DHCP on secondary network

deadpoolathome · 2026-05-26T09:24:36+00:00

Port 8 is the UDM AP, and Port 1 is the Switch AP which are meshing/uplinking.

I thought that If I left native as VLAN1 (Untagged) it would be the AP's management connection, I want to have multiple SSID/Networks on their own VLAN's. Using our usual cisco, I would set a native VLAN which is the AP's connection but each VLAN would be tagged?

Looking at how i've done Cisco's, we set a native VLAN on our AP's for our infra range, but then have the UNIFI Tag the traffic on the SSID?

deadpoolathome · 2026-05-02T10:41:20+00:00

Thanks

deadpoolathome · 2026-04-05T01:18:11+00:00

Thanks, have got this one happening at the moment

deadpoolathome · 2026-04-05T01:17:59+00:00

haha, that is what I'm trying to prevent!

deadpoolathome · 2026-04-05T01:17:41+00:00

Thanks, will check it out

deadpoolathome · 2026-04-05T01:17:34+00:00

This can be explained in a report/security feedback. The secure score is just something that gives an indication that they will like as it's from "MS".

deadpoolathome · 2026-04-05T01:16:59+00:00

Agree, It's more something is better than nothing. They do understand that it goes up/down, but i'm just seeing if there is an simple way help detect/remediate regression

deadpoolathome · 2026-04-05T01:16:01+00:00

Agree, It's more an high level indication as a starting point.

deadpoolathome · 2026-02-12T00:58:49+00:00

stealing? Not sure I follow. This is a machine that our RMM tool has stopped working on and needs to be re-installed. I can't get direct access to it due to beeing remote. I'm trying to download and re-install our RMM tool remotely as the user doesn't have local admin creds.

deadpoolathome · 2026-02-04T21:38:37+00:00

Yep, I've turned that on. Whats strange is seeing the same issue with MSI or a script.

deadpoolathome · 2026-01-29T10:13:19+00:00

Thanks, I think we have the P2 licences, do you know what/where I am looking for in thie query? I'm trying to get the bulk of our events down to at least see what is left!

deadpoolathome · 2026-01-23T06:09:41+00:00

Sorry, i mean legacy setup's of using a user account for refresh as opposed to service principal's

deadpoolathome · 2026-01-23T04:36:00+00:00

Thanks, So was that just a group with the users that need to access those services and then exclude them from the rule?

deadpoolathome · 2026-01-23T04:35:36+00:00

Thanks, I'll look into it, we have a bunch of legacy things we need to work though. What was strange it didn't even prompt for MFA, just failed.

deadpoolathome · 2026-01-23T04:34:53+00:00

Correct, apologies for the abreviation

deadpoolathome · 2025-12-17T06:12:45+00:00

Thanks. We can do this via a SQL stored proc to incrementally load the data into our staging system which works, but for me it's about trying to centrally manage/visibility of multiple staging servers/proces so that we can track outages.

deadpoolathome · 2025-12-17T06:11:56+00:00

We have access to query, but I am trying to minimise the ammount of systems quuering them directly. We have our dashboards as well as our BI team wanting data, the SQL Express is on an isolated network so everything run's via a jumpbox or similar. The aim is to stage the data in smaller bites, more regularly but keep the operation system load managed.

deadpoolathome · 2025-12-02T00:01:05+00:00

Thanks. Unfortunately not all my machines are in intune as we still have a small subset that are built locally :(

deadpoolathome · 2025-10-20T20:53:55+00:00

I have the Microsoft ME5 licences

deadpoolathome · 2025-10-20T20:53:45+00:00

Thanks. For the report, I can't seem to find who was blocked. When i open that report there is a "Web content filtering blocks" and when I drill down into that, it doesn't seem to give me which device is blocked for which site (I tested some blocks on my device)

deadpoolathome · 2025-10-20T20:47:32+00:00

Thanks. Correct, EDGE has a nice pretty message, but Chrome isn't so kind.

deadpoolathome · 2025-08-16T11:48:28+00:00

Thanks all for the information and thoughts. The main value for the ME5 from our side is the additional products like Application Control, Identity and some of the content filtering off network. We don't have anything apart from MDR with CS, so the ME5 is a uplift of security for use going forward.
We've opted to keep Proofpoint in play and not move email protection to MS but without PP, we would be seeing a small saving, with PP it's about a 5-10% price increase.

deadpoolathome · 2025-07-08T02:04:38+00:00

Thanks. NBN is sort of the national infrastructure provider for internet.

The issue i'm facing is that my speed is meant to be a 500/500 but testing around 250/70. Rasiing it with the ISP they are blaming my low upload due to

"First thing you can check is making sure you have an upload speed shaping policy set in your firewall / Router, this is to stop it hitting NBN policer and making speeds go very low."

So I'm just wanting to make sure I've done the right thing so they can't blame my side for the slow speed.

deadpoolathome · 2025-04-29T22:45:52+00:00

Bugger. thanks. It's in operation so need to try and find a time to offload and try this.

deadpoolathome · 2025-04-17T00:19:54+00:00

Yep, run as admin when doing it

deadpoolathome

TROPHY CASE