view the rest of the comments
Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
I have been using ubiquiti for years, and I would strongly caution against using them. They are forcing some devices to sign on to ubiquity cloud and synchronize with their cloud services, and are forcing those sign ins to use MFA. I really miss the ubiquity from 2020, where it was all local. Next time I upgrade my gear, I will probably not buy an ubiquiti router/gateway.
Also the upgrade process from Usg to dream router was awful. Also they don't let you run unifi in docker with a dream router, you are forced to run it on-device.
I was definitely leery of Ubiquity for that reason since before 2020. Even though back then it could all be local, I feel like pushing people to the cloud was already well-established as being a thing.
My criteria for routers and wi-fi access points up to this point has basically been "can run OpenWRT and is relatively cheap," so I've settled in on TP-Link. I'm still running on an old Archer C7 from a decade(?) ago and would like to have something that fits in my rack for aesthetic purposes, though, so my next router might be a 1U DIY x86 machine running OPNsense instead.
It's getting harder to find routers that will run open source firmware. The best option is to run OPNsense or pfSense on a low power x86 machine and use separate APs for WiFi.
I would never use their firewalls/gateways, but their switches are pretty good for the price and their APs are decent (although tbh after 3 generations my next AP will likely be an enterprise Aruba).
That said, I still use Unifi in docker, everything is up to date, and nothing is requiring a sign-in to the cloud. Am I missing something? If it's just the firewalls, then I'm not surprised since I've never been remotely tempted to use them, but it sure isn't all of their devices.
What router do you have? If it's a dream router, how did you join it to your unifi running in docker on another host?
My firewall is a Fortigate 60F.
Ubiquiti website says that dream router must run unifi.
https://store.ui.com/us/en/collections/unifi-dream-router/products/udr
I believe you. I'm just saying their non-firewalls (i.e., switches and APs) don't have that limitation.
Oh yeah, exactly. USG and aps and stuff do not. The dream router does, so I would caution against it.
Also, they may force it in the future. Their past behavior does indicate that direction.
I have an all Ubiquiti setup and only use local accounts for everything. UDM Pro, 2 8 port switches and 2 APs, U6Mesh and another older AP. One of my accounts had me turn on MFA but every device still let's me use a local account with a password and ssh key. Do you know what devices are forcing that?
What would you recommend as a replacement with same level of novice-friendly UI/setup? I was looking to go down that route specifically because it seems like an easy way to get a solid network setup without being a network pro.
I can recommend Grandstream. They have a great UI, tons of features explained in plain English, and powerful Access Points for a fair price. Zero cloud features necessary. Also a US based company, if that matters to you.
But even cooler, the controller is built into the Access Point and is peer-to-peer if multiple APs are in use.
I switched a month ago from a full Unifi network and couldn't be happier. Do note that they need PoE injectors to power the APs, but unlike Ubiquiti's they don't ship with them.
Hmm, they're not easily available in the EU it seems.
I would consider that a downside TBH, but it's hard to avoid unfortunately.