Here's what I have:
ER-5 (PoE) 1.8.5
Console - No device
Eth0 - To cable modem (Arris TM822)
Eth1 - External gigabit 8-port Netgear switch (GS-108) [see below for connected devices]
Eth2 - Mac (that I am typing this post on) assigned IP : 192.168.2.55
Eth3 - No device
Eth4 - To Ubiquity AP AC-Pro WiFi (PoE 48v).
Netgear switch:
Port 1 : Connection to ER-5.
Port 2 : NAS storage box (1st port)
Port 3 : AT&T Microcell
Port 4 : -
Port 5 : -
Port 6 : -
Port 7 : -
Port 8 : NAS storage box (2nd port)
It's not that I am having any issues, per se. I just want to expand my limited knowledge and improve this setup, if possible.
I want to able to plug devices into any of the open ports interchangeably and have everything on the same subnet. Currently all addresses are DHCP assigned (but I it makes more sense to change the IP assignment on the NAS box to "static" so that it gets the same IP everytime - same applies to the printer too, which is currently connected via WiFi).
The AC Pro seems to be working as all WiFi clients seem to be getting on the network and getting IP addresses assigned via DHCP.
Most importantly Netflix is working on the "Smart" TV.
I would like to potentially add another AC Pro in order to get better WiFi coverage throughout the house (there's a lot of walls). I'm assuming I *can* do that (say, plug it into the unused Eth3 port), but will the IP addressed assigned via a second access point be on the same subnet as the first?
Router config:
firewall { all-ping enable broadcast-ping disable ipv6-receive-redirects disable ipv6-src-route disable ip-src-route disable log-martians enable name WAN_IN { default-action drop description "WAN to internal" rule 10 { action accept description "Allow established/related" state { established enable related enable } } rule 20 { action drop description "Drop invalid state" state { invalid enable } } } name WAN_LOCAL { default-action drop description "WAN to router" rule 10 { action accept description "Allow established/related" state { established enable related enable } } rule 20 { action drop description "Drop invalid state" state { invalid enable } } } receive-redirects disable send-redirects enable source-validation disable syn-cookies enable } interfaces { ethernet eth0 { address dhcp description Internet duplex auto firewall { in { name WAN_IN } local { name WAN_LOCAL } } poe { output off } speed auto } ethernet eth1 { address 192.168.1.1/24 description Local duplex auto poe { output off } speed auto } ethernet eth2 { description "Local 2" duplex auto poe { output off } speed auto } ethernet eth3 { description "Local 2" duplex auto poe { output off } speed auto } ethernet eth4 { description WiFi duplex auto poe { output 48v } speed auto } loopback lo { } switch switch0 { address 192.168.2.1/24 description "Local 2" mtu 1500 switch-port { interface eth2 interface eth3 interface eth4 } } } service { dhcp-server { disabled false hostfile-update disable shared-network-name LAN1 { authoritative disable subnet 192.168.1.0/24 { default-router 192.168.1.1 dns-server 192.168.1.1 lease 86400 start 192.168.1.38 { stop 192.168.1.243 } } } shared-network-name LAN2 { authoritative disable subnet 192.168.2.0/24 { default-router 192.168.2.1 dns-server 192.168.2.1 lease 86400 start 192.168.2.38 { stop 192.168.2.243 } } } } dns { forwarding { cache-size 150 listen-on eth1 listen-on switch0 } } gui { https-port 443 } nat { rule 5010 { description "masquerade for WAN" outbound-interface eth0 type masquerade } } ssh { port 22 protocol-version v2 } } system { host-name ubnt login { user tony { authentication { encrypted-password <Encrypted password deleted> plaintext-password "" } full-name "<my name>" level admin } } ntp { server 0.ubnt.pool.ntp.org { } server 1.ubnt.pool.ntp.org { } server 2.ubnt.pool.ntp.org { } server 3.ubnt.pool.ntp.org { } } syslog { global { facility all { level notice } facility protocols { level debug } } } time-zone UTC } /* Warning: Do not remove the following line. */ /* === vyatta-config-version: "config-management@1:conntrack@1:cron@1:dhcp-relay@1:dhcp-server@4:firewall@5:ipsec@5:nat@3:qos@1:quagga@2:system@4:ubnt-pptp@1:ubnt-util@1:vrrp@1:webgui@1:webproxy@1:zone-policy@1" === */ /* Release version: v1.8.0.4853089.160219.1607 */
I also note that even though the admin page says it's "EdgeRouter PoE v1.8.5", the last line of the config shows "Release version: v1.8.0...". Curious.
The only issue I am having (and I'm not even certain it's down to the ER-5) is that in my previous setup (i.e. pre-Ubiquiti components) I was able to use Facetime on the Mac to make and receive calls via my iPhone. Now, whenever I try to make a call, or receive a call (via Facetime on the Mac) on my iPhone, I get "call failed".