I bought the UDM believing the hype that it's the ultimately configurable "prosumer" router. I really wanted the ability to segment my IoT devices on a separate VLAN.
Unfortunately I never got that far. It turns out it's impossible to hook it up directly to a Swisscom fibre connection (via a media converter), because it won't let you configure the necessary VCI (vendor-class-identifier aka DHCP option 60) on the DHCP request sent across during WAN connectivity negotiation  .
Alas, it seems this is only tip of the iceberg. A lengthy list of missing features/regressions compared to past Unifi gear is here : caveat emptor! Although I didn't get a chance to test this, I'm not even sure this would work flawlessy with Swisscom TV as it relies on IGMP proxy support, which is also on the above list of shortcomings.
- built-in fan that can get pretty loud
Had to go back to my "consumer grade" Fritz!Box that does all the above without breaking a sweat (although alas, no VLAN segregation).
So I take the time to warn others of serious shortcomings with this product, providing extensive sources and I get downvoted without any feedback?
@csccx I did appreciate your time/effort. Thanks for sharing.
don't blame the product if you're configure it wrong! The vendor-class-identifier is needed for DSL and not for fiber! You have to set the vlan tag 10 on your wan port!
@Enzo79 Thank you for your contribution. Obviously I did try with just VLAN ID 10 on the WAN NIC, as this - at least - is easy to set in the UI. Guess what, that didn't work...
My current router, a Fritz!Box 7590 requires the VCI DHCP option in order to work with Swisscom fibre; and it looks like I'm certainly not the only one . This could have changed over the last couple of months but it seems doubtful.
Do you actually have a working UDM, connected to Swisscom fibre over its WAN port? If not, you're the one misleading others. What's your purpose?
not with a Dream Machine, but with an USG.
After you set the vlan tag on wan, did you reboot the Dream Machine? I had to reboot the USG
Can you describe your setup? SFP (from Swisscom) in a media converter --> connected to the WAN port of the Dream Machine?
Swisscom TV will not work with the Dream Machine, it's missing the igmp proxy feature
you mentioned the Fritz!Box 7590, that's a DSL MODEM/Router!! Do you have fiber or DSL??
The Dream Machine doesn't have a build-in modem!
@Enzo79: in my review, I took care to describe my setup as: UDM -> (WAN port) SFP media converter -> Swisscom fibre connection. I use the same media converter (a TP-Link MC220L) to connect the Fritz!Box using its own WAN port. Rest assured that I performed multiple reboots and tried multiple combinations with the UDM.
Reference  in my review also lists the (very) large set of features missing in the UDM (compared to the USG); among which, is indeed the IGMP Proxy feature, one of very many.
Unfortunately, the UDM uses a completely different operating system from the USG, which, at this point in time, can only be described as half baked with very little by way of vendor support. A USG would most likely work fine but it is a fairly outdated piece of hardware. My review is for the UDM, thanks.
I have a question here why didn't you connect the WAN port in UDM to your modem. then in UDM WAN configuration use DCHP?
@moustafa.galmad I suppose this might work.
However, the purpose of a router is to... route. My aim was to *replace* my previous router (the Fritz!Box) with a new router and improve security by leveraging VLAN segregation. Adding a new router downstream from the existing one increases complexity, power usage and is very unlikely to yield the full security benefit.
Further, if you intend to use the UDM with IP TV (or any sort of streaming, for example to WiFi speakers) on a separate VLAN, note the missing IGMP proxy support.
Anyone contemplating the purchase of this device should take a look at the official forum discussion ; scroll to the bottom. You'll find a growing number of rather disgruntled customers and still ZERO feedback from the vendor as to when these issues might get addressed (in over 5 months).
Multicast/IGMP implementation has a long history with Unifi. Even the switches require a work around for disabling IGMP header validation (boot resistant). Since years people ask for a proper implementation. I've returned the DM and the switches and went back to EdgeRouter 4 which once setup properly (IGMP, IPv6 etc) is fire and forget. Even the most basic Netgear Switches or Asus Routers have a proper IGMPv3 implemenation. In my environment Unifi is now Wifi only and the controller hosted on my NAS with a docker image which works great, at least.
I was playing at my UDM and I found the following info:
you can configure your UDM via the following command
by using ssh
the main configuration file for the UDM located und /config/ubios-udapi-server/ubios-udapi-server.state
which it includes the following section:
"id": "br0" #this is the nat interface for your local network (lan)
"optionNumber": 60, #test for lan
"value": "1111111.8"#test for lan
"optionNumber": 61, #test for lan
"value": "2222222.9" #test for lan
it shows that we can add dhcp option 61 for lan but i think we need to find the right section in this file "ubios-udapi-server.state" to add dhcp option 61 or 60 for wan i will work on it
in case if anyone here is interested in making his own configuration on HIS OWN RESPONSIBILITY
you can run this following command via ssh
ubios-udapi-server -c /PATH/OF/THE/CONFIGURATION/FILE
# ubios-udapi-server --help
Usage: ubios-udapi-server [opts]
-h, --help show this help
-v, --verbose print more information
-e, --extremely-verbose print also UDAPI communication
-c, --config [arg] configuration file (default /config/ubios-udapi-server/ubios-udapi-server.state)
-f, --fallback-config [arg] default/fallback configuration file (default /usr/share/ubios-udapi-server/MODEL|FAMILY.default)
-s, --socket [arg] server socket (default /var/run/ubnt-udapi-server.sock)
I wish you a nice weekend
I'm connected directly to the internet via UDM and Zyxel MCT-3002W2SFP-DR (Media converter).
regarding the Vlan 11/10, this VLAN id is not correct. I've my connection from sunrise and VLAN wasn't 11 or 10 it was way higher it was 1xx
I got the VLAN id from the diagnosis file at my fritzbox once I add the correct VLAN id in the WAN section everything works well.
I still have an issue with landline number but it's a minor issue for me now. but I will fix :D
have a nice Sunday
@moustafa.galmad very well done for figuring this out! Unfortunately I can't try it out, having long since returned my UDM (against the 10% Digitec restocking fee).
It's a total shame that Ubiquiti doesn't document, let alone endorse such workarounds to their GUI shortcomings. Unfortunately it also quite likely means that you'll have to reapply your tweak after firmware upgrades, which may not be super practical but hey, at least you've found a way.
I see that you also posted your workaround on the UI forums : this is probably the right place for further discussion but thanks again for the pointer for those who may brave the (current - but for how long?) shortcomings of this product. Note that besides other stumbling blocks, such as lack of IGMP proxy support (for IPTV, streaming etc), there are also reports of substantially inconsistent performance .
I'm really sorry for you. :(. But now we know hot to get work.
I would plane unifi for not providing a good support for their devices its disappointing
I wish you a nice evening.
@csccx I think the DM would be a nice thing. But the privacy aspect and the ui sso are imho not acceptable, so I gonna move away from ubiquiti, and disregard their new products
Nous déclinons toute responsabilité pour les réponses qui n'ont pas été écrites par nos collaborateurs.
Veuillez vous connecter pour écrire un commentaire.
Veuillez accepter notre Conditions de la communauté pour effectuer cette action.