Ghosts in our 6 New Ubiquity Pros - provision issues.
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night. We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period. Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.) We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi. Thank You Bob Evans
I have a variety of their gear and don't have problems like this. Have you run a cable tester on the wiring? This sounds quite odd and is something I haven't seen. They do most of their support in their forums vs email. The email is mainly for RMA support. What version software is on your controller and the UAP-Pros? Jared Mauch
On Jun 19, 2015, at 6:01 AM, Bob Evans <bob@FiberInternetCenter.com> wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
Thanks Jared Cables are 3 to 6 feet long - swapped them out already. All cables manufacture made purchased. They plug into the switch directly. Each switch is them multi-mode fiber back to a main switch where the edgeMax router and other gear are connected. Bob Evans
I have a variety of their gear and don't have problems like this. Have you run a cable tester on the wiring? This sounds quite odd and is something I haven't seen.
They do most of their support in their forums vs email. The email is mainly for RMA support.
What version software is on your controller and the UAP-Pros?
Jared Mauch
On Jun 19, 2015, at 6:01 AM, Bob Evans <bob@FiberInternetCenter.com> wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
It sounds like a PoE issue. I'm also happy to take a look. Anything in the controller logs? Are your DHCP leases short? Or are you seeing the edge router reboot? What version on the edge router? The 1.7.0rc2 was posted and compared to 1.5 and 1.6 it fixes a reboot issue I saw unless you disabled vlan offload. Jared Mauch
On Jun 19, 2015, at 10:10 AM, Bob Evans <bob@FiberInternetCenter.com> wrote:
Thanks Jared Cables are 3 to 6 feet long - swapped them out already. All cables manufacture made purchased. They plug into the switch directly. Each switch is them multi-mode fiber back to a main switch where the edgeMax router and other gear are connected.
Bob Evans
I have a variety of their gear and don't have problems like this. Have you run a cable tester on the wiring? This sounds quite odd and is something I haven't seen.
They do most of their support in their forums vs email. The email is mainly for RMA support.
What version software is on your controller and the UAP-Pros?
Jared Mauch
On Jun 19, 2015, at 6:01 AM, Bob Evans <bob@FiberInternetCenter.com> wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
I run lots of these. How many APs? Have you reset them to default yet? https://community.ubnt.com/t5/UniFi-Frequently-Asked-Questions/UniFi-How-do-... Steve Mikulasik -----Original Message----- From: NANOG [mailto:nanog-bounces@nanog.org] On Behalf Of Bob Evans Sent: Friday, June 19, 2015 8:10 AM To: Jared Mauch <jared@puck.nether.net> Cc: nanog@nanog.org Subject: Re: Ghosts in our 6 New Ubiquity Pros - provision issues. Thanks Jared Cables are 3 to 6 feet long - swapped them out already. All cables manufacture made purchased. They plug into the switch directly. Each switch is them multi-mode fiber back to a main switch where the edgeMax router and other gear are connected. Bob Evans
I have a variety of their gear and don't have problems like this. Have you run a cable tester on the wiring? This sounds quite odd and is something I haven't seen.
They do most of their support in their forums vs email. The email is mainly for RMA support.
What version software is on your controller and the UAP-Pros?
Jared Mauch
On Jun 19, 2015, at 6:01 AM, Bob Evans <bob@FiberInternetCenter.com> wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
What version of the controller are you using, we're running 3.something at that works fine. We've turned off auto update on all of the sites on the server, and Nagios monitors them, we certainly don't see reboots 2-3 times a day, the last time ours rebooted was when we lost power at our office. Contact me off list if you want me to take a look. Regards, Hal Ponton Senior Network Engineer Buzcom / FibreWiFi Tel: 07429 979 217 Email: hal@buzcom.net
On 19 Jun 2015, at 11:01, Bob Evans <bob@FiberInternetCenter.com> wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
Bob, I've deployed tons of Ubiquiti gear, and have seen this problem before. It always turns out to be poor quality cable installation. POE does not tolerate low quality connectors, especially in outdoor environments. There are many aspects to a quality cabling job, so the best thing you can do is seek out a qualified installer with outdoor POE experience. The most common problem I see is people using crimp-on RJ45 connectors directly on the ends of their cable runs. This is not how structured cabling is designed to work, in particular because most crimp-on connectors are intended for stranded copper wire (such as that used in very flexible patch cords, designed to run horizontally over only a few dozens of feet), whereas the "riser" and "plenum" cable used for long-distance runs has solid core wires. The tiny teeth in standard crimp connectors are designed to penetrate stranded wire, to make a solid electrical contact. With solid core wire, they just bend to the side of the copper core, making tenuous contact, which will conduct POE current poorly (resulting in the resets you see) and eventually fail altogether as the improper connection corrodes over time. The correct installation process is to use "punch-down" RJ45 jacks at each end of the cable run, and connect from those jacks to your equipment (radio at one end, POE switch at the other). On the outdoor side, the jack/plug junction needs to be in a NEMA weatherproof enclosure, with weathertight fittings. And, for human and equipment safety, you must use shielded Cat5e/6 cable anytime you go outdoors, grounding only one end (usually the radio end), and protecting the cable with an inline lightning protector between the RJ45 jack and the radio. If you haven't done that, then that's the first thing to fix. BTW, avoid homemade patch cables whenever possible. Quality factory cables are hydraulically pressed and the plug is hermetically fused for a vastly superior connection compared to anything you can do with simple hand crimpers. And all outdoor cables must be UV-grade cabling with weatherproof sheathing and water repellant inside (so-called "flooded" cable). -mel beckman
On Jun 19, 2015, at 4:54 AM, Hal Ponton <hal@buzcom.net> wrote:
What version of the controller are you using, we're running 3.something at that works fine.
We've turned off auto update on all of the sites on the server, and Nagios monitors them, we certainly don't see reboots 2-3 times a day, the last time ours rebooted was when we lost power at our office.
Contact me off list if you want me to take a look.
Regards,
Hal Ponton
Senior Network Engineer
Buzcom / FibreWiFi
Tel: 07429 979 217 Email: hal@buzcom.net
On 19 Jun 2015, at 11:01, Bob Evans <bob@FiberInternetCenter.com> wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
On 2015-06-19 08:51, Mel Beckman wrote:
Bob, I've deployed tons of Ubiquiti gear, and have seen this problem before. It always turns out to be poor quality cable installation. POE does not tolerate low quality connectors, especially in outdoor environments. There are many aspects to a quality cabling job, so the best thing you can do is seek out a qualified installer with outdoor POE experience.
Yep. Networks. Layer 1 before everything else! So many bad cabling jobs for sure. Are people using the tough cable? That has held up really well in the installations I've done. For a few years with zero issues.
The current ToughCable really is fantastic. I'd only suggest the bigger one ("carrier"). The old green stuff definitely deterred a lot of people, understandably. Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Fri, Jun 19, 2015 at 10:05 AM, <charles@thefnf.org> wrote:
On 2015-06-19 08:51, Mel Beckman wrote:
Bob, I've deployed tons of Ubiquiti gear, and have seen this problem before. It always turns out to be poor quality cable installation. POE does not tolerate low quality connectors, especially in outdoor environments. There are many aspects to a quality cabling job, so the best thing you can do is seek out a qualified installer with outdoor POE experience.
Yep. Networks. Layer 1 before everything else! So many bad cabling jobs for sure.
Are people using the tough cable? That has held up really well in the installations I've done. For a few years with zero issues.
That's possible but I if they are re-provisioning on a regular schedule I kind of doubt it. It would be easy to test though. Plug an AP directly into your switch with a quality pre-manufactured patch cord and see how it acts. If it exhibits the same symptom it is probably not cabling. Also, have you checked your interface counters for any packet errors? Don't forget to look at your controller because if the controller became unreachable for any length of time that could easily cause your APs to re-provision as they reconnect with the controller. I might set up a ping every second from the site of the access points to the controller and make sure the availability of the controller is 100%. If you are on Cisco switches you should have log messages regarding PoE be granted on particular ports as well as up down messages on the interfaces. Do you see the ports going up and down? It is important to have NTP on the APs and switches so that you can correlate events in time (i.e. did the AP reboot causing the Ethernet link to drop or did the link drop causing the reboot?) Steven Naslund Chicago IL
Bob, I've deployed tons of Ubiquiti gear, and have seen this problem before. It always turns out to be poor quality cable installation. POE does not tolerate low quality connectors, especially in outdoor environments. There are >many aspects to a quality cabling job, so the best thing you can do is seek out a qualified installer with outdoor POE experience.
The most common problem I see is people using crimp-on RJ45 connectors directly on the ends of their cable runs. This is not how structured cabling is designed to work, in particular because most crimp-on connectors are intended for >stranded copper wire (such as that used in very flexible patch cords, designed to run horizontally over only a few dozens of feet), whereas the "riser" and "plenum" cable used for long-distance runs has solid core wires. The tiny >teeth in standard crimp connectors are designed to penetrate stranded wire, to make a solid electrical contact. With solid core wire, they just bend to the side of the copper core, making tenuous contact, which will conduct POE >current poorly (resulting in the resets you see) and eventually fail altogether as the improper connection corrodes over time.
The correct installation process is to use "punch-down" RJ45 jacks at each end of the cable run, and connect from those jacks to your equipment (radio at one end, POE switch at the other). On the outdoor side, the jack/plug junction >needs to be in a NEMA weatherproof enclosure, with weathertight fittings. And, for human and equipment safety, you must use shielded Cat5e/6 cable anytime you go outdoors, grounding only one end (usually the radio end), and >protecting the cable with an inline lightning protector between the RJ45 jack and the radio.
If you haven't done that, then that's the first thing to fix.
BTW, avoid homemade patch cables whenever possible. Quality factory cables are hydraulically pressed and the plug is hermetically fused for a vastly superior connection compared to anything you can do with simple hand crimpers. And >all outdoor cables must be UV-grade cabling with weatherproof sheathing and water repellant inside (so-called "flooded" cable).
-mel beckman
This isn't the behavior I've seen with UBNT. They only provision on a change, even if disconnected for a long time. You can check this in the UniFi logs directory. Jared Mauch
On Jun 19, 2015, at 10:06 AM, Naslund, Steve <SNaslund@medline.com> wrote:
Don't forget to look at your controller because if the controller became unreachable for any length of time that could easily cause your APs to re-provision as they reconnect with the controller.
That's possible but I if they are re-provisioning on a regular schedule I kind of doubt it. It would be easy to test though. Plug an AP directly into your switch with a quality pre-manufactured patch cord and see how it acts. If it exhibits the same symptom it is probably not cabling. Also, have you checked your interface counters for any packet errors?
Yes, no packet errors crcs or frags.
Don't forget to look at your controller because if the controller became unreachable for any length of time that could easily cause your APs to re-provision as they reconnect with the controller.
This is did not know - thought the controller was just to provision and monitor. After all why would a manufacturer make one point of failure for a campus setup that uses thier own edgerouter for the dhcp etc. Doesnt seem correct. But will will investigate it.
I might set up a ping every second from the site of the access points to the controller and make sure the availability of the controller is 100%.
Yes that and what the ciscos report on the port link.
If you are on Cisco switches you should have log messages regarding PoE be granted on particular ports as well as up down messages on the interfaces.
Yep and we get them.
Do you see the ports going up and down? It is important to have NTP on the APs and switches so that you can correlate events in time (i.e. did the AP reboot causing the Ethernet link to drop or did the link drop causing the reboot?)
I am sure its the APs dropping - as non of the other devices VOIP phones etc drop in the logs. Thanks Steven Bob
Steven Naslund Chicago IL
Bob, I've deployed tons of Ubiquiti gear, and have seen this problem before. It always turns out to be poor quality cable installation. POE does not tolerate low quality connectors, especially in outdoor environments. There are >many aspects to a quality cabling job, so the best thing you can do is seek out a qualified installer with outdoor POE experience.
The most common problem I see is people using crimp-on RJ45 connectors directly on the ends of their cable runs. This is not how structured cabling is designed to work, in particular because most crimp-on connectors are intended for >stranded copper wire (such as that used in very flexible patch cords, designed to run horizontally over only a few dozens of feet), whereas the "riser" and "plenum" cable used for long-distance runs has solid core wires. The tiny >teeth in standard crimp connectors are designed to penetrate stranded wire, to make a solid electrical contact. With solid core wire, they just bend to the side of the copper core, making tenuous contact, which will conduct POE >current poorly (resulting in the resets you see) and eventually fail altogether as the improper connection corrodes over time.
The correct installation process is to use "punch-down" RJ45 jacks at each end of the cable run, and connect from those jacks to your equipment (radio at one end, POE switch at the other). On the outdoor side, the jack/plug junction >needs to be in a NEMA weatherproof enclosure, with weathertight fittings. And, for human and equipment safety, you must use shielded Cat5e/6 cable anytime you go outdoors, grounding only one end (usually the radio end), and >protecting the cable with an inline lightning protector between the RJ45 jack and the radio.
If you haven't done that, then that's the first thing to fix.
BTW, avoid homemade patch cables whenever possible. Quality factory cables are hydraulically pressed and the plug is hermetically fused for a vastly superior connection compared to anything you can do with simple hand crimpers. And >all outdoor cables must be UV-grade cabling with weatherproof sheathing and water repellant inside (so-called "flooded" cable).
-mel beckman
The UBNT controller is only required when setting up the APs or for certain guest portal functions. I'd just leave it connected all of the time. ----- Mike Hammett Intelligent Computing Solutions http://www.ics-il.com Midwest Internet Exchange http://www.midwest-ix.com ----- Original Message ----- From: "Bob Evans" <bob@FiberInternetCenter.com> To: "Steve Naslund" <SNaslund@medline.com> Cc: nanog@nanog.org Sent: Friday, June 19, 2015 11:26:42 AM Subject: RE: Ghosts in our 6 New Ubiquity Pros - provision issues.
That's possible but I if they are re-provisioning on a regular schedule I kind of doubt it. It would be easy to test though. Plug an AP directly into your switch with a quality pre-manufactured patch cord and see how it acts. If it exhibits the same symptom it is probably not cabling. Also, have you checked your interface counters for any packet errors?
Yes, no packet errors crcs or frags.
Don't forget to look at your controller because if the controller became unreachable for any length of time that could easily cause your APs to re-provision as they reconnect with the controller.
This is did not know - thought the controller was just to provision and monitor. After all why would a manufacturer make one point of failure for a campus setup that uses thier own edgerouter for the dhcp etc. Doesnt seem correct. But will will investigate it.
I might set up a ping every second from the site of the access points to the controller and make sure the availability of the controller is 100%.
Yes that and what the ciscos report on the port link.
If you are on Cisco switches you should have log messages regarding PoE be granted on particular ports as well as up down messages on the interfaces.
Yep and we get them.
Do you see the ports going up and down? It is important to have NTP on the APs and switches so that you can correlate events in time (i.e. did the AP reboot causing the Ethernet link to drop or did the link drop causing the reboot?)
I am sure its the APs dropping - as non of the other devices VOIP phones etc drop in the logs. Thanks Steven Bob
Steven Naslund Chicago IL
Bob, I've deployed tons of Ubiquiti gear, and have seen this problem before. It always turns out to be poor quality cable installation. POE does not tolerate low quality connectors, especially in outdoor environments. There are >many aspects to a quality cabling job, so the best thing you can do is seek out a qualified installer with outdoor POE experience.
The most common problem I see is people using crimp-on RJ45 connectors directly on the ends of their cable runs. This is not how structured cabling is designed to work, in particular because most crimp-on connectors are intended for >stranded copper wire (such as that used in very flexible patch cords, designed to run horizontally over only a few dozens of feet), whereas the "riser" and "plenum" cable used for long-distance runs has solid core wires. The tiny >teeth in standard crimp connectors are designed to penetrate stranded wire, to make a solid electrical contact. With solid core wire, they just bend to the side of the copper core, making tenuous contact, which will conduct POE >current poorly (resulting in the resets you see) and eventually fail altogether as the improper connection corrodes over time.
The correct installation process is to use "punch-down" RJ45 jacks at each end of the cable run, and connect from those jacks to your equipment (radio at one end, POE switch at the other). On the outdoor side, the jack/plug junction >needs to be in a NEMA weatherproof enclosure, with weathertight fittings. And, for human and equipment safety, you must use shielded Cat5e/6 cable anytime you go outdoors, grounding only one end (usually the radio end), and >protecting the cable with an inline lightning protector between the RJ45 jack and the radio.
If you haven't done that, then that's the first thing to fix.
BTW, avoid homemade patch cables whenever possible. Quality factory cables are hydraulically pressed and the plug is hermetically fused for a vastly superior connection compared to anything you can do with simple hand crimpers. And >all outdoor cables must be UV-grade cabling with weatherproof sheathing and water repellant inside (so-called "flooded" cable).
-mel beckman
Mel, Thanks, for all the detail. Everything is in doors and directly connected by new 3 to 6 foot manufactured cables on a cisco switches. All cables have been changed - even tired crossover cables - same results. I'm thinking it has something to do with the controller communications...All these APs shouldn't need a controller after configuration and boot up. But we leave it up. Thank You Bob Evans CTO
Bob, I've deployed tons of Ubiquiti gear, and have seen this problem before. It always turns out to be poor quality cable installation. POE does not tolerate low quality connectors, especially in outdoor environments. There are many aspects to a quality cabling job, so the best thing you can do is seek out a qualified installer with outdoor POE experience.
The most common problem I see is people using crimp-on RJ45 connectors directly on the ends of their cable runs. This is not how structured cabling is designed to work, in particular because most crimp-on connectors are intended for stranded copper wire (such as that used in very flexible patch cords, designed to run horizontally over only a few dozens of feet), whereas the "riser" and "plenum" cable used for long-distance runs has solid core wires. The tiny teeth in standard crimp connectors are designed to penetrate stranded wire, to make a solid electrical contact. With solid core wire, they just bend to the side of the copper core, making tenuous contact, which will conduct POE current poorly (resulting in the resets you see) and eventually fail altogether as the improper connection corrodes over time.
The correct installation process is to use "punch-down" RJ45 jacks at each end of the cable run, and connect from those jacks to your equipment (radio at one end, POE switch at the other). On the outdoor side, the jack/plug junction needs to be in a NEMA weatherproof enclosure, with weathertight fittings. And, for human and equipment safety, you must use shielded Cat5e/6 cable anytime you go outdoors, grounding only one end (usually the radio end), and protecting the cable with an inline lightning protector between the RJ45 jack and the radio.
If you haven't done that, then that's the first thing to fix.
BTW, avoid homemade patch cables whenever possible. Quality factory cables are hydraulically pressed and the plug is hermetically fused for a vastly superior connection compared to anything you can do with simple hand crimpers. And all outdoor cables must be UV-grade cabling with weatherproof sheathing and water repellant inside (so-called "flooded" cable).
-mel beckman
On Jun 19, 2015, at 4:54 AM, Hal Ponton <hal@buzcom.net> wrote:
What version of the controller are you using, we're running 3.something at that works fine.
We've turned off auto update on all of the sites on the server, and Nagios monitors them, we certainly don't see reboots 2-3 times a day, the last time ours rebooted was when we lost power at our office.
Contact me off list if you want me to take a look.
Regards,
Hal Ponton
Senior Network Engineer
Buzcom / FibreWiFi
Tel: 07429 979 217 Email: hal@buzcom.net
On 19 Jun 2015, at 11:01, Bob Evans <bob@FiberInternetCenter.com> wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
I've had their gear for a few years now. It's effectively up until I upgrade the software. Might want to ask on their forums or on the WISPA UBNT list. ----- Mike Hammett Intelligent Computing Solutions http://www.ics-il.com Midwest Internet Exchange http://www.midwest-ix.com ----- Original Message ----- From: "Bob Evans" <bob@FiberInternetCenter.com> To: nanog@nanog.org Sent: Friday, June 19, 2015 5:01:49 AM Subject: Ghosts in our 6 New Ubiquity Pros - provision issues. Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night. We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period. Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.) We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi. Thank You Bob Evans
Mike, Good to know they are reliable. It is an odd looking problem. We will try the forums. Thank You Bob Evans
I've had their gear for a few years now. It's effectively up until I upgrade the software. Might want to ask on their forums or on the WISPA UBNT list.
----- Mike Hammett Intelligent Computing Solutions http://www.ics-il.com
Midwest Internet Exchange http://www.midwest-ix.com
----- Original Message -----
From: "Bob Evans" <bob@FiberInternetCenter.com> To: nanog@nanog.org Sent: Friday, June 19, 2015 5:01:49 AM Subject: Ghosts in our 6 New Ubiquity Pros - provision issues.
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided. They didn't recommend it, but we plugged them all into APC UPSes..... no difference. They all re-provision at different times even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
We use the UniFi controller on mac os x. We use their EdgeMax Edge Router. All the latest software in everything UniFi.
Thank You Bob Evans
On 2015-06-19 05:01, Bob Evans wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
Drop link all the way down to layer 1? What does re-provision mean? Lose/re acquire DHCP lease? \ What is your network topology? What kind of switches are you using? What's the length of the cable runs? Have you had an electrician check your wiring? How many access points are you running? How many fail? Do they fail in any kind of cluster/pattern? That's just the basic questions. Lots more information needed if you want free support from the NANOG hive mind :D They have millions of satisfied customers in deployments from some of the worlds largest shopping malls to multi state ISPs. Different gear across that customer base of course.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided.
POE from ciscos.... mid span injector, or switch port? They didn't recommend it, but we plugged them all into
APC UPSes..... no difference.
The midspan injectors you mean? Hmmmm, wonder why they didn't want you to put them in UPS. Did they provide any explanation? They all re-provision at different times
even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Interesting. Any repeated offenders?
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
Do they come back on their own? What's the "downtime" time window?
We use the UniFi controller on mac os x.
Mac OSX isn't a server platform. Sorry. Use Windows 2k12 or Ubuntu Server (or your favorite debian or Redhat flavor). I've had zero problems on either of those platforms. What's the topology between the access points and your controller "server"?
Here is another though. If your APs are re-provisioning every eight hours, what is your DHCP lease time? Are you sure the APs are able to renew their leases (if not, could your scope be full)? Do you see the IP addresses on the APs changing when they come back up? These could indicate a DHCP server issue. If the AP gets a new IP address it will likely have to be re-adopted to the controller. You might want to static address one or more APs to test this theory. Steven Naslund Chicago IL
The IP can change on the UniFi without having to re-adopt or re-provision. APs are identified by MAC address at the UniFi protocol level (not layer 2). On 06/19/2015 09:09 AM, Naslund, Steve wrote:
Here is another though. If your APs are re-provisioning every eight hours, what is your DHCP lease time? Are you sure the APs are able to renew their leases (if not, could your scope be full)? Do you see the IP addresses on the APs changing when they come back up? These could indicate a DHCP server issue. If the AP gets a new IP address it will likely have to be re-adopted to the controller. You might want to static address one or more APs to test this theory.
Steven Naslund Chicago IL
We have all APs set with static addresses. EdgeMax only hands out IPs to clients using the APs. This happens when people are using the APs and when no one is even in the building at 2am when there are no clients connected. It can happen to one then 5 hours later it happens again...then doesn't happen again for 12 hours. Totally random no interval. It is nice to know that others have no issues with these UniFi AP Pros. They seem to be fine except for the 2 mins or so they randomly drop link and reboot themselves. All are on APC UPSes and other devices in the same switch , like voip phones, never drop the ports. They are all new, delivered in various batches over time. We checked and all are the latest versions. Bob Evans
The IP can change on the UniFi without having to re-adopt or re-provision. APs are identified by MAC address at the UniFi protocol level (not layer 2).
On 06/19/2015 09:09 AM, Naslund, Steve wrote:
Here is another though. If your APs are re-provisioning every eight hours, what is your DHCP lease time? Are you sure the APs are able to renew their leases (if not, could your scope be full)? Do you see the IP addresses on the APs changing when they come back up? These could indicate a DHCP server issue. If the AP gets a new IP address it will likely have to be re-adopted to the controller. You might want to static address one or more APs to test this theory.
Steven Naslund Chicago IL
Only have 1 Pro on my network and it hasn't given me any issues, several of the original AP and AP-LR as well without issues. What is the uptime on the AP? You should be able to ssh into the APs using the controller username and password. It is a linux base so 'uptime' will tell you. You can also check for ethernet errors using 'ip -s link' on the AP side. On 06/19/2015 11:45 AM, Bob Evans wrote:
We have all APs set with static addresses. EdgeMax only hands out IPs to clients using the APs.
This happens when people are using the APs and when no one is even in the building at 2am when there are no clients connected. It can happen to one then 5 hours later it happens again...then doesn't happen again for 12 hours. Totally random no interval.
It is nice to know that others have no issues with these UniFi AP Pros. They seem to be fine except for the 2 mins or so they randomly drop link and reboot themselves. All are on APC UPSes and other devices in the same switch , like voip phones, never drop the ports.
They are all new, delivered in various batches over time. We checked and all are the latest versions.
Bob Evans
The IP can change on the UniFi without having to re-adopt or re-provision. APs are identified by MAC address at the UniFi protocol level (not layer 2).
On 06/19/2015 09:09 AM, Naslund, Steve wrote:
Here is another though. If your APs are re-provisioning every eight hours, what is your DHCP lease time? Are you sure the APs are able to renew their leases (if not, could your scope be full)? Do you see the IP addresses on the APs changing when they come back up? These could indicate a DHCP server issue. If the AP gets a new IP address it will likely have to be re-adopted to the controller. You might want to static address one or more APs to test this theory.
Steven Naslund Chicago IL
Have you done a network analysis for viruses or bridge loops? This could be a broadcast storm caused by either of those network faults. -mel
On Jun 19, 2015, at 10:08 AM, Sam Tetherow <tetherow@shwisp.net> wrote:
Only have 1 Pro on my network and it hasn't given me any issues, several of the original AP and AP-LR as well without issues.
What is the uptime on the AP? You should be able to ssh into the APs using the controller username and password. It is a linux base so 'uptime' will tell you. You can also check for ethernet errors using 'ip -s link' on the AP side.
On 06/19/2015 11:45 AM, Bob Evans wrote:
We have all APs set with static addresses. EdgeMax only hands out IPs to clients using the APs.
This happens when people are using the APs and when no one is even in the building at 2am when there are no clients connected. It can happen to one then 5 hours later it happens again...then doesn't happen again for 12 hours. Totally random no interval.
It is nice to know that others have no issues with these UniFi AP Pros. They seem to be fine except for the 2 mins or so they randomly drop link and reboot themselves. All are on APC UPSes and other devices in the same switch , like voip phones, never drop the ports.
They are all new, delivered in various batches over time. We checked and all are the latest versions.
Bob Evans
The IP can change on the UniFi without having to re-adopt or re-provision. APs are identified by MAC address at the UniFi protocol level (not layer 2).
On 06/19/2015 09:09 AM, Naslund, Steve wrote:
Here is another though. If your APs are re-provisioning every eight hours, what is your DHCP lease time? Are you sure the APs are able to renew their leases (if not, could your scope be full)? Do you see the IP addresses on the APs changing when they come back up? These could indicate a DHCP server issue. If the AP gets a new IP address it will likely have to be re-adopted to the controller. You might want to static address one or more APs to test this theory.
Steven Naslund Chicago IL
Mell, God idea , but , yes we did - no loops all are spokes - we know cabling and setup our switches and routers to syslog those events. Thank You Bob Evans CTO
Have you done a network analysis for viruses or bridge loops? This could be a broadcast storm caused by either of those network faults.
-mel
On Jun 19, 2015, at 10:08 AM, Sam Tetherow <tetherow@shwisp.net> wrote:
Only have 1 Pro on my network and it hasn't given me any issues, several of the original AP and AP-LR as well without issues.
What is the uptime on the AP? You should be able to ssh into the APs using the controller username and password. It is a linux base so 'uptime' will tell you. You can also check for ethernet errors using 'ip -s link' on the AP side.
On 06/19/2015 11:45 AM, Bob Evans wrote:
We have all APs set with static addresses. EdgeMax only hands out IPs to clients using the APs.
This happens when people are using the APs and when no one is even in the building at 2am when there are no clients connected. It can happen to one then 5 hours later it happens again...then doesn't happen again for 12 hours. Totally random no interval.
It is nice to know that others have no issues with these UniFi AP Pros. They seem to be fine except for the 2 mins or so they randomly drop link and reboot themselves. All are on APC UPSes and other devices in the same switch , like voip phones, never drop the ports.
They are all new, delivered in various batches over time. We checked and all are the latest versions.
Bob Evans
The IP can change on the UniFi without having to re-adopt or re-provision. APs are identified by MAC address at the UniFi protocol level (not layer 2).
On 06/19/2015 09:09 AM, Naslund, Steve wrote:
Here is another though. If your APs are re-provisioning every eight hours, what is your DHCP lease time? Are you sure the APs are able to renew their leases (if not, could your scope be full)? Do you see the IP addresses on the APs changing when they come back up? These could indicate a DHCP server issue. If the AP gets a new IP address it will likely have to be re-adopted to the controller. You might want to static address one or more APs to test this theory.
Steven Naslund Chicago IL
Do you want to set one of the radios to my Unifi server to confirm it is or isn't a controller problem? If you simply turn off your controller you can confirm as well. The devices will run as provisioned until told otherwise. Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Fri, Jun 19, 2015 at 10:03 AM, <charles@thefnf.org> wrote:
On 2015-06-19 05:01, Bob Evans wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
Drop link all the way down to layer 1? What does re-provision mean? Lose/re acquire DHCP lease? \
What is your network topology? What kind of switches are you using? What's the length of the cable runs? Have you had an electrician check your wiring? How many access points are you running? How many fail? Do they fail in any kind of cluster/pattern?
That's just the basic questions.
Lots more information needed if you want free support from the NANOG hive mind :D
They have millions of satisfied customers in deployments from some of the worlds largest shopping malls to multi state ISPs. Different gear across that customer base of course.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided.
POE from ciscos.... mid span injector, or switch port?
They didn't recommend it, but we plugged them all into
APC UPSes..... no difference.
The midspan injectors you mean? Hmmmm, wonder why they didn't want you to put them in UPS. Did they provide any explanation?
They all re-provision at different times
even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Interesting. Any repeated offenders?
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
Do they come back on their own? What's the "downtime" time window?
We use the UniFi controller on mac os x.
Mac OSX isn't a server platform. Sorry. Use Windows 2k12 or Ubuntu Server (or your favorite debian or Redhat flavor). I've had zero problems on either of those platforms.
What's the topology between the access points and your controller "server"?
Thank You Charles, Been on NANOG a while - all the basic stuff we know well. Like, cables, cluster occurrences etc. Looking for the UniFi specific experience. Its not the switches, power, cables, ports show no CRC issues etc. We even setup another network with just 2 and it happens randomly - so its some code or something. Think I'm going to let one of the guys here login the the controller and see if we missed a setting in the latest code. NANOGs real good at having someone with specific targeted knowledge appear. Thank You Bob Evans CTO
On 2015-06-19 05:01, Bob Evans wrote:
Ubiquiti Networks UniFi UAP-PRO Enterprise WiFi System - hard to recommend at this point. We saw people mention this brand here on the list - people like them. So what could we have set incorrectly ? They drop link and re-provision on their own at odd times day or night.
Drop link all the way down to layer 1? What does re-provision mean? Lose/re acquire DHCP lease? \
What is your network topology? What kind of switches are you using? What's the length of the cable runs? Have you had an electrician check your wiring? How many access points are you running? How many fail? Do they fail in any kind of cluster/pattern?
That's just the basic questions.
Lots more information needed if you want free support from the NANOG hive mind :D
They have millions of satisfied customers in deployments from some of the worlds largest shopping malls to multi state ISPs. Different gear across that customer base of course.
We have completed everything tech support asked of us. (Really, lame emails they respond with as if they didn't read your text - they won't call and you can't call them). We used POE from ciscos - then changed to their POE provided.
POE from ciscos.... mid span injector, or switch port?
They didn't recommend it, but we plugged them all into
APC UPSes..... no difference.
The midspan injectors you mean? Hmmmm, wonder why they didn't want you to put them in UPS. Did they provide any explanation?
They all re-provision at different times
even when no one is connected or in the building at odd hours like 2am. Each one does this 2-3 times per 24 hour period.
Interesting. Any repeated offenders?
Has anyone else experienced this? Anyone know what we may have set incorrectly ? Is this normal - do people put up with the 2 mins the APs are unavailable about 3 times a day? (UniFi support acts like it's not a big issues.)
Do they come back on their own? What's the "downtime" time window?
We use the UniFi controller on mac os x.
Mac OSX isn't a server platform. Sorry. Use Windows 2k12 or Ubuntu Server (or your favorite debian or Redhat flavor). I've had zero problems on either of those platforms.
What's the topology between the access points and your controller "server"?
On 6/19/15 10:57 AM, Bob Evans wrote:
Thank You Charles, Been on NANOG a while - all the basic stuff we know well. Like, cables, cluster occurrences etc. Looking for the UniFi specific experience. Its not the switches, power, cables, ports show no CRC issues etc.
We even setup another network with just 2 and it happens randomly - so its some code or something. Think I'm going to let one of the guys here login the the controller and see if we missed a setting in the latest code. NANOGs real good at having someone with specific targeted knowledge appear.
I've got a bunch of regular UAPs spread out over multiple customers with various network setups including ERLs as routers, CenturyLink POS modems of various generations, Dink routers, etc. My controller is hosted off-site in Tacoma in our data center. Some issues I've run into, particularly on the consumer devices like the older CenturyLink/Qwest modems... 1) Broken MTU clamping/fixing on PPPoE links, causing the UAPs to have problems making a connection to the remote controller. Worked around by messing with the MSS using iptables on specifically the tcp/8080 and tcp/8443 port on the controller end. Other devices, had to make sure to disable the firewall feature on modem, in order to get it to stop eating ICMP packets (and thus breaking pmtu). 2) Faulty DNS server daemons on the routers. The UAPs would have issues randomly resolving the controller's IP address from hostname. Have this problem time to time with anyone using the built in DNS servers on the CenturyLink/Qwest modems. Resolved this issue by statically defining IP and DNS servers on the UAPs (DNS server set to 8.8.8.8). Also had to disable the firewall on one of the routers to get it to not intercept/mangle DNS packets. These two issues alone have caused me major issues with the devices randomly being unable to get new configurations or download firmware updates. On network switches connected to the UAPs, make sure that you've got the port set to whatever the switches' version of cisco 'portfast' is. In the Site Settings under the Unifi controller, disable "Enable connectivity monitor and wireless uplink" and see if the problem eases up. If you need to use the uplink monitor, manually set the IP you want to check with, and make sure the UAPs can actually ping said IP. I'm the head mod for /r/Ubiquiti, so feel free to bounce things off of me privately with your Unifi setup, and I'll be happy to give you a hand. I can also direct you to the unofficial Ubnt IRC channel where you can get a bunch more opinions. -- Brielle Bruns The Summit Open Source Development Group http://www.sosdg.org / http://www.ahbl.org
<snipped comments about much cpe sadness>
These two issues alone have caused me major issues with the devices randomly being unable to get new configurations or download firmware updates.
Question. Once they have connected and are "happy", do they drop off (re provision) like Bob is mentioning? I'm still not entirely sure what is meant by "re provision". I've not seen it answered in the thread.
I'm the head mod for /r/Ubiquiti, so feel free to bounce things off of me privately with your Unifi setup,
Didn't know that sub reddit existed. Awesome.
On 6/19/15 12:26 PM, charles@thefnf.org wrote:
<snipped comments about much cpe sadness>
These two issues alone have caused me major issues with the devices randomly being unable to get new configurations or download firmware updates.
Question. Once they have connected and are "happy", do they drop off (re provision) like Bob is mentioning? I'm still not entirely sure what is meant by "re provision". I've not seen it answered in the thread.
Reprovisioning with Unifi happens any time you make a configuration change. The next time the device does it's check-in (don't remember how often it checks in, but its at least once a min), the UAP will get a copy of its updated configuration, load it, then activate the changes (and reboot if necessary). If the device never goes out of provisioning state, then it hasn't managed to pull its configuration or firmware properly and will likely keep trying. When the device is having complete connection issues, it will show up as Disconnected rather then Provisioning in the controller. Useful thing I've done - when a device is randomly having issues with provisioning, I'll setup the remote syslog option in the config, and have it remote log to my controller's syslog. Usually, it will dump exactly the reason why its failing the provision to syslog, making it easier to diagnose.
I'm the head mod for /r/Ubiquiti, so feel free to bounce things off of me privately with your Unifi setup,
Didn't know that sub reddit existed. Awesome.
Its not as busy as the forums, but there's sometimes good info there. There's also the IRC channel as well, which has a mix of users and some Ubnt employees. -- Brielle Bruns The Summit Open Source Development Group http://www.sosdg.org / http://www.ahbl.org
This is very helpful information. We will be implementing these steps. Thank You Bob Evans CTO
On 6/19/15 12:26 PM, charles@thefnf.org wrote:
<snipped comments about much cpe sadness>
These two issues alone have caused me major issues with the devices randomly being unable to get new configurations or download firmware updates.
Question. Once they have connected and are "happy", do they drop off (re provision) like Bob is mentioning? I'm still not entirely sure what is meant by "re provision". I've not seen it answered in the thread.
Reprovisioning with Unifi happens any time you make a configuration change. The next time the device does it's check-in (don't remember how often it checks in, but its at least once a min), the UAP will get a copy of its updated configuration, load it, then activate the changes (and reboot if necessary).
If the device never goes out of provisioning state, then it hasn't managed to pull its configuration or firmware properly and will likely keep trying.
When the device is having complete connection issues, it will show up as Disconnected rather then Provisioning in the controller.
Useful thing I've done - when a device is randomly having issues with provisioning, I'll setup the remote syslog option in the config, and have it remote log to my controller's syslog. Usually, it will dump exactly the reason why its failing the provision to syslog, making it easier to diagnose.
I'm the head mod for /r/Ubiquiti, so feel free to bounce things off of me privately with your Unifi setup,
Didn't know that sub reddit existed. Awesome.
Its not as busy as the forums, but there's sometimes good info there. There's also the IRC channel as well, which has a mix of users and some Ubnt employees.
-- Brielle Bruns The Summit Open Source Development Group http://www.sosdg.org / http://www.ahbl.org
re-provisioning is to go to the controller find its config and reboot. Thank You Bob Evans CTO
<snipped comments about much cpe sadness>
These two issues alone have caused me major issues with the devices randomly being unable to get new configurations or download firmware updates.
Question. Once they have connected and are "happy", do they drop off (re provision) like Bob is mentioning? I'm still not entirely sure what is meant by "re provision". I've not seen it answered in the thread.
I'm the head mod for /r/Ubiquiti, so feel free to bounce things off of me privately with your Unifi setup,
Didn't know that sub reddit existed. Awesome.
Great details ! Going to implement now. Thank You Bob Evans CTO
On 6/19/15 10:57 AM, Bob Evans wrote:
Thank You Charles, Been on NANOG a while - all the basic stuff we know well. Like, cables, cluster occurrences etc. Looking for the UniFi specific experience. Its not the switches, power, cables, ports show no CRC issues etc.
We even setup another network with just 2 and it happens randomly - so its some code or something. Think I'm going to let one of the guys here login the the controller and see if we missed a setting in the latest code. NANOGs real good at having someone with specific targeted knowledge appear.
I've got a bunch of regular UAPs spread out over multiple customers with various network setups including ERLs as routers, CenturyLink POS modems of various generations, Dink routers, etc.
My controller is hosted off-site in Tacoma in our data center.
Some issues I've run into, particularly on the consumer devices like the older CenturyLink/Qwest modems...
1) Broken MTU clamping/fixing on PPPoE links, causing the UAPs to have problems making a connection to the remote controller.
Worked around by messing with the MSS using iptables on specifically the tcp/8080 and tcp/8443 port on the controller end.
Other devices, had to make sure to disable the firewall feature on modem, in order to get it to stop eating ICMP packets (and thus breaking pmtu).
2) Faulty DNS server daemons on the routers. The UAPs would have issues randomly resolving the controller's IP address from hostname. Have this problem time to time with anyone using the built in DNS servers on the CenturyLink/Qwest modems.
Resolved this issue by statically defining IP and DNS servers on the UAPs (DNS server set to 8.8.8.8). Also had to disable the firewall on one of the routers to get it to not intercept/mangle DNS packets.
These two issues alone have caused me major issues with the devices randomly being unable to get new configurations or download firmware updates.
On network switches connected to the UAPs, make sure that you've got the port set to whatever the switches' version of cisco 'portfast' is.
In the Site Settings under the Unifi controller, disable "Enable connectivity monitor and wireless uplink" and see if the problem eases up. If you need to use the uplink monitor, manually set the IP you want to check with, and make sure the UAPs can actually ping said IP.
I'm the head mod for /r/Ubiquiti, so feel free to bounce things off of me privately with your Unifi setup, and I'll be happy to give you a hand. I can also direct you to the unofficial Ubnt IRC channel where you can get a bunch more opinions.
-- Brielle Bruns The Summit Open Source Development Group http://www.sosdg.org / http://www.ahbl.org
On 2015-06-19 11:57, Bob Evans wrote:
Thank You Charles, Been on NANOG a while - all the basic stuff we know well. Like, cables, cluster occurrences etc. Looking for the UniFi specific experience. Its not the switches, power, cables, ports show no CRC issues etc.
Sure. I've seen you around. Always good to check the basics, start at layer 1 and work up. That doesn't change, no matter how experienced a crew is. :)
We even setup another network with just 2 and it happens randomly - so its some code or something.
Wait... same controller? Or a different controller? Because if you can replicate across access points and controllers then you've probably found a bug. Well presuming you aren't fate sharing with anything else (like switches). Very weird. Think I'm going to let one of the guys here login
the the controller and see if we missed a setting in the latest code. NANOGs real good at having someone with specific targeted knowledge appear.
Yes it sure is.
participants (11)
-
Bob Evans -
Brielle Bruns -
charles@thefnf.org -
Hal Ponton -
Jared Mauch -
Josh Luthman -
Mel Beckman -
Mike Hammett -
Naslund, Steve -
Sam Tetherow -
Steve Mikulasik