-
Valid SSL certificate on a UDM Pro
As a follow on from Valid SSL certificate on a UDR, here is an update for the UDM Pro. I recently upgraded again to a UDM Pro, after the December offer on both UDM Pro and the G4 Doorbell Pro. I have got round to setting it up and discovered my instructions for valid SSL…
-
Configuring Unifi USG with WireGuard
This post lists how to set up a wireguard network on the original USG. It uses the wireguard module from https://github.com/WireGuard/wireguard-vyatta-ubnt. The assumption here is: The json below doesnt format fantastically well, however this should be included in your config.gateway.json. Once added and the change provisioned, you should be able connect to your public IP…
-
Wireguard on Unifi
In a recent Beta firmware for various Unifi cloud consoles, Teleport was released. Under the covers, this appears to be run over wireguard. I have been using Wireguard as VPN for some time, though when I migrated off my USG I have had to run this from a raspberry pi in my network instead. After…
-
Valid SSL certificate on a UDR
I recently got a Unifi Dream Router as an upgrade from the Unifi Security Gateway. One of the differences is that the controller is hosted on the router itself, i quite often use the local access as opposed to going via unifi.ui.com. Since this is exposed locally on 443, i wanted to be able to…
-
Configuring Multicast DNS and IGMP across VLANs on Unifi
Since I have two VLANS, some things stop working if I am trying to use a device on one network from the other. As an example, at the moment I have put my Sonos speakers on the IOT VLAN, but i want to be able to control that from my mobile which connects to the…
-
Adding host records and cnames to a Unifi USG
At the moment I have my local domain name set to gsellis.com – the first issue I came across was that I lost the ability to look up my domain names on the internet – because the USG held the record of truth for gsellis.com. I am fairly sure I should be able to configure…
-
Configuration of a Unifi USG
Having recently upgraded our home network to Unifi, I figured it would be useful to record some of the configuration changes i’ve made. I have set up the network with two main VLANs – our normal VLAN, and an IOT network. The aim of the IOT network is to seperate IOT devices from the rest…
-
Monitoring of an IVT Vent 302
I have an IVT Vent 302 for heating. Along with the heatpump, there is also an addon – IVT Anywhere Gateway. This enables the heatpump to: Be controlled remotely via an app Decide when to heat the house/water according to the current energy price Events currently being monitored: /system/sensors/temperatures/switch /system/sensors/temperatures/supply_t1 /system/healthStatus /dhwCircuits/dhw1/actualTemp /system/sensors/temperatures/return /heatingCircuits/hc1/actualSupplyTemperature /system/sensors/temperatures/outdoor_t1
-
Configuring OpenVPN
After my vpn stopping working due to changes in openssl, i reinstalled it on a newer raspberry pi and tried to move my keys over – this didn’t work, first due to the diffie hellman only being 1024 bytes, then for some reason my client couldn’t negotiate tls, so rather than invest time getting the…
-
Debugging SQS::QueuePolicy in AWS
At work I needed to deploy an SQS queue along with policies to restrict access to the correct roles. I came across an annoying error, which took way to long to figure out. I originally started writing this as I assumed it would be some obscure problem that could affect other people…..in reality it was…