- Joined
- Dec 13, 2013
- Messages
- 117
- Motherboard
- Gigabyte Z390 Designare
- CPU
- i9-9900K
- Graphics
- RX 6900 XT
- Mac
- Mobile Phone
@Sapricot I too was a bit weary of the Ubiquiti issues at the outset, so I built a custom Untangle NG Firewall HomePro running on Qotom 4 LAN Mini PC with 16GB of RAM and 250GB SSD. I hung the Ubiquiti PoE switch and access points off it and all-in-all it was AWESOME! I had complete control over everything on my network. BUT throughput was a huge letdown. We could barley get 750Mbps out of our Gigabit connection with just the basic firewall running. I swapped it out for Pfsense and had the same issue. Obviously, it was the hardware but I was reluctant to buy something new only to run into the same issue.@jjsenecal Nice setup! I started dipping into Unifi last year with an AP and a switch, and was considering a UDM to replace the old Time Capsule (bye old friend, it's been great but it's time to part ways). But many features still missing in the the Unifi controller and too many reports of users fed up with waiting and waiting for Ubiquiti to add everything from EdgeOS made me decide to go with a home-rolled router instead.
So now I have OPNsense running in a vm on Proxmox on a NUC, with separate containers for the Unifi controller and a pi-hole. Using Apple's TB-ethernet and TB2->3 adapter for a second NIC.
I also have a bunch of Homekit stuff, but I block internet access for their VLAN (and selectively open to check for firmware updates). After Eufy accidentally mixed up customer cameras I don't trust them. The cameras work fine through the Home app with Homekit Secure Video, only thing I miss out on is two-way audio. Gateways from Ikea and Tado also have no problem with no internet.
That's went I went all in on the UDM and Ubiquiti hardware. Yes, there are some features missing in UDM (like a full blown firewall rules engine) but damm the thing is fast and stable. I regularly get 900 to 940Mbps with IPS and ITM turned on! And managing my network is a great experience. The reports are top notch, Threat management is super concise, & managing the topology and clients takes no time at all. I'm very pleased with the decision to switch. Can it be better; yes. But the current state is really good, despite some minor deficiencies.