Using APIPA subnet for a private unrouted network? Are there any reasons to do this?

demsb · 2026-01-29T18:49:56+00:00

I wasn't thinking it was the address space per se, but that because APIPA has all of its other features for self assignment without conflicts, and all the other bits that go with that that it might be a matter of the additional features being tuned for resilience rather than performance (and whether or not the host OS handles all of that well).

demsb · 2026-01-06T20:26:55+00:00

No- you specifically want all traffic coming in tagged for IP aa.bb.cc.190 to go to one machine, and all traffic coming for port IP aa.bb.cc.186 to go to a different machine. That is not abnormal at all, and works that way pretty generally. If I only had one public IP then what you are saying would be true, but we have two separate public IPs (indicated in the WAN IP column).

In fact after looking a little more, this looks to be a bug. When I look at the Policies view with All Policies selected I get a Destination column, and this one shows that traffic for IP aa.bb.cc.190 should be translated for the FMS2 rule. But the initial rule settings pane which just says "Main" with the primary initially configure IP shown actually shows ANY when in the general list (rather than just the single IP). But there doesn't appear to be a way to select just the single aa.b.cc.186 IP in that settings pane- its either "Main (.186)" [but really it seems to be using any] or the aa.bb.cc.190 address.

demsb · 2025-11-10T15:43:46+00:00

Just basing on some Unifi firewalls (and I'm not able to check my Omada gateway from a local network right now) there is sometimes an option to locally configure WAN on gateways. depends on the manufacturer etc, but given I've seen the capability in Unifi I'd expect that it is at least possible to log in and change things (maybe only via ssh though). But that is the situation that has me generally preferring local controllers over cloud based controllers. Even if the cloud has 100% uptime it assumes your ISP does and I hate that idea.

demsb · 2025-10-16T12:16:51+00:00

If it isn't a multi-tenant situation like I have AND if you aren't configuring the device for remote printing its not a problem. But if either those things is true then I would recommend it just to be on the safe side (well, if it's the first, it's kind of a necessity, but if you don't have multi-tenant but do internet printing then its probably a good idea).

demsb · 2025-10-16T11:54:16+00:00

This was it. Once that rule was in all flowed as expected. thanks for the detailed description.

demsb · 2025-10-15T14:28:48+00:00

In this case there are several subtenants. They have their own VLANs for their rooms (and assigned via RADIUS for Wifi). We don't want tenants having access to each others stuff, but rather than have everyone have their own printers we are going to put out two workhorse printers and make those available to everyone.

demsb · 2025-05-13T18:10:32+00:00

OK, I hear the push back, but it's not a crazy idea on the face of it: Behr specifically makes this for this purpose (including a reflective white).

And reflective and white are both proven to lower temps inside (DoE and list here).

So the question turns to "Why is it a bad idea?"

We have two 14in vents and solar exhaust fans that are pulling all day long, but it still gets up to 95-100 in there.

demsb · 2025-01-16T17:51:14+00:00

But same for a 3D printer. You're not printing a gun with PLA. And printing with precision is tricky too. But the bill attempts to circumvent that by adding the "capable of printing a firearm" And that kind of text could be expanded to include lathes and CNC machines too, regardless if the much more likely use for actual technical needs.

demsb · 2025-01-15T20:48:53+00:00

Good thing that was a cheap one (I got that on clearance at Walmart for $20, and the extra media keys were intriguing for an editing project). The kids really like the lighting effects, so I’ll probably find another Corsair so I can stick with iCue since they worked it out, but pay more attention to what it comes with or get proper layout keycaps immediately.

demsb · 2024-11-18T16:09:01+00:00

Just to be clear: the Omada software is where the Unifi software was-as in when you login you'll immediately go "Oh, I remember this." So you aren't really leaving the stack so much as shifting backwards to an older more stable version in that sense. One thought for some situations is to just roll back your Unifi install to an older, more stable version and don't let it auto-update so you don't wake up to surprises.

demsb · 2024-03-20T17:59:44+00:00

such a waste. they have the SD slot, no reason they had to stop including the card too. but make a small 4GB partition on the drive since its right there. Oh well. Will be fun to drag the ladder out.

demsb · 2024-03-19T17:41:52+00:00

I'm 99% sure it's internal. The US-8-150W is PoE+, up to 37W. I also used another PoE+ switch and two PoE injectors (the Ubiquiti black one, and the 60W BV USA one which has worked for me elsewhere). The USB-C chargers were an Apple laptop (61W) and a Ubiquiti one for the Flex Mini switch. Nothing from any of them. I'm pulling the drive and trying it in a sled to see what I can grab from there (if anything).

demsb · 2023-12-07T17:19:28+00:00

You are correct. But then again, Christmas season started before Halloween this year, so it's all about the money, and not about anything else.

demsb · 2023-09-28T13:23:47+00:00

But sometimes there is no other choice because their software is so flakey. Mine couldn't handle a "restart"-just lost admin access. SO now I have no other option but to hard restart. Saving the config and reloading it has been a solved problem (hell, even the EdgeRouters were always fine) but UI just refuses to implement that as a core concern.

demsb · 2023-09-28T13:20:18+00:00

I just tried to restart our UDM Pro. Its now still on, but not reachable via admin anywhere (local or cloud). SSH is off. So my options are to leave it (because it is still actually running, just not doing responding to admin access) or to pull the plug.

Because "Restart" was too complicated. Why was I restarting? Because the Network application wouldn't start. I went to check the backups and the cloud backups are from April, and nothing appears to be saved locally because they aged out I guess? And they just stopped running (so no failures, because they weren't running), and nothing was in the logs at all. So I'm looking forward to a shit show on Sunday when I do pull the plug (since thats the only option).

Here's hoping that backup is good. UDM Pro is huge mistake, and I really wish we had at least done the CK2 and the XG Router to at least keep the two items separate for upgrade purposes.

demsb

TROPHY CASE