Quantcast
Channel: EdgeRouter topics
Viewing all articles
Browse latest Browse all 20028

Question: How can I improve this ER-5 setup?

$
0
0

Here's what I have:

 

ER-5 (PoE) 1.8.5

 

Console - No device

Eth0 - To cable modem (Arris TM822)

Eth1 - External gigabit 8-port Netgear switch (GS-108) [see below for connected devices]

Eth2 - Mac (that I am typing this post on) assigned IP : 192.168.2.55

Eth3 - No device

Eth4 - To Ubiquity AP AC-Pro WiFi (PoE 48v).

 

Netgear switch:

Port 1 : Connection to ER-5.

Port 2 : NAS storage box (1st port)

Port 3 : AT&T Microcell

Port 4 : -

Port 5 : -
Port 6 : -
Port 7 : -
Port 8 : NAS storage box (2nd port)

It's not that I am having any issues, per se. I just want to expand my limited knowledge and  improve this setup, if possible.

I want to able to plug devices into any of the open ports interchangeably and have everything on the same subnet. Currently all addresses are DHCP assigned (but I it makes more sense to change the IP assignment on the NAS box to "static" so that it gets the same IP everytime - same applies to the printer too, which is currently connected via WiFi).

 

The AC Pro seems to be working as all WiFi clients seem to be getting on the network and getting IP addresses assigned via DHCP.

 

Most importantly Netflix is working on the "Smart" TV.

 

I would like to potentially add another AC Pro in order to get better WiFi coverage throughout the house (there's a lot of walls). I'm assuming I *can* do that (say, plug it into the unused Eth3 port), but will the IP addressed assigned via a second access point be on the same subnet as the first? 

 

Router config:

firewall {
    all-ping enable
    broadcast-ping disable
    ipv6-receive-redirects disable
    ipv6-src-route disable
    ip-src-route disable
    log-martians enable
    name WAN_IN {
        default-action drop
        description "WAN to internal"
        rule 10 {
            action accept
            description "Allow established/related"
            state {
                established enable
                related enable
            }
        }
        rule 20 {
            action drop
            description "Drop invalid state"
            state {
                invalid enable
            }
        }
    }
    name WAN_LOCAL {
        default-action drop
        description "WAN to router"
        rule 10 {
            action accept
            description "Allow established/related"
            state {
                established enable
                related enable
            }
        }
        rule 20 {
            action drop
            description "Drop invalid state"
            state {
                invalid enable
            }
        }
    }
    receive-redirects disable
    send-redirects enable
    source-validation disable
    syn-cookies enable
}
interfaces {
    ethernet eth0 {
        address dhcp
        description Internet
        duplex auto
        firewall {
            in {
                name WAN_IN
            }
            local {
                name WAN_LOCAL
            }
        }
        poe {
            output off
        }
        speed auto
    }
    ethernet eth1 {
        address 192.168.1.1/24
        description Local
        duplex auto
        poe {
            output off
        }
        speed auto
    }
    ethernet eth2 {
        description "Local 2"
        duplex auto
        poe {
            output off
        }
        speed auto
    }
    ethernet eth3 {
        description "Local 2"
        duplex auto
        poe {
            output off
        }
        speed auto
    }
    ethernet eth4 {
        description WiFi
        duplex auto
        poe {
            output 48v
        }
        speed auto
    }
    loopback lo {
    }
    switch switch0 {
        address 192.168.2.1/24
        description "Local 2"
        mtu 1500
        switch-port {
            interface eth2
            interface eth3
            interface eth4
        }
    }
}
service {
    dhcp-server {
        disabled false
        hostfile-update disable
        shared-network-name LAN1 {
            authoritative disable
            subnet 192.168.1.0/24 {
                default-router 192.168.1.1
                dns-server 192.168.1.1
                lease 86400
                start 192.168.1.38 {
                    stop 192.168.1.243
                }
            }
        }
        shared-network-name LAN2 {
            authoritative disable
            subnet 192.168.2.0/24 {
                default-router 192.168.2.1
                dns-server 192.168.2.1
                lease 86400
                start 192.168.2.38 {
                    stop 192.168.2.243
                }
            }
        }
    }
    dns {
        forwarding {
            cache-size 150
            listen-on eth1
            listen-on switch0
        }
    }
    gui {
        https-port 443
    }
    nat {
        rule 5010 {
            description "masquerade for WAN"
            outbound-interface eth0
            type masquerade
        }
    }
    ssh {
        port 22
        protocol-version v2
    }
}
system {
    host-name ubnt
    login {
        user tony {
            authentication {
                encrypted-password <Encrypted password deleted>
                plaintext-password ""
            }
            full-name "<my name>"
            level admin
        }
    }
    ntp {
        server 0.ubnt.pool.ntp.org {
        }
        server 1.ubnt.pool.ntp.org {
        }
        server 2.ubnt.pool.ntp.org {
        }
        server 3.ubnt.pool.ntp.org {
        }
    }
    syslog {
        global {
            facility all {
                level notice
            }
            facility protocols {
                level debug
            }
        }
    }
    time-zone UTC
}


/* Warning: Do not remove the following line. */
/* === vyatta-config-version: "config-management@1:conntrack@1:cron@1:dhcp-relay@1:dhcp-server@4:firewall@5:ipsec@5:nat@3:qos@1:quagga@2:system@4:ubnt-pptp@1:ubnt-util@1:vrrp@1:webgui@1:webproxy@1:zone-policy@1" === */
/* Release version: v1.8.0.4853089.160219.1607 */

I also note that even though the admin page says it's "EdgeRouter PoE v1.8.5", the last line of the config shows "Release version: v1.8.0...". Curious.

 

The only issue I am having (and I'm not even certain it's down to the ER-5) is that in my previous setup (i.e. pre-Ubiquiti components) I was able to use Facetime on the Mac to make and receive calls via my iPhone. Now, whenever I try to make a call, or receive a call (via Facetime on the Mac) on my iPhone, I get "call failed".


Viewing all articles
Browse latest Browse all 20028

Latest Images

Trending Articles



Latest Images

<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>