Host OverRide for UnFi APs
-
@magikmark Not sure Host OverRide is the correct term.
Don't you need to do an additional DHCP Option ?
https://help.ui.com/hc/en-us/articles/360012097513-UniFi-UDM-USG-How-to-Configure-Custom-DHCP-Options
I've moved on from Unifi.
-
@nogbadthebad Do you have a step by step guide?
-
- What's the IP of U6, 192.168.1.1? If so this is also the IP of my WAN
- set-inform http://10.0.1.1:8080/inform OR
3, set-inform http://10.0.1.1:8443/inform
-
@magikmark said in Host OverRide for UnFi APs:
- What's the IP of U6, 192.168.1.1? If so this is also the IP of my WAN
- set-inform http://10.0.1.1:8080/inform OR
3, set-inform http://10.0.1.1:8443/inform
- the U6 will get one IP of the 10.0.2.0 network through DHCP.
- Check the DHCP to confirm what is the U6 IP address, connect to it through SSH, username and password mentioned above, then type: set-inform http://10.0.1.1:8080/inform
Port 8080 is for adoption, and 8443 to manage the controller, so, to adopt use port 8080.
Observation here is that you need a firewall rule in pfsense allowing the AP to reach the controller on TCP port 8080.
edit2: https://help.ui.com/hc/en-us/articles/218506997-UniFi-Ports-Used
-
-
@magikmark said in Host OverRide for UnFi APs:
Ssh uses port 21 right?
Thanks for reminding about the firewall rule
Will try this later
TCP port 22.
-
Oops! Thanks again
-
@magikmark why are you putting your AP on another vlan? You can run another vlan for your wireless once the AP Is up and running.
But for ease of setup and management of your AP should really be on the same network as your controller.
Or you have to do L3 adoption. That is NOT what I would suggest for the first time unifi user..
-
This is why the network gods created management LANs. Actually, your problem is the controller relies on discovery to find the APs and other Unifi devices. Discovery uses multicasts, which are not normally passed by routers. This means the AP must be in the same LAN as the controller.
-
@jknott said in Host OverRide for UnFi APs:
This means the AP must be in the same LAN as the controller.
Well yes and no.. They do have L3 adoption, and they do have support for tagged vlans now for managment, etc.
But I sure wouldn't suggest someone new to it all to do any of that. Put your AP on the same network as your controller. Then you can setup your wifi networks to be on different vlans..
Once your more familiar with the how this all works, then if you wanted sure you could put your controller and the AP on different networks
-
I'm putting the AP in another interface. I have a 4 port NIC.
192.168.1.1 - WAN
10.0.1.1 - LAN (Htpc)
10.0.2. 1 - AP multi SSID
192.168.1.2 - Failover WANAs much as I would like to put the controller and AP in one network, I don't have available switch at the moment.
I would appreciate if you have tweaks and tips to share to make pfsense and U6 work seemlessly
-
@magikmark well use the L3 Adoption method that was linked too above.
Order a switch.. the little 5 port unifi flex mini is $30..
-
Thanks. May I ask why it's called level 3 adoption?
-
@magikmark because your adopting the AP that resides on a different L3 than your controller.
-
@magikmark Nope as I mentioned I ditched Unifi a while back.
https://community.ui.com/questions/pfSense-DHCP-provision-option/b42003ce-7560-4680-8731-805e59459bfc
-
@magikmark said in Host OverRide for UnFi APs:
Do you have a step by step guide?
The step by step guide is given on the link to the L3 adoption - they even provide a pfsense example for setting the dhcp option 43
-
Either SSHing into the access point and setting the inform url or setting a host override in pfSense for 'unifi' should work there. I have done both, neither was especially difficult.
Steve
-
This post is deleted! -
Guys,
LAN: 10.0.1.1
HTPC: 10.0.1.2
Asus: 10.0.2.1
UniFi: 10.0.3.1SSH
- Can't even ssh to the device. I could see U6 in dhcp leases in has an ip of 10.0.3.5. Turned ssh in pfsense. on I can ssh my pfsense box
- Doesn't respond to ping
- Firewall Rule all ports open, any protocol, any source and any destination
DNS
- I have Adguard installed. Is there an effect?
DNS Resolver Entry
- Host: unifi
- Domain: HTPC.pfSense.mylocal
- IP add: 127.0.0.1 or 10.0.1.1 or 10.0.1.2
DHCP Option 43:
- Set this under Unfi Interface
Number: 43
DCHP Option: 43
Type; String
Value: 01:04:0a:00:01:01 (10.0.1.1)
01:04:7f:00:00:01 (127.0.0.1)
Light still steady white. Can't be discovered by the controller
Maybe I missed something? Perhaps rule? -
If you connect anything else to the same subnet does it pull a valid dhcp lease?
The AP could be unable to respond for some reason.
Steve
