UniFi Network Controller Update 5.13.29 And Gen2 Pro Layer 3 Routing

community.ui.com/releases/UniFi-Network-Controller-5-13-29/d7647910-77a2-4e61-bbfe-389206f2d6ad
Managed VS Unmanaged Switches and Support For InterVLAN Routing / Layer Three Switch Routing
czcams.com/video/WqAqeS4tDL8/video.html

About the firewall rules: you have to add the rules under "LAN IN" when blocking between VLAN's with UniFi routing

Thanks, Tom, appreciate the heads-up. As for UBNT, as usual: Too little, too late.

Thanks for the update. Installed 5.13.29 to my Cloud Key and was disappointed that some of the interface elements appeared not to be working correctly. There were no issues with network operations thank goodness.
1. Deleted my previously existing Dashboard. Have to rebuild though some of the older widgets are missing making it less "quick glance" status. 2. Deleted my DPI data and had to reset the categories. 3. Maintenance tab defaulted to the Try New Settings Beta, but the previous GUI was gone left with a list of text strings and a number of errors preventing pages from being shown and accessing features.

Finally Layer3 available on Unifi switches Gen2 Pro

This wasn’t covered but DHCP relay wasn’t added with this release. Second if you have a network built you can’t just switch it from the USG to the switch you have to recreate the network from scratch.

To stop inver-vlan routing you need to put drop or reject rule under LAN_IN.

I do have a USG and was able to add intervlan fw rules that worked between vlans on the USG and the L3 switch. I didn't test fw rules between vlans that are both on the L3 switch but static routes did affect traffic between those vlans

Man I was really excited about layer 3 on these switches. I have some campus networks where this would be great but the ACL has got to be solid. The entire thing is just weird. The way the implement it in the UI all of it. They really need to get better at releasing documentation with this stuff.

Routing seems complicated. What can't you just type router x.x.x.x/x to x.x.x.x.
I would argue that not having support for ACLs defeats the purpose of VLAN routing

Thanks for another great video. I will be waiting in anticipation for a more detailed video showing a pfSense Pro Gen 2 switch with Layer 3 for Inter V-Lan Routing.

Cannot get this to work. Do not have USG....How do I tell the switch the default route? The inter Vlan routing works but anything beyond known IP networks is an issue.

Hard to read grey text on dark background.

2020 and layer3 is big feature you are joking ;) and where is ospf? :)

How do you define a default route or static routes? This is more akin to L3 switching than actually routing. UI is irritating because it is just "almost" awesome, but far enough away to be total junk

Interesting that the DHCP relay option goes away when you change the Gateway type to Switch; would prefer that the scope live on a separate DHCP server.

Thanks for all your great videos. Question
Love the videos and this series. I have a few questions. I would like to upgrade church network which have a domain controller and 4 static IP's. I'm not what to get as far as usg pro 4 or udm pro? Looking for simple but future proof setup. I want to get rid of static IP's is it necessary to have at least one? Or not necessary? My ISP set a modem and a router and then I would add a usg or udm isn't that redundant? Thanks for your help.

So, could this switch + CKG2 + UNVR be used to create a VLAN for a set of cameras? Would love that as I don't really want to upgrade my ASUS router which has great parental controls I need but at the same time it would be nice to segregate my cameras.

Any reason why the 16xg fiber switch isn’t included? But the smaller switch is?

You put the rules on LAN local instead of LAN IN, that’s why it wasn’t working for you.

Thank goodness you aren't installing Ubiquiti for customer firewalls. Fortinet, Checkpoint, and Palo Alto are much much better options.

About the VLAN Routing, did you change and adjust in pfsense the VLANs rules also?

Also running pfsense as my gateway. Is it worth getting a udm pro and Nat behind Nat?

Can it trunk? Does it have the capability to enable ports to be routed?

I never played around with the Firewall rules much as I figured they wouldn't work without a UniFi Gateway/Router. I use pfSense because it has better features. Firewall is layer 3 stuff and switches are layer 2 - so.... err... didn't make much sense to use a Firewall on a layer 2 device anyway? Maybe I'm missing something important? haha

Hey man, my ISP decided to upgrade my gigabit fiber internet to 25gb. Do you think it would work to "abuse" a usw-pro-aggregations L3 switching feature to replace a router since there's no security gateway with sfp28? i suppose NAT will be a problem?

What if you have multiple distribution switches (like my posting at UBNT community.ui.com/questions/USW-PRO-L3-routing-questions/5ec347bb-b09b-4b98-bd11-17cd497d10da) can you have multiple switches routing for a single VLAN, to your knowledge?

Howdy

Cool

I just updated my controller and all of my wireless connected access points changed to isolated!

have you enny idea of why my ap keeps reconnecting .. after new update switch 16 poe 150 W to 3 Ap's

Darknet Diaries lol