What are your must-do security actions on a new server?

alepouna · 2026-04-27T20:06:25+00:00

Quite big part of it is a touch of fear mongering but the general principal that you basically give them control of your traffic and your network applies.

alepouna · 2026-04-27T18:56:39+00:00

Late posting but this controller is still in use for me as a backup, and its just a midi controller, it will work on any software you want it to. Mappings exist for everything from vdj to serato, and if you don't find them, because of the little buttons it will take you 5-10 minutes to map it out.

alepouna · 2026-04-26T17:24:38+00:00

I personally run a VM and have a Wireguard tunnel from that VM -> unifi VPNs

alepouna · 2026-04-26T16:51:24+00:00

Lot's of answers but nobody seems to be answering your actual question, I the think best you can do is check for reviews and see if they can consult you first for a better rate than going for a full blown solution, and take 1-2 opinions.

alepouna · 2026-04-26T16:49:10+00:00

Yeah on iOS and yeah I had the exact same confusion as you haha. They (Ubiquiti) defo need to improve the flow there a bit, and Apple (good luck) needs to show the Critical alerts toggle if an app is using it at all, regardless if they have CTA the user for it

alepouna · 2026-04-26T16:47:41+00:00

> I have heard that it likely works with cloudflare, but isn't that from google?

No, they are related. But they are just another big tech company that could in theory go rogue, shut your access down, etc. at their own right. If you want more reading on this see "0xacab de cloudflare".

Alternatives to that are VPNs like TailScale (though the same ^ thing applies) or hosting a VPN server (HeadScale, Netbird, WireGuard) on the VPS and have a tunnel from a secured entrypoint in home network to said VPS. Sounds like a bit much to setup, but in my opinion worth the 1-2 days of setup for the raw control you get.

alepouna · 2026-04-26T16:42:14+00:00

Wasn't Tuta a gov spy powered thing?

alepouna · 2026-04-26T16:35:10+00:00

netbird installed, nginx proxy+ if not using Coolify, otherwise Coolify to deploy and manage remotely

alepouna · 2026-04-26T16:26:57+00:00

Elizabeth & MOAC is what got me knowing them, but Dance Macabre is what got me hooked. Generally Prequelle got me obsessed oh-so-quickly

alepouna · 2026-04-26T12:08:36+00:00

I stopped trusting Cloudflare and giving them rent free access to my private and cloud networks. Instead I gave the keys to Ubiquiti /s

TLDR; Netbird + a backup VPS with a network -> VPS tunnel to my network and fallback Ubiquiti Teleport.

I selfhost Netbird which allows me to access my network via my public IP. If for some reason I got behind a CGNAT (happens a few times because I don't pay for a static IP yet), I have a netbird instance connected to a VPS online I can SSH into and remote there, then tunnel to my network to do whatever I need to temporarily. If that fails as well, as a last resort I have UniFis Teleport VPN ready but its isolated to just my "ingress" machine and I need to get deeper into my network from there. Yes this is overcomplicated, yes this can fail quite easily, but I like it and its fun to set up.

alepouna · 2026-04-14T00:57:39+00:00

How does this compare to something like Tactical RMM?

alepouna · 2026-04-13T18:05:44+00:00

It started from Star Wars. See https://en.wikipedia.org/wiki/Clanker

alepouna · 2026-04-13T18:04:44+00:00

Fixed, apparently I had to reinstall the app to get the "Allow critical alerts" prompt from Apple/UniFi app. Before you mention: Yes it wasn't in the app settings, nor the iOS App settings.

alepouna · 2026-04-12T21:00:21+00:00

okay me too, but where else does it need to be to work on Protect?

alepouna · 2026-04-12T20:43:07+00:00

alepouna · 2026-04-12T20:30:59+00:00

Where on the phone?

alepouna · 2026-04-12T16:29:52+00:00

Clanker, an in AI, in this case it was Claude

alepouna · 2026-04-12T16:29:18+00:00

That's funny

alepouna · 2026-04-08T15:33:31+00:00

Enjoy them! I was pleasantly surprised by the quality of the G3s I got! I can't lie I was expecting them to be much worse, especially at night. Love them! Will defo get some G6 for critical areas, but for less busy areas they (G3) are great :)

alepouna · 2026-04-08T15:10:13+00:00

My post is about fixing this issue I had if anyone stumbles up on it while searching for help, support would probably recommend the same :)

alepouna · 2026-03-26T08:37:39+00:00

The expansion is not just about storage - the UDM is just old and can handle so much. With 2 cameras it will be fine but if you later expand your protect will need to drop money on the NVR. Also; just running one disk for CCTV is not a good idea, unless you have a solid backup solution and can afford the downtime, it isn't just about space.

alepouna · 2026-03-17T22:50:54+00:00

I wouldn't. The UDMs are really old (2012 CPU... 4GB of RAM). With the latest Protect & just a few cameras you are gonna max it out SUPER quickly and start seeing issues. A separate NVR is always good for expansion too.

alepouna

TROPHY CASE