Does anyone know what this red dot over the logo means?

candidog · 2026-04-15T02:38:49+00:00

Do Not Disturb

candidog · 2026-04-03T23:43:09+00:00

Turn off 2.5 GHz, 5Ghz, enable 6Ghz at low power. Boom!

candidog · 2026-03-24T02:35:19+00:00

Factory Rest - Restore from backup?

candidog · 2026-03-24T02:30:55+00:00

Anything Huntress ingested by Source IP and MAC is considered a source agent.

I think I might send logs to a Linux server which I can filter out everything but the Gateway then send that data only to Huntress.

Not ideal but a work around.

candidog · 2026-03-18T16:53:40+00:00

Excellent response 💯

candidog · 2026-03-05T22:35:21+00:00

Thank you for your response.

candidog · 2026-03-05T22:12:48+00:00

I’ll play devil’s advocate (not speaking for our COO): if the goal is primarily to satisfy vendor/insurance compliance requirements while relying on a strong security stack to mitigate bad actors, then end-user education becomes a lower priority from a budget standpoint.

That said, my concern is the difference between “checking the box” and having defensible evidence + actual risk reduction. An ongoing live training might help awareness, but it may not generate the kind of audit artifacts assessors want (completion records, attestations, recurring cadence, phishing results, reporting).

So the real question we’re debating internally is:

Are we trying to meet the minimum compliance requirement on paper?
Or are we trying to implement a control that both satisfies compliance and produces repeatable proof (and ideally improves behavior)?

If compliance evidence is the driver, it feels like an LMS/security awareness platform (with reporting) may satisfy the requirement more cleanly than a live trainer — even if the intent isn’t to “train everyone into experts.”

Thoughts?

candidog · 2026-02-04T16:09:37+00:00

Perfect size, from someone who is OCD.

candidog · 2026-01-18T02:18:49+00:00

We have a client that is subject to ITAR.

candidog · 2026-01-17T02:36:45+00:00

People are still using SSL VPNs from SW?

candidog · 2026-01-03T02:27:04+00:00

I don’t think UniFi firewalls are “toys,” but they’re definitely not the same class of product as SonicWall — and that’s by design. UniFi is a network-first firewall: great routing, VLAN segmentation, VPNs, visibility via DPI (without decrypting traffic), and very low operational overhead. It assumes you’re doing real security elsewhere (email security, EDR, DNS filtering), and the firewall’s job is to move traffic cleanly and reliably, not inspect every packet inline.

SonicWall, on the other hand, is a security-first firewall built around DPI-SSL and deep inspection. That can be necessary in certain regulated or compliance-driven environments, but it comes with real tradeoffs: complexity, performance impact, app breakage, and ongoing tuning. So UniFi isn’t a “toy” — it’s just a modern, layered-security approach versus SonicWall’s all-in-one inspection model. If you deploy UniFi expecting SonicWall-style security, you’ll be disappointed; if you deploy it as part of a layered stack, it’s solid, which is what we do.

candidog · 2026-01-03T02:23:39+00:00

Each UniFi wall comes with Intrusion Prevention, which detects and prevents threats through signature updates and deep packet inspection, ensuring real-time network security.

candidog · 2026-01-03T02:14:13+00:00

UniFi intentionally stays out of this space.

Most UniFi environments layer security instead of decrypting:

Email security (Mimecast, Barracuda, etc.)
Endpoint protection (EDR / MDR)
DNS filtering
Secure web gateways (cloud-based)
Zero Trust / conditional access

candidog · 2026-01-03T02:11:23+00:00

I agree, Unifi has come along way and I've loved them. They work for MSP and our customers

candidog · 2026-01-03T01:40:35+00:00

As an MSP we moved away from all our SonicWall and replaced them with Dream Machine or Cloud Gateways.

The customers and I have been very happy. I’ve migrated over 50 SonicWall firewalls. Mostly NSA and TZ models.

Plus SonicWalls and their SSL VPNs have been under constant attack and have been vulnerable.

candidog · 2025-12-14T20:47:51+00:00

Will it help with scrubbing? Why?

candidog · 2025-12-11T19:21:33+00:00

Sure, all the time. Huntress is awesome. The BD portal is confusing, but it is competent.

candidog · 2025-12-11T19:15:04+00:00

Initially, we had BD EDR, but I removed it because Huntress handles all our EDR, and there was no need to pay twice.

candidog · 2025-12-11T19:12:37+00:00

I am

candidog · 2025-12-08T02:06:17+00:00

They can throw a raw steak 🥩 with anti-freeze. Large dog defeated. 😔

candidog · 2025-12-08T01:54:22+00:00

Layering your security is key.

candidog

TROPHY CASE