Brooks House Internet

Setup

Summary

  • ISP: Comcast
  • Current Plan: 300Mbps Down/ 25Mbps Up
  • Router: Unifi USG
  • Switch: Unifi Switch 8 Port 150W PoE
  • AP: Unifi nanoHD x3.
  • Management Portal
  • New Device Inform Adoption Address:
    • https://unifi.couchcooperative.org/inform (use this one by default)
    • https://unifi.couchcooperative.org:8338/inform (use the port version if the firmware is old)

Modem

Bridge Mode

Guest Wifi Disabled (method)

Topology

Cable Modem->Router(LAN1)->Switch

  • Switch -> 3rd Floor AP (PoE via Cat 5e)
  • Wireless Uplink to either 1st Floor AP or 3rd Floor AP <- 2nd Floor AP ->inject PoE at network closet on 2nd floor(via Cat 5e)
  • Switch -> 1st Floor AP (PoE via Cat 5e)

Switch->2nd Floor AP doesn’t have PoE nor physical connection because existing CAT 5 and newly laid CAT 5e cable both seemed to be broken in one way or another. Currently power is injected using PoE injector at the 2nd floor network closet to the 2nd floor AP, providing power only. The 2nd Floor AP is wirelessly uplinked to either 1st floor or 3rd floor AP depending on wireless strength.

Wan

  • IPV4: DHCP
  • IPV6: DHCPv6 /64

Lan

  • LAN1: 192.168.77.1/24 (LAN1 in use)
  • LAN2: 192.168.78.1/24 (LAN2 vacant)
  • enable DHCPv6, Prefix Delegation

As of now, only LAN1 will have IPv6, ISP only gave out 1 /64 IPv6 Block so it is not possible to divide further.

DNS

We use Cloudflare DNS first, their query is discarded overnight and is the fastest public DNS around. Multiple previous incident has proved that Comcast DNS is not reliable.

IPV4 DNS

IPv6 DNS

APs

Settings

  • 2G: high power
  • 5G: high power
  • disable mesh between access point
  • disable 5G band steering (by default)

Channels

  • 2G channel non-overlapped. #1, #6, #11
  • 5G channel non-overlapped 80Mhz channel: #36, #116(DFS radar channel, require 1 min wait time after restart before showing up), #149

Backup

Controller is automatically backed up daily. In the case of controller fail, recover the entire controller via:

/usr/lib/unifi/data/backup

If the management portal is still available -> Backup and can be downloaded there. Backup after 7 days will be deleted due to space restriction.

Export to a New Controller

Using this guide if you need to migrate Brooks Internet Management Portal to another controller. It is likely to happen if more houses decided to sign up for Unifi and current server unable to handle the Management Portal anymore.

Adding New Devices

  1. New devices must be first connected to the same subnet, meaning physically connected to a port on the switch first.
  2. Use the following 2 method to discover the new IP address of the device
    • Management Portal -> Client -> Wired
    • Unifi mobile app (use the address in section (Summary](#summary)-> More ->Remote Adoption
  3. SSH into the ip address default user/password: ubnt/ubnt
  4. Issue command in the ssh session
  5. After 1-3min, the new devices will show up in Management Portal->Devices
  6. Click adopt+upgrade on the right side of the device
  7. Re-issue command in SSH
  8. Be patient, wait for the device to adopt, upgrade and restart, this could take 5min, Management Portal may not immediately show the updates. When it is done,
    • Blue constant LED
    • Management Portal->Devices will show connected and green in status.
    • Do NOT UNPLUG THE DEVICE UNTIL THE UPGRADE IS DONE, YOU WILL BRICK THE DEVICE.

Upgrade and Maintenance

All upgrade and maintenance of firmware on Unifi can be scheduled in advance. Usually, a pop-up will notify you when you log into the Management Portal, firmware upgrade is available. Schedule by

Settings->Services->Scheduled Upgrade->Create New-> One Time Upgrade -> choose date and all devices.

It is recommended all upgrade be done around 5am and all house members be notified. The upgrade will happen automatically and will take around 5-15min, it cannot be interrupted or the device will brick.

Sometimes in device list, it actually shows a downgrade option, it is usually a glitch on the update server or a genuine recall, in which case you can choose to downgrade if any devices shows instability. Firmware are usually very stable and even if they are recalled, it is likely only very specific use case has glitch. So if no one is experience any adverse effect, you can hold off on downgrading.

Firmware upgrades usually comes out once per 3 months, it is recommended to upgrade.

Troubleshoot

WARNING: DO NOT UNPLUG ANY DEVICES UNTIL YOU READ THIS

In case your internet is down. Most likely it is not because of any Unifi equipments. The router, switch and wifi access points are enterprise grade, they have proved to be much more stable than the ISP in terms of uptime. In general, we are seeing 99% of outage by ISP, 1% by maintenance, close to 0% by actual equipment. Troubleshoot in the following order.

  1. Comcast outage or service down? -> check live outage map of our ISP Comcast.
  2. Login to Management Portal, devices->see if all devices are green->online. If not all devices are offline, move mouse over to the right side of the device list, a restart button should appear, click on the device that is showing red that needs to be restarted.
  3. If all devices are offline however, and there is no reported outage from step 1, that means your modem needs to be restarted, the modem is not commercial grade, so it can fail. Unplug the comcast modem, wait 1min, plug back in. Do NOT unplug any unifi equipment, it is not necessary and will make the rebooting process significantly longer. Comcast modem restart generally takes 3min.

In most cases, Unifi equipment work 24/7/365 and do not need restart at all.