeah you probably wouldn't want to be a bit careful about when you use this you know so don't for example connect a bunch of servers to this for example and then have all your clients hanging off the ssp port because they're going to be bottlenecked by that link it could be useful for say in a home environment if you've got like hubs for like hue lights or you're high heating you could plug that sort of thing in or you know if you've got like like management controllers on servers they could go in that sort of stuff it's just a bit annoying and i think the only other thing with this is i wish this had been poe because it's not a poe switch because if these switch ports were poe capable that would make it a much more valuable proposition because this acts as an nvr and if you could plug all your cameras directly into this and power them over poe that would be fantastic because you don't need to really any more than the one gig up link for cameras and it would just actually give this a use but because it's not poe and you've got that back that uplink that's restricting it it's a little bit of a niche use but it does have it there but i think for me at first i'm just going to connect it with a single cable into my switch and eventually if i ever get a new switch it's got 10 gig up link i'll be using the sap plus port and i think i'll only ever use these for really low bandwidth devices if i really just need extra ports and i don't have them on my switch so now here we are in the back of it you've got these air outlets i presume it's front to back airflow so you've got those vents there and along here you've now got an iec power inlet so this is actually better than the old usg the old usg had a cloverleaf input for some reason and it meant if you're in a data center and you've only got iec cables sitting around it could be a bit of a pain so having built an ic is quite nice annoyingly i'm also seeing a warranty seal there so that might be a bit of a problem for the teardown but we'll see if it works i might do it we'll see um but i might wait a little while before i do that just to make sure it's definitely working but now over here you can see we have this big interesting connector labeled usp connect and if we pull this cover out what you'll see under there is what's almost like an atx power connector it's not presumably but it's just a large giant multi-pin connector designed for power and you can see next to it it's labeled usp rps off or on for this led and this is for their new rps system the rps is a one new unit that has six power outputs and all it is is a big external dc power supply i've seen people calling a ups and stuff like that it's not it's just a dc power supply but the idea is that you can then feed dc into this to power it and power the device over ac here now there's a few reasons you might want to do that the first one you have is just if you're worried about the power supplies and your switches or routers failing having this could be a sort of backup but that's not really that common because it's rare that power supplies fail i mean they do but it's also you know you still got the risk like the main cpu or the main processor or whatever failing so that's not usually why you would do it usually you do that in higher end say business environments data centers comms rooms and big buildings where what you might have is multiple circuits feeding all your equipment and that can be to the level of literally two power feeds coming from different energy sort of parts of the grid into your building they can come from separate substations and stuff like that or you might just want to run off two separate circuits and that means if one of those circuits or power feeds goes down you can keep powering it so for example if the power feed's feeding all the mains ic inputs goes down the rps can continue to power all the equipment in your rack which could be really useful that's obviously only really in higher end environments like really high-end office buildings or data centers so it's not hugely common but it could be quite nice to have another example could be if you wanted to like run this off a ups what you could potentially do is for example connect the ups into all the mains inputs and then connect your rsp just into the mains without the ups and that means if you ever need to take the ups down for maintenance you can continue to power all your stuff so you don't need to power it down for me in a home environment there's really no need for that at all it would just be a lot of extra money because it was a good couple hundred pounds and provide very little benefit like i'm thinking here you know the only time i could really benefit from it would be that if i because i've got a split load consumer unit i could potentially power the rack between from two different rcds using the rps and it means if i trip an rcd which i do far too often i could you know keep the rack powered but i mean that's rare it's definitely not worth a couple of quid to keep it up but yeah that's what that is there and this is quite good to see because they've now got this across all of their new generation equipment so that's their udm their new switches including the poe ones and i think even they're like their camera nvrs and stuff they all now support this so that means that all your unifi equipment can now be dual powered and this is something that a lot of other vendors do as well i mean cisco's been doing this for years i'm sure yeah i've got i've got a couple of allied telesis switches that also have this sort of style dc input obviously a different one but a similar idea and there's a really good way of doing it because it means you don't need to pay anymore to have a second second dc power supply in all your switches especially if you don't want it you can just plug that in and buy a separate device the only negative of this over their old stuff comes on the lower end switches like the non-poe ones such as my unifi us24s those did actually support redundant power what they had was the iec mains input and next to that was a little dc barrel jack that you could feed 25 volts dc into i think you needed you know fairly high current i think 50 watts rings a bell but don't quote me on that check the spec sheet but you could feed that in there and if you fed the dc in or the mains in it would power it so you could redundantly power them like that i've never done that on a unified switch but i have done it before with edge switches and what i've been able to do is connect the internal power supplies to one feed and then just buy a relatively inexpensive dc power brick from rs components and use that to power the redundant dc input from the second power feed now that's on their case in the lower end switches and with those it meant none of the higher end switches are the poe switches supported it so you do have the benefit of all devices being able to support it now but what it does mean is that on those lower end non-poe switches you now have to spend a significant amount of money for the external rps unit which is you know a good couple hundred pounds if not more whereas previously you could buy a power brick for under 50 pounds and plug it in so that's the only disadvantage is just that on the lower end switches you now have to buy a much more expensive unit to power them but it does mean that all the devices can now be redundantly powered so i think that's a sacrifice it's worth making and realistically if you're in an environment where you can like where you've got redundant power feeds and stuff you can probably afford to buy the rps you know it's not designed for home use at all but yeah that's there so that's the back of the udm there definitely seems like a really nice device very heavy and i'm holding a really bad angle to film but yeah definitely seems like really nice hardware so i'm really excited to get this in the rack and try it out so now before i start taking the rack apart and ripping everything out to you know make space for this what i'll do is i'll quickly power up on the table here just to try out and see if i can get at least into the setup wizard that way i can just verify it is working before i start putting into the rack so yeah let's go and do that okay so now we're finally ready to try it out so this will be the full setup i'll get it in the rack for that but i just want to check it works because i don't you know rip the whole rack apart and find there's a problem with it so i'll bring a laptop in there what we'll do is we'll create the laptop in my ethernet and hopefully i'm presuming it'll just give it gives a lot to an ip address and connect to the udm's ip and it will give me some sort of setup interface currently fancy using the mobile app so plug that in there that and then plug that into the laptop and then hopefully if i plug in the power cable udm should start up just put that in there here we that's not go in there i haven't switched the socket on that explains when it's not on there we go so we see the screens come on in it and it says usg pro is starting all right you you dm pro sorry but yeah if you just wait wait for that to boot up i can see it's now got a link on the port the laptop's connected to it's gone away again though but this seems to be booting up so it works and the other good thing i've noticed is i can't hear that either the fans are off or running at like a super low speed so obviously it'll be interesting if you try to try it all properly once it's you know see what the fan's noise is like when it's actually got load on it it's actually being used but as far as i can tell right now that's almost silent which compared to the old usg which you've seen in my previous video is quite loud like you can hear the fan noise even like if you're standing outside the cupboard it's in and you listen carefully you can hear the fan so this being silent is pretty nice now imagine it won't be silent if you're pulling you're trying to root and do ids and ips at 10 gig because that's quite intensive but being silent just under normal operation is quite good so it's taking a really long time to boot up but i suppose it was booting a full linux system so yeah there we go so it's now up there and it's saying plug-in cable so i suspect that's yeah it's telling me to plug in a one connection though because it's saying plug-in cable is pointing at the one port so i also need to connect an external network connection into that now i've got one here i'll use now this obviously is a a lan connection for me it's not a one connection but it'll do um just to hopefully let me set it up obviously in actual practice this will be going into my modem but we plug that in there hopefully it's got a link there and yep it's now seeing one cable plugged in connecting to the network connecting to the internet okay yeah so that's the one thing i found this year so now it's the internet connecting it's showing ipn gateway which obviously is on on my lan side but it is showing connected to the internet and now that is one thing we'll talk about with this is that it does require an internet connection to get it set up which is a bit of a problem so it's now saying there i'm going to get the unifi app and set it up presumably through that and what it'll do is i'll use bluetooth to like help the app find the device there'll be other videos of that working but i really don't want to set this up on a phone you know i don't get the obsession with oh i can't wait to configure my network on my phone for the first time so hopefully if we go in here i can find out what i p it's got 192.168.158 so i'll try one two was it eight one fifty what one dot one cool there we go so that's give me the unified web interface so you don't need to use the app you can use that and you can see on the screen there it's now saying yep setting up and it's showing a picture of a laptop which pretty amusingly i'm pretty sure that's like the mac os snow leopard wallpapers are showing on that picture of a laptop but yeah yeah it's quite nice and now we have the initial setup wizard so it seems to be working obviously i'd have to go through here and name the device press next all that sort of stuff but i won't do that right now i'll get it put out in the rack and then we'll set it up there with all the other equipment's installed as well but it seems to work so what that now means is now we need to go out take all the current equipment of iraq and then install this so that's gonna be fun okay so here we've got the current setup in my whole cupboard cabinet i've made loads of videos about this before but i'll quickly go through it at the top here we've got 24 port patch panel almost all of these ports go off to network ports on the walls around are in the flat then there's like one for the access point a couple of cameras and on the right hand side the right most one is actually connected to my master socket and that's a dsl phone line extension i think on rj45 to rj11 cable that connects my modem up below that we've got a poe injector that's because i don't have a poe switch that's potentially a thing that might i might get in the future but currently i'm just using this which is an 8 port rack poe injector so i can just patch cables from the switch through that and provide poe to things like the access point and cameras next i've got the part we're replacing which is the security gateway pro this has been absolutely fine it's been a really good router but that's gonna be taking out the udm prone instead we've then got my cloud key gen 2 plus which is currently running the unified controller android if i protect for the cameras with this i'll be keeping unified protect running on this but i'll be taking the controller off obviously and running on that on the udm and when we do the setup of the udm i'll talk about why i'm keeping this for unified protect and not using the udm they also sell rat mount kit for this which is fairly expensive it's about 100 pounds but i could get that in the future i've not ever bothered yet i might do that at some point i'm just gonna shelf at the moment and on the right hand side here we've got my open reach modem so this is just a bt open reach vdsl modem and that's what i use my broadband so it connects up into the phone extension up there and then into the usg finally down here we've got this pdu which is just a standard 6 port one with the uk plugs it's not smart or managed or anything it does the job though that's there and then flex out of that comes out the bottom of the bottom of the rack since actually i did the first video i've since put a sort of metal plate in here and put a grommet to let the cable come out so it's a lot neater because it doesn't just dangle out a big square hole and that cable runs around around the cover and plugs into a socket to power it so that's all i've got there now while i'd love to just pull the usg out and slot the udm straight in we can't really do that there's going to be a bit of a problem and that's because if we measure the udm pro with the power cable in the back even using the right angle power cable it's 31.5 centimeters deep however if we measure this cabinet from the front to the back the cabinet itself is deep enough but where the rails are currently mounted they're only about 27 centimeters from the from the back so it wouldn't fit it would sit too far forward now this cabinet is adjustable and it's a total of 390 ml deep so what i can do is i can take take some equipment out i'll probably take most of it out to be honest those then screws at the top and bottom i can loosen off take the cage now and then move the whole assembly forward a bit which means the cables will get a little bit more squished but there's currently enough space i think because they sort of stop at this lip here but the glass door actually sits way in front of them so i suspect that they might be it'll be tighter for the cables but i think i'll manage i'll also see how i feel about the patch panel because currently it's at the very top so i'll need to see when i move this forward will i still be able to get the cables in and out or are they going to get caught under this lip in which case i'll drop the patch panel down one new but we'll see how we get on with that so all it's left to do now is power all this equipment down pull it all out adjust the rails and set it all up again [Music] [Music] okay so here we can see the progress i've made so i'm just taking everything out and then i've dropped the patch panel down a couple of view the reason is that to adjust these screws to move the things there's like a cage not inside and there's a screw down here and then one up at the top there so just drop the patch panel in a couple of you so it's at least secured in so it's not hanging by the cables or anything and that let me get a screwdriver in to get stuff out everything else i've pulled out just left the shelf in because it's in the middle anyway and it's not heavy so it doesn't really matter and then for the pdu because the cables just sort of it's a really long flex you know attack attach the wall i can't really pull it out i've just unmounted it and just stuck at the back there and that will let me get a screwdriver in to move these forward so all i'll need to do now is go in pop these screws out move all the rails forward and just try and work out how far you move them forward to get enough clearance for the udm but without moving them too far forward and just crossing the cable up against the glass so go and try that and we'll come back okay so when i move the bars forward and i was quite lucky because you can only really on this rack put it into specific positions based on those cage not cut outs i suppose you could maybe cut the gap between two of them and slide it in the middle or something but yeah without modifying it you can only fit it in those individual positions and this one i've got it in is exactly 31.5 centimeters from the back so like that is the closest it could possibly be and if it hadn't fitted in this position it would have had to bring it even further forward and that would like lose me loads of cable space and give a little wasted space at the back so i got quite lucky there now it is a lot closer to the front than it used to be and but i think it'll be fine if i like plug a cable in like that into the patch panel like that say for example it'll obviously need to bend down or up but the door still shuts perfectly fine over that so there's no problem there at all really i think we're okay it'll be tight when i put all the cables in but i'm sure it'll be fine um i'm probably gonna replace these with like those slimmer cables at some point but yeah seems good what i think i'll do is like i mentioned earlier i don't think i'm going to put the pack panel right back into the top slot just because you can still get the cables in and out but it'll be a lot fiddlier than it was before and it was already a bit fiddly what i'll do i don't really need that extra space i mean on this rack it isn't even numbered this is officially a six u rack it just happens to have an extra u the top and bottom that you could maybe put something in but it's got an additional essentially got eight used but only six are numbered so this isn't even really unofficial you because you can't get a screwdriver into either properly so i'll drop the patch panel down to this one here that'll be fine because i've always had a spare space in it and if in the future i did need that extra extra u i could either move it back up or i could put another thing in the top it would only ever really be if i got a rat point for the cloud key in that case i still need a shelf for the modem what i could do in that case is i could put the shelf at the top put the modem in the very top or something where it's not really needed to be accessed so that's fine so what i'll do is i'll put the patch panel here drop the shelf down one new and then get all the new equipment installed [Music] so [Music] okay so that's all done all the equipment's now in and i always love how neat this all looks throughout any cables i'm always like oh can i just keep it like this without cables but no i need the cables but yeah that'll fit absolutely fine so i've dropped the uh patch panel down one new just so it's here much more accessible pe injector here the existing switch already had and i've got the dream machine in the pin all ended made me realize that i didn't really go about the right way because i tried i put the udm and then tried to feed all the power cables at the back and then couldn't get in because the power the udm goes right to the back but it does fit fine and i've checked and the new poe switch is like the 24-port pro poe switch is the same depth as udm so it means if i got that in the future i can just replace power cable with another right angled one and i know it will fit i don't need to do this ever again hopefully and i did think about potentially you know do i get a deeper rack but the problem with that is that it would i'd have to try and replace this the patch panel's already run through it and stuff and i've taken more cupboard space than i need and this should be fine the door will shut over which is good so yeah that's all installed now to get it all cabled up and then we can fire it up [Music] so [Music] uh [Music] okay so they got all cabled up and that was a bit of an epic because a few different issues i had um the first one i had it was when i went to plug in the modem i realized that now because this pdu is further forward the power brick wouldn't plug in with the pdu in place so i tried pulling the pdu out but then couldn't get the p can get the power brick back in with this shelf and so to take the shelf out put plug the more time in put the pdu back in and then put the shelf back in so it's definitely not ideal but really it's the only option other than move the pdu up on you and put yourself in the top i suppose but then it makes it harder to access this kit so yes it's not ideal and in hindsight if i'd had a deeper rack it would have been fine but you know you can't predict necessarily needing you know replacing a thing you know several years down the line and things i'd rather have a shallower rack if i can at least fit it even if it's a bit inconvenient then have a much bigger rack that juts out into the cupboard and takes up loads of space so that was fine now that's done we've got the mounted the only other difficulty i had was when i was cabling at all i just hadn't really thought and that was me first of all obviously it's a lot tighter because it doors closer to the cables but the problem is also these cables have been sitting here for like two plus years plugged in and it means that they've kind of like naturally bent into into a suitable shape and position and i just took them out i just put them to pull them out through them in the bag and might plug them in again so they're all plugged obviously into different pores and it meant that some of them like the connectors were twisted so they wouldn't necessarily they were lining up the opposite way up from what they needed to be or some of them were meant to be really stretched be really long so we're bent to be short and i put them all in the wrong holes and i couldn't necessarily get them all to fold flat so that was pretty annoying the door does shut now i've had to really squish them in and it looks like a total mess but that's just because of the only way i get the door to shut is just properly squeeze them back and then shut the door why this did happen when i first put it all in so what i suspect will happen is after maybe you know a few months or whatever of having this installed the door shut the cables will slowly start to like you know remember their new shape and sort of bend into that sort of new shape and they'll stay and it'll be much easier shut the door afterwards so i'm sure it'll be fine as i mentioned i might replace these with something like the slim run cables additionally i also don't really need all the ports patched in like obviously a lot of these do have devices on them but not all of them do so i could just take a lot of cables out and only patch the ones i need so that's the other option as well um nothing really much to report so we can go through it again so we've got all the ports on the top to go out to all the rooms they're all connected to devices here i've got rough color coding where the orange cables just go to like any devices the yellow cables go to end devices and ports and stuff but they're generally like a sort of trunk through the network so like this one goes to my access point these two goes a different switch this one connects the motor the router to the motor and the roof to the switch and stuff like that so the other ones kind of mean they're like network backbone almost and then the blue ones are cameras they've got the poe injector installed and seven devices are patched through this so i've patched through the access point the cameras the cloud key because i'm just powering that over poe and my raspberry pi used for my home automation then everything connects into the switch either directly or through the poe injector and then here we can see we've got the udm pro connected to the switch using this sfp rj45 module that's just to give you an extra port because the switch is currently full apart from these two but that's just uh again a link across the top for hdmi so i thought always we'll use a sex report here so that's just freeze free up all the switch ports to be used for the patch panel so sap charge 45 an rg45 cable going into the switch port on the udn pro then for the internet connection i've also got the dsl lighting comes in from the patch panel up there on the top right it comes down here into the modem and the screen cable comes out the modem into the 1 4 on the udm so that after an epic of rearranging everything and pulling equipment out several times trying to get everything to fit it's all now installed so what i need to do is go and fire it up and do the setup now whereas if you're installing this normally and you're doing this you know as a sort of i don't know if you're replacing this and thing what you could definitely do is back up your old unified controller config restore it onto the udm pro and it would just behave like your old one with me because my config was so old and now i've done a bunch of updates there's weird differences between what my config has in it and what the new unifi controller offers or slight differences and it's just a bit messy so what i want to do is to set it all up from scratch and it means i can sort of show the setup process as well so what i'll do is i'm going to set all this up but first of all i'm going to go through factory reset all my existing devices and we'll come back and do the first power up with udm pro okay so now off camera i've factored reset all the unified devices so all you do is just hold in the reset button on the mall and then until the white light goes white and then it's reset so i've done that to the two switches and the access point it's there already i then unplug the cloud key gen 2 plus and the cameras from the pe injector just so they're not going to get powered i probably won't set these up on this video but i'll need to reset this as well and reset the cameras up and stuff but i've already done a video about the unifi protect cctv stuff so there's no point showing that again on this video so then for that for now just so it doesn't confuse things so all you need to do now is if you turn the power on everything should start up so turn the main power on that fan is actually the switch 3dm silent but the switch's fan turns off once it's booted up and we see the udm is starting so we can let that start up and then once that starts up i'll plug the laptop into the network over ethernet and do the initial desktop okay so that's everything i started up and the phantom switch is turned off so it's totally silent though which is really nice compared to that old usg that did have quite a lot quite noticeable fan noise and then we see on the udm it's now saying no ipaddress found restart your modem this is like what we saw on the table where it requires an internet connection to really get past the initial setup that's pretty bad instructions because there's restart your mod in but it's because my modem here uses pppoe and because that's not set up it's not going to get an ip address so you know if you're you know i saw some sort of novice setting this up you could just sit in like indefinitely restarting your mode and wondering why it's still doing this because it's not that my modern reason restarted because i've not set up the poe settings but you can see there's nothing advanced setup use a mobile app or presumably laptop as we saw earlier so i'm going to ignore this message here because it's just it's not set up jump over to laptop plug it in and try and set this up okay so that's all the equipment now powered up and all devices are just sitting with white leds which means they're ready to be adopted to the controller and what's really good with all the unified stuff is that when all the switches or sets like just are just factory reset they work as unmanaged switches which means i'm actually sitting right now at my desk with my laptop plugged into stocking station which is then plugged into a switch and then that switch is then connected to another switch and that's what you then upgrade up link to the router so because they're all acting unmanaged my laptop is working absolutely fine i don't need to plug straight into the udm which is good you can see here my app doesn't got an ip address over dhcp automatically so that's really good one and two one six eight one two two seven so i imagine if i just go to one two one six eight one one that'll get me into udm so there we go like this time lapse things like trying to show you how amazingly quick it is to set up but you see it's sitting here saying connecting to internet that's trying to connect now it will never be able to do that with my connection because it's ppoe so it needs a username and password so if we press advanced internet options it lets me set up my internet connection so it's trying to use dhcp which isn't right i need to use ppoe i'm going to fill in my username and password for my connection okay so now put my username and password in what is really good here actually is you can say to use a vlan now that's not something i need with my modem the open reach modem doesn't require a vlan but if you're using an open reach connection and you're using certain modems you actually do need to set a vlan tag and it's really good it supports that because i was thinking what if you have a modem that isn't an open reach modem just a aftermarket vdsl modem would does this have the facility to set a vlan but it does because thinking yeah if it didn't have that you'd have to you know run it through a switch or something um so yeah i don't need that but that doesn't mean you could use this but that mode and it does require vlans admittedly this is really annoying i don't really like the idea that it requires an internet connection just to do the initial setup but we'll just put up with it for now dns servers will leave as default i assume it will get over pppoe connecting there we go so now it's testing for internet connection again and hopefully this will now connect and there we go so it's connected internet so that just worked straight away which is really good hit next no don't do that so now it has me set this up so that's i'll just call udm pro that will do i'm going to turn the service fine and now this is where i have a major problem with the utm and some the way unifies going with things so i'm going to rant now but anyway with the udm and the cloud keys with their latest firmware you now must have a unifi account to set them up now this is something i really don't like i was aware of this before i bought it so i was basically setting myself up to have this rant anyway but yeah even though these devices can work totally standalone totally offline and don't have to have remote management enabled you still need to use a unifi account to set them up now this is a big complaint i have because if you've got a self-hosted unified controller you don't thankfully and i really hope you don't change it to make that a requirement but because you can't even use a udm with a sec with a self-hosted controller if you buy a udm you have to use a unifi account as i mentioned you can turn the remote access off you don't need to have all that enabled so it can still operate kind of offline i mean if you wanted to you could block all the unified servers in the firewall but that would stop the updates working but i don't like this because it means that obviously for now this will work totally fine but what happens say five years down the line if i'm still using this device and ubiquity have decided to stop supporting it now you better quite good at supporting old devices they do support them generally to a point that they're now that by the time they deprecate them they're kind of a bit useless anyway or just a bit outdated in terms of performance but what would happen say yeah five years down like 10 years down the line i or a business is still using a udm pro and still wants to get it back working again they've got no budget they just need to get the thing up and running again but something's gone wrong and they've had to factory reset it if you then hit this stage where you have to now sign into a unified account what could have happened by then is ubiquity could have first of all gone out of business or they could have changed their change their login servers so that the login page here no longer works if they change their login api for example and if we're assuming the device is now out of support they've potentially not produced a firmware update to address that to connect to that new api and you can fairly easily get to a stage where you simply cannot log into it anymore because their apis are no longer working with firmware you've got you also could have the risk of ubiquity just actually deciding to stop supporting devices and stop letting you log in which could be really annoying if they decided to go down that route because that could basically prevent you from setting up an older device they could just say no we're not supported anymore and you also can't set it up as from scratch i really hope they wouldn't do that and i imagine there could potentially be legal issues if they've actually stopped people explicitly log setting up a device but yeah the risk is that in the future if they stop releasing firmware updates and then change their api for login you could actually prevent people logging into this so yeah this is a complaint here and i really wish they just didn't have that they could just totally let you go past this and then optionally say do you want to sign into unifi account for remote access yes or no and you could skip it i'm pretty sure you used to be able to do that on the cloud key with the older firmware but anyway we'll just have to put up with it so i put my username and password in there hit next that's now done so it's now logged in and it's detected my account so it was quick enough to do but yeah i don't like that um update schedule you can tell to automatically do updates i'm going to disable that and then i can manually install the updates but you could set it to update automatically however i suspect that might end up restarting stuff as well which is why you have to pick a schedule so i'll just leave that undisabled hit next now here there's some other things you do auto optimize it also optimize wi-fi and network performance may as well leave that on we'll see what it does later i'll leave diagnostics off hit next starting speed tests that just test my broadband ubiquity does this all all they really do is just test your broadband and then it means that it knows how fast your connection is so it can then compare the speed of your connection to the amount of traffic going through it and literally just give you a graph of like how highly utilized your connection is so let's finish that and again with this i'm wondering in the setup process again similar to the login if you say your firmware got out of date and they're no longer releasing new firmware for the device what would happen at that speed test because that's enforced if if the speed test server changes and stops working or disappears could you get to a point where you hit that you get get some sort of error because it can't connect to a speed test server that's no longer there and then you just can't proceed past that in the setup stage i do feel i wish this had like a way you could just skip the setup wizard go straight into a totally blank unified controller and set up from scratch without anything that could potentially be affected by external servers changing and firmware not being updated but anyway that's done with broadband speed yeah it's close enough okay so that's now set up so you can see it now identify my account it's created me as an owner super admin with my unifi account you can then add local users that then aren't tied to your unifi account but i don't think you can remove your sso like your single sign on unifi account which is a little bit problematic if you're setting these up for other people you would basically have to you presumably wouldn't necessarily want your personal or your company's unifi account sitting on all your clients devices so you did potentially then set up unified accounts for lots of different people and then because you can't take the one that's the unified account signed in off of it annoyingly but anyway so it's not that there but you could add other users later and i think it probably will now you can see here it has defaulted to enabling remote access so i'll be turning that off because right now what i could do is go to the ubiquiti website log in and manage it remotely we'll take a look at that in a minute you basically account device name it's all set up so hit finish configuring your device and hopefully we should then get into it now the good thing is this actually is a very quick setup process i'm very impressed like i mean it's we're what i'm actually using the timelapse now but we're eight minutes 50 in and we're basically done with the initial setup and i've been you know stopping to talk about stuff and having a rant in the middle of it so you probably actually get to set up in under five minutes at least through this first step that's now doing updates of course so i may as well just let it do this and i'll i'll come back once it's done because i don't know how long this is going to take so the edm's updated took a few minutes there restarted a couple of times now it's up and this was just sitting on a white screen after a while but i was refreshed and it's taken me into this so it's taking me to the udm a little bit feedback i could type it right in there about making me have an account anyway and that's it done so here we can see the main interface we'll take a look at this a little bit later but what you can see is it's showing network protect access and talk so these are the applications you can then install so access and talk aren't set up so access is access control and talks for their new phones but that's the beta i'm not using those obviously even if i pretend it's on this but i won't be using that on here as i said i'll run on the cloud key and we'll explain that in a second so we're going to use my network so we go in here takes a little minute and that's it there so we can see in the top right it's shouting saying three network devices detected and sure enough i presume if i go into clients or not clients if i go down to unified devices here yeah we can see there's those three devices that are ready to add that's my two switches and my access point so i presume i could just go into either of those and just say adopt or what if i press add in the top right will actually do automatically possibly so that's done something potentially so hopefully if we go over to unified devices yep that's them all now i'm still ready to add and what if i have to manually adopt them there we go so that notification didn't seem to do it but he's going to each of these click the thing click adopt see that for all of that is that how it's always been but it's obviously a little bit more slick than the old interface getting ready i can see the switch next maybe the led has gone blue which is good so it is now adopted and that should be setting them all up hopefully of course everything's currently is connected over wi-fi over wire connection so the wi-fi is just saying no clients could not set up any networks on it yet but it seems to be working see here the udm processing experience is one gigabit because obviously i've only got one guy connected to the switch it obviously had 10 gig connected to the 10-year gland side i presume that would say 10 gig um that'll be a while off but hopefully here that's all set up so they're still all getting ready now what i'll need to do is i'll just go away off camera and just set up all the networks because if we go into for example settings down here this is give me a video now how to do it i've done that before i don't need it um lots of tutorials and quick start guides and all this sort of stuff but what i need to do now is set up wi-fi networks local networks all that sort of stuff so that also needs done because currently only got one lan network so i'll go away set up all the networks vlan's wi-fi access point or my wi-fi ssids and all that sort of stuff i'll just get it all working exactly how the old one used to work then i'll come back and show it all working and talk about my setup because i won't do a whole setup guide of all this like really in-depth stuff here because that's custom to my network there's other videos out there that show how to do it and actually teach you how to learn how all this works so you can then design your own network but i'll set all this up and come back and talk about the setup process okay so i've now done the initial setup and i've been using it for quite a while good few weeks now just try it out so what can i do is go through and talk about how i found it so here i am in the main application itself this is like the application and settings global to the udm not the individual applications like the unifi controller and because here it is running here it's showing the cpu load and stuff down there and you can see the cpu temperature is at 57.8 degrees and that seems totally fine it's classing that it's pretty low and the fans are totally off and it's been totally silent as far as i can tell so i'm really happy with it even under use in that cabinet i don't notice any fan noise which is fantastic so this is our main interface here we can go to updates and this shows all the applications and what i've done here is i've updated it all but i've turned off all the other applications of stops protect access and talk they're all disabled so all i have now running is unified network and this is just running unified controller and nothing else yeah it seems pretty good so that's all working but one thing i've mentioned quite a lot throughout this is the remote access so let's take a look at that so as you can see up here i'm currently connected to just the udm on its local ip address on my lan and that's fine but if we come over here you can see we're now at unifi.ui.com so even though i'm currently on the same local network as it that's kind of inconsequential right now i could be anywhere in the world on any internet connection or on any device log into my unifi account at this particular url and i'd be presented with this and what you can see in here is there's my cloud key for my nvr which i've talked about before and here's my udm pro and if i click that i can come into here and i'm now into my udm and from here i can go into things like unified network i can go to the system settings down here as well and i can fully manage the device now this is something that i really do not like i can accept it for cameras i can accept wanting to have cloud access to my camera so i can check them if i'm away but i do not want to have remote management access to my network there's i just don't see the points if i want to connect into my network to remotely manage it i can use a vpn for that and the reason i particularly buy unifi equipment over alternatives such as cisco's meraki aruba instant on those sorts of platforms is because it's remotely manageable and there isn't enforced cloud access so i really don't like this so i don't want to be using this remote management now it is enabled by default but you can turn off so that's fine that means i'm happy to use it so as you can see we're in the cloud portal now if we come back over to local portal and we go down to advanced we can go through here and if we scroll down here here it is you can see it says remote access now if i turn that off i'll give you a little thing you see here just give a warning press disable access and that's now turned off remote access so now if we come back over to the unified portal refresh that page probably and it's still showing up there but yeah yeah that's it it's gone now so it just took a second but you can see now the udm has disappeared from my unifi account so now i can't remotely manage it and that's how i want it one little quick quirk i'll say because it did confuse me for quite a while is that you can only access this remote access option if you're logged into the udm using your unifi account as i mentioned earlier you can set up local users on the udm and i do that normally but if you log into your local user this option doesn't show up so you need to explicitly log in with your unifi credentials to be able to actually disable remote access which is a little bit annoying but there we go i've disabled remote access and now remote access is turned off so i'm happy with the security of it all again however this is why i've kept saying throughout that i'm keeping my cloud key for my cameras i alluded to this in my previous video but with this you can see this remote access setting is global to the udm it's not for individual applications so it's not possible possible for me to say have remote access enabled for unified protect but disable it for unified network it's all or nothing so if i were to run unifi protect on my udm and i wanted cloud access enabled for unified protect i'd also have to have cloud access enabled for our unified controller and unfortunately with unified protect if you want to use the mobile app you need to have cloud access enabled even if you just want to use over your local network you can't add it based on ip address so you have to have the cloud account enabled so this is actually one of the reasons i went for the udm was because i no longer was happy running the unifi controller on my cloud key because after that update it meant i couldn't have cloud access enabled unified protect without also exposing cloud access from my unified network so what i've now done is i've now dedicated the cloud key to be just an nvr with cloud access enabled and the udm pro is sitting with cloud access disabled so it's running a unified controller locally so yeah i'm not going to be using the udm pro for unified protect and that's purely because if i wanted to use a mobile app i would need to enable remote access and with that i would also have remote access enabled for my unified network controller so i've just disabled it for now now if in the future ubiquity changed it so that i could add the unified protect udm into the app just based on the ip address and i could use the app with remote access disabled then i would be totally happy to move unified protect onto the udm and just use it over the local network or over a vpn but for now i'm going to leave remote access disabled but yeah that's how you disable remote access but other than that i've been very happy with it so we'll jump into unified network here and it's working so this is the new interface you're seeing here and yeah it looks really good it gives you sort of wi-fi stuff that shows you know traffic going out and all this sort of thing but it's just a very high level summary it's very aesthetically pleasing anyway on the left you can go through different devices if you look at the topology it gives me a nice little graph of the how the networks all laid out which is quite cool so you can see we've got the udm hall cupboard switch that thing connects to the office switch there's all the devices connected off both of those switches really really nice go to unified devices this shows me it shows all devices we saw this before that's some updates there let's update them and we can see the experience here for this switch is 2 gigabit and that's because this switch is connected over link aggregation i mean it's not quite two gigabit because it's load balancing across them essentially but yeah i can get the sort of terminology they're doing here so we can come in here and see all the devices and this basically lists all devices on the network and it's pretty good although it does seem to be a bit weird at detecting devices for example these two red hat devices here aren't red hat linux machines at all they're android phones so i don't know why they're showing up as red hat it's just a couple of weird things like that i think it also detects this device here as it's showing like a symbol of a macbook but that's a printer but it's detecting it as like a macbook because the printer is air print compatible so it sort of it listens on a similar device to port to mac it's just a little bit quirky like that although it does take there's a printer in here it's just got a weird yeah it's got a sort of laptop a mac because of pictures there's a few little quirks with it but it does generally work pretty well now it is worth mentioning though that this is a new interface what ubiquity have done is they've launched this new style unified controller but it's not actually finished yet it's very much in beta but it's the default ui you get when you log in and you come down to advanced settings here you can see it says up here not seeing everything go to classic settings now if we press that that will actually take us down here and it let me pick to disable the new user interface and this is the thing there's some features in this new user interface that don't actually work a good example i found that was driving me mad before i realized is if you come down here to unified devices pick one of these switches and also we've got all the switch ports now if i want to set these different ports on different vlans so i've got a group of ports and i want to configure them all to have the same port profile you can't do that if i come down to device here with this new user interface i can only pick one of these ports at a time and i have to go into one of them and then in here i can pick a port profile and i was going through thinking is this the new is this how you have to do it and trying to pick individual ports i had a 24 port switch i was trying to set them all to the same port profile and it was taking ages and i remember before that i didn't have to do that but sure enough if you switch the old and old experience it's fine so here we are back in the old experience and likewise we come back into the same switch the whole cupboard switch and we've got all the ports but we come here i can now pick multiple ports at once like that come down here hit edit selected and then i can change the port profile on mass and that makes a lot more sense so it's good to know that that is still all there and at least it seems that ubiquity are aware that the new new experience does lack some of those features so hopefully they won't remove this old experience before they've moved literally all of these features including things like this over but it is weird they kind of throw you by default into a beta interface because that would confuse a lot of people and even for me who is someone who's configured a lot of ubiquity stuff before using this older interface even through me and i was thinking wait i swear there's a way to do this in bulk before but i couldn't find it and i was actually i got halfway through the switch changing all the port profiles before i thought actually i'm gonna go and change it to the old experience and sure enough after doing that it worked fine so i'm kind of trying to by default use the new experience because it is a lot nicer i just want to you know try out at least but i do find myself quite often to flip back into the old experience just to do little things like this so hopefully they'll update that soon though but just while we're in this classic interface you can also see that slightly dodgy device fingerprinting i've mentioned before but almost a bit more noticeable here whereas if i go into my laptop here if i click on my macbook pro so like that one there for example you can see if you go into device fingerprint it's fine it just detects it as like apple macbook that's fine but if i come up here and pick the same laptop on the wi-fi because the laptop is currently connected to both ethernet and wi-fi if i pick the wi-fi entry for the laptop i mean look here you can see that it's detecting as an apple macbook pro 16-inch 2019 it's not it's a 15-inch 2016 so it feels like they're trying to be too smart with this device fingerprinting and then failing because they're obviously trying to go find enough grain to go down to the level of the exact screen size and model of laptop but they're not they've not got precise enough fingerprinting for that so they're detecting it wrong so i mean it's not a problem um i mean i'd i've never actually used or device fingerprinting like this in practice but maybe if you were trying to use in practice and you're trying to like find the specific device this could throw you off because you could potentially be looking for a 16-inch 2019 macbook pro and totally ignoring the one that actually is because it's a different model so there's a few little quirks like that but it's not the biggest deal in the world likewise actually when i mentioned the printer had the wrong icon on the classic interface you can actually see even more because in the new interface i think it didn't detect as hewlett packard but if i click the printer now the device fingerprint is saying it's an apple macbook air 2017 made by apple it's definitely an hp laserjet so there's just a few little quirks with this and i don't quite i think they're just trying to be a bit too smart with it and then failing but it's not the biggest deal and hopefully i'll fix that in a future software update so now as i mentioned earlier there's just a few little features of this that make it a bit more limited than some other devices like the edge routers or pf sense or bios or all those other routers one of the ones i've found is around one configuration here we've got my up here we have my one connection i've gone into it it's a pppoe connection i've removed the credentials just to blur them but there's normally username password in there and it just gets an ip address automatically now one thing a lot of people complained about with these is that you used to not be able to have multiple one ips you now actually can they finally changed it it took them way too long but you can now put additional ip addresses in here you can do it if you're using pppoe static dynamic whatever you can add additional static ip addresses in there and then you can use those as a source and as a destination address in your nat rules so you can actually have multiple one ips and import forward traffic from different ip addresses or going to different ips it actually works pretty well but there isn't a way in here to directly configure the interface now this is an issue for me because i'm using a ppoe connection so because of that you've got an overhead of the pppoe packets that means that when you've got a 1500 byte mtu on your interface some of that packet size has to be taken up by the ppoe header and that means that the actual leftover capacity for your actual traffic it means you've got 1492 bytes per packet now that's usually fine it's never really a problem but you do occasionally find if you've got an external server that's badly configured you could sometimes have connection issues now it's really rare however my isp and modem and all that sort of stuff supports what's called baby jumbo frames and there's an rfc for i can't remember the number but what you can do is you if you set the one interface to an mtu of 1508 bytes you can then have your ppoe header you can make all the packets coming out slightly larger and that will then let you have enough headroom to fit a full 1500 by ethernet frame in to your ppwe packets and that work that's worked on every other router i've used i've used on vios pf sends it's always worked and even on my old usg i could go into the advanced settings where you used to be able to create a config file on the controller that would set custom edge os settings on the usg and i was able to do that and set up the interface and set the mtus correctly so i could get a full 1500 by mtu on my one connection however with this because it doesn't run edge os you can no longer do that custom underlying edge os config we'll take a look at the actual software a bit under the hood in the next video but this runs unify os so it's not edgy os it's really just linux using things like dns mask to provide some services so you don't have that interface for configuring things like the mtu underneath you could probably bodge it with a bunch of shell scripts configuring the interfaces if you sh in but i don't want to do that and unfortunately as you can see in here there's no way to set things like the mtu on the one interface so this is a bit of an issue it's fine it totally works and it does support mss clamping so you can use that if you have to if you're using pppoe but it would be really nice if i could use that feature from my isp which unfortunately i can't use with this but at least now does support multiple one ip's because that's something people use to complain a lot about and people still complain a lot about not realizing it now supports it but yeah that's a little issue that i found the other issue i found is in the dns resolver because this obviously supports a dns forwarder maybe a little cache i'm not sure but that basically means a device on my local network resolve dns against the us udm and then it forwards that onto the external dns servers unfortunately there's no way to add static entries into that so for example my home automation system i've got node-red running on a server and i want to have node-red dot and then my domain on my lan and have it so i can go on a local device on my local network go to that address and have it resolve against the results ip address and what i used to have is i'd have my usg doing that because i could do the custom edus config again and they meant if i resolved on my local network the usg would resolve that hostname to the local lan ip address and for me to the and let me connect the device but again with this because it's now not running edge os where it used to be able to do that underlying custom config and there's nothing in the web interface to let you set that up i can't add static entries to that dns forwarder now what it does seem to do is if your device gets an ip address over dhcp and in that dhcp negotiation or request or whatever your device provides the dhcp server on the udm with its host name the udm will actually correctly resolve that so if you've got a device that's got hostname you it will actually automatically start resolving that hostname to its ip address but that's only if you've got a device getting an ip over dhcp and i don't want to put my server on dhcp i want to have a static ip address so if the dhcp server goes down the server still works so that's a bit annoying i can't add static dns entries into the result forwarder on this so i could get around it but i'll have to use an external dns server or run a secondary dns server on my local network and use that so that's a little bit annoying as well so yeah it's a little bit annoying it doesn't have those features neither of them are deal breakers but it's a little bit annoying however yep i'm very happy with it it's working absolutely brilliantly it's been absolutely fantastic and while people will probably inevitably comment because they haven't watched the video yes i know that i could have built built a pf sense box or i could have got a vios machine or i could have bought an edge router or i could have gone on ebay and bought a used cisco machine whatever i could have done all that but what i like with this is this is my home environment it's not work it's not a lab it's just something where i want to be able to just have it work and i don't want to spend time managing it and having this being so easy to manage is worth it for me yes it lacks some really advanced routing features and even some features that are classed as being fairly basic but it does everything that i really need it to do and it's so easy to manage that you know when i finish work i don't have to come home and essentially do more work to keep my network running so yeah i'm very happy with it for at least for me the limited features are a price are a small price to pay just for the ease of management and stability of it all okay so that's a look at the software talking about the setup process and as i mentioned i'm pretty happy with it there's just a few feature limitations and as you can see we've now got it installed on the rack and it's all running touch screen's working there as well you flick through different things there you can see things like wi-fi clients number devices connected things like that it also seems like a graph of like the bandwidth usage the only thing i found with the graph with this touch screen is you can't leave it permanently on if you leave it idle for too long it does a sort of screen saver it's like a like you know star field kind of thing going on i don't quite know why they're enforcing it because it is an lcd screen so it's not like it's an oled that could get burning but yeah so if you've got a rack of these you will have to touch the touch screen to make that to wake up other if you wanted to show the graph you can't have it showing them permanently so that's maybe a little disadvantage but it's not super important but yeah i'm pretty happy with this however with this device you really need to be careful to bear in mind what it's designed for and what it isn't a lot of the marketing and a lot of the other reviews make this out to be some sort of massively amazing router the best router the ultimate router whatever sort of stuff like that it is a really good device but for very certain use cases so where i would see this device being suitable is for either high-end home environments i'm thinking either devices like here for it systems like here for example or if you're say building a really high-end smart home you know they come the sort of the homes where people will get a company and to install a bunch of really high-end home automation systems and av installations those sorts of homes that might have a rack of av equipment this would be a very good device for that i could also see it being very useful in safe small hospitality environments if you've got see a bar or a restaurant or a club that just needs to really provide public wi-fi and then have a sort of separate isolated network for things like point-of-sale devices a back-office network and maybe some sort of network for cctv either using the built-in built-in nvr or a separate cctv that you just need a local just an isolated local network for those sorts of environments this would also be ideal for now when you start talking about offices this is where you need to start being a bit more careful because it feels like the sort of device that you could very quickly outgrow if we're talking about a very small office you know just a single a single site maybe a small travel agent with five to ten people who all just work on individual computers they either use something like office 365 to host all their business resources in the cloud or they might have like a single server in the office like a nas that they connect that might also be a domain controller or something in that really small environment this could probably be okay you know they're probably gonna have a single very simple internet connection dsl or cable or something like that with a single ip address they can use the remote access vpn on this vpn if they need to do that to access resources in the office and for that sort of environment that would be fine you know you could have one land maybe have guest wi-fi maybe have a separate network for your cameras that sort of stuff something very simple like that this could work for but when you're getting larger or more complex than that you might start finding limitations of this for example if you see an office that's going to have to that's going to want to terminate multiple vpns onto this it does support site site vpns but you could find you have limitations for example if you want to connect this out to a data center and then have multiple offices linked together as well and then have fancy routing to route between different those different sites and then maybe different firewall rules and stuff you might be able to do it but you might suddenly start finding that you're just a little limitation you can't quite do in the ui and then it could totally scuffer you additionally this doesn't support any sort of dynamic routing so if you want to do any of that you know it's totally out the question and then even with just things like it doesn't support any sort of high availability so if you're in a sort of larger office where you've got you know it's critical that your services stay up you couldn't have a pair of these running redundantly so that if one went down the other one would stay up you could only have a single udm so it lacks a single point of failure in your network so with those sorts of larger environments where you could outgrow something like this you do need to be careful with some of those things like say fancy dynamic routing stuff on your one connection you could potentially get around that by having an external router some sort of any other router really psn's vios edge os cisco whatever you could have that on the one side have your one connection or your multiple one connections going into that do your fancy routing on that and then just have that have that then connected into the udm and just have the udm doing things like lan services dhcp dns forwarding firewalling that sort of stuff and it would give you that nice unified management interface for it anyway so having an external router on the one side could benefit you a little bit and get get you a little bit more headroom but it does feel like the sort of thing you could outgrow quite quickly with unifi i feel the different categories of products cater for different sizes of businesses some of them can scale further than others for example their access points i feel are quite mature and you can generally use them in quite large environments their switching is definitely getting up there as well for a while it was a bit limited and it still isn't as good as some other options but they're now bringing out layer three switches that have at least some sort of layer three capability and they're bringing out those big aggregation switches now and they've now got a lot of 10 gig options they're bringing out some 25 gig and even some 100 gig options so they're starting to bring out these bigger devices so the switching could now start to get a little bit bigger and fit into larger networks however their routing is generally still at the very bottom level it's generally fine for small businesses or home use if you've got an office with you know 100 people in it you wouldn't be using unified routing however that's totally fine it's very common to have unify environments where you're using them only for the switching and the access points and you're using a separate router that's totally fine it's totally supported so with these devices you just need to be very careful the udn pro is an excellent device but only if you've got the right environment for it if you're home user it could be pretty good if you're some sort of very small business hospitality or a really small office or something like that it could be fine however if you're an advanced office this or an advanced business is going to have a lot of complex needs you might find this to be too limited likewise for home lab use this is probably not the device to go for you know i see a lot of people complaining oh i bought this for home and it's so limited it doesn't support and then they'll provide the name of a very advanced feature that the average home would not use you know oh it doesn't support dynamic routing i need this for home and it's like well you're not the average home doesn't do dynamic routing if you've got a home lab you wouldn't want to use a udm like this now what i would personally do is i would have the udm as my router for my home doing my general stuff and i'd have a separate router just doing the lab so it's kind of separated but if you're wanting like to only have one router for your home lab yeah don't use unify that for that it'll be far too limited so yeah as i keep saying i've lost track of how many times i've probably said it now it is a good device you just need to be using it in the right environment and make sure that it has all the features that you need because you might find that it's lacking some features that complex environments might require so there you go that was a look at moving my home network away from a usg pro and onto a udm pro now this video has been an absolute epic it's probably the longest video i've ever done i think it will be but if you stay to the end and thank you very much for watching if you're interested in buying this there's links in the description and also stand by for a video i'll be doing in a couple of videos time where i do a tear down of this so we'll take it apart we'll look at the hardware inside it and then i'll ssh in and dig into the software at a much lower level just see how the software on this actually works and see if we can get a bit more information about what hardware is inside it so yeah definitely stay tuned and subscribe for that but yeah thank you very much for watching

Info

Channel: Cameron Gray

Views: 45,115

Rating: 4.8481011 out of 5

Keywords: UDM, UDM-Pro, UniFi, Ubiquiti, Ubiquiti Networks, UBNT, Dream Machine, Dream Machine Pro, Router, Home Network, Homelab, Rack, Patch Panel, Networking

Id: GIOf7Qs7NKA

Channel Id: undefined

Length: 87min 9sec (5229 seconds)

Published: Fri May 07 2021