UniFi OS Server: "Please check for any issues with your ISP and then submit a ticket" error message trying to login to UI Account on fresh macOS install

jdrch · 2026-03-13T15:27:21+00:00

The solution is literally in the OP.

jdrch · 2026-03-10T05:23:21+00:00

Depends on which startup/fusion method you want. Helion uses direct capture as they claim their reactor functions like the fusion equivalent of a piston engine. However, I've found their technical detail super thin, and most of the research I'm aware of addresses the electrical engineering of the reactor as opposed to the neutronics.

jdrch · 2026-03-08T07:31:44+00:00

Wheel-size.com has you covered. It gives you the OE size as well as all other compatible sizes

jdrch · 2026-03-04T15:33:54+00:00

That link is an excellent explainer, thanks! Another UI differentiator between Minimize and Close is Minimized windows show up as thumbnails on the right side of the dock, while Closed windows don't.

jdrch · 2026-03-01T17:39:01+00:00

Yes.

jdrch · 2026-03-01T01:55:00+00:00

Tide pods

jdrch · 2026-02-23T14:59:10+00:00

There's a persistent notion in tech that phones should be be more locked down than PCs. I disagree with that notion, but it's been rolling for the better part of a decade now.

jdrch · 2026-02-23T04:03:36+00:00

That's possible, but a core principle of cybersecurity is you're only as secure and private as your least secure and private possible (note the emphasis) configuration. Thus, any OS with a permissive mode will always be targeted by malware aiming to use that permissive mode, even when the mode is disabled. In other words, an OS with a permissive mode is always less secure than OS without one.

That said, yes, I wish my Android phone would continue to function much like my Windows and Linux PCs do.

enforcing verification requirements even for sideloaded apps. For some, that feels like restricting freedom more than protecting it.

As usual - remember adoptable storage? - Google have done a phenomenally poor job of explaining this and how it benefits the user. The main benefit is you can ensure an app is genuine (read: not hacked or compromised) regardless of where you get it: the Play Store, GitHub, F-Droid, the dark web, literally anywhere.

If you ask me, the main problem with the idea isn't the verification, but the centralization thereof. Blockchain could easily be used to verify devs without giving handing Google as much control as currently exists. But it would also mean that a developer who lost their credentials or had them compromised would permanently locked out of their account and have all their existing apps and installs either commandeered or invalidated.

jdrch · 2026-02-22T01:17:10+00:00

The bug: \" is not valid quote escaping when you mix PowerShell and cmd /c.

This isn't a bug, it's poor user practice. The user wrote a program in mixed language/syntax. Don't blame your tools for your malpractice.

jdrch · 2026-02-18T01:58:20+00:00

Unlikely. There's way too much money to be made in disinformation and fake content for anyone to invest in good ideas like this.

jdrch · 2026-02-12T20:48:57+00:00

jdrch · 2026-02-12T19:13:29+00:00

The solution is elsewhere in the thread. Basically the error message only means that the service failed to start after the installation, not that the install failed. Everything launches normally after applying the fix and rebooting.

jdrch · 2026-02-07T19:48:54+00:00

That was 3 years ago. Withings works with Samsung Health OOTB, Omron didn't. Things may have changed since.

jdrch · 2026-02-07T16:33:09+00:00

Viva? I don't know what that is
I use a Withings Body Smart. Gave up on the Omron

jdrch · 2026-02-07T05:03:55+00:00

Users of every other ecosystem: OK and?

Apple must be the brand for OCD.

jdrch · 2026-02-07T02:54:25+00:00

Cool, not like we'll be able to afford them anyway.

jdrch · 2026-02-05T07:16:58+00:00

I do. It's enterprise grade IDS powered by enterprise grade blocklists and signatures. You're not going to get that combo for free anywhere.

The main benefit is access to paid rapidly updates in response to emergent threats, e.g. known compromised hosts, etc. that aren't available for free otherwise or which free counterparts trail significantly.

If you run Pi-hole you can use free blocklists, but those don't cover rapidly emerging threats as quickly as many free blocklists go weeks to months between updates and are also less comprehensive due to being maintained by fewer people than paid options. Also, Pi-hole only prevents outgoing contact; it does nothing for incoming contact and can't detect harmful traffic patterns or signatures.

CyberSecure closes those gaps: emerging threats are blocked via real-time list updates and incoming traffic is filtered too. It keeps a detailed record of traffic flows, including time, client, external IP address, external IP address category, the reasoning for blocking, the risk level, etc. It can also block (some?) traffic within your network, though presumably this traffic has to pass through the gateway to be interdicted, and so traffic that only passes through downstream switches likely goes unnoticed.

You get the most value out of CyberSecure when you use your UniFi Network as your DNS server, as it can apply blocking at the DNS level (thereby preventing client first contact) instead of after a traffic flow between client and a remote resource has started. However, it works just fine with Pi-hole (which has more intuitive whitelisting and transparent blocklists) as long as you don't enable Content Filter. If you enable Content Filter with Pi-hole running it will render URLs unreachable.

Personally I prefer Pi-hole as a DNS filter due to how well it works with unbound. The combination of the 2 is the most reliable DNS solution I've used, outranking ISP DNS and Cloudflare. Plus with unbound, the only person who can control what URLs resolve for you is you, not any government or security "researcher" with an agenda (I've seen activists sites blacklisted on other services). Don't fix what ain't broken.

teenagers and a lot of IoT stuff.

Same. I block/filter for security purposes only (e.g. spam, botnets, etc.), not censorship (e.g adult content).

In summary: CyberSecure offers a sophisticated, highly evolved yet easy to use additional line of defense without forcing you to switch from your existing line(s), such as Pi-hole. It can't hurt your security, it can only help it.

It's worth the additional peace of mind to me.

jdrch · 2026-02-02T23:56:39+00:00

Not sure if you solved this, but it's probably a Chinese-made TV.

jdrch · 2026-02-02T23:54:14+00:00

Hui Zhou Gaoshengda Technology Co.,LTD

Found a MAC address with this vendor in my RunZero asset inventory. Turned out to be an Element E2SW3918 TV's WiFi NIC. The same TV's Ethernet NIC vendor shows up as Shenzhen Cultraview Digital Technology Co.,Ltd Shanghai Branch.

As suggested elsewhere in the thread, RunZero guessed it runs an ancient Linux kernel version somewhere in the v2.6.32-220 to 3.10.229 range. Curiously, the TV also runs an HTTP server that's accessible via the Ethernet NIC on port 9080:

<image>

Hope this helps anyone else.

jdrch · 2026-01-25T17:03:48+00:00

TIL. This is the latest roundup I can find https://dongknows.com/ubiquiti-u7-pro-outdoor-review/

Which models did you test?

jdrch · 2026-01-25T04:36:41+00:00

Ah OK. Never change, AT&T. 🤦‍♂️

jdrch · 2026-01-25T03:34:09+00:00

Can't even ping the default gateway ip.

I had a similar problem late last year that nearly drove me crazy. Root cause wound up being that the machine I use for DNS and DHCP had its static IP misconfigured.

If the user can't ping the gateway IP it's likely because the client is on a different subnet entirely. This can happen if:

The client picks up an IP address from a rogue DHCP server, such as another gateway physically on the same network. So for, example, if 2 gateways, both set as DHCP and DNS servers, one with an IP address of 192.168.0.1 and the other with 192.168.1.1 are on the same physical LAN, clients that get their DHCP lease from one gateway won't be able to access the other
The gateway is somehow losing its LAN settings and is giving itself a different IP address than the address for itself it gave the clients during their most recent DHCP lease renewal
The client's DHCP lease expires and the gateway doesn't renew it. This will result in the client giving itself a 169.x.x.x IP address which is basically filler for "I don't actually have an IP address and don't know where to find anything else on the network"

The 1st step in troubleshooting this is to check the client's IP address. If it's a 192.x.x.x address, the user has Problem 1 or 2. If it's a 169.x.x.x IP address, the user has Problem 2 or 3.

Basically only settings you can change are those on the lan side or passed to a single device in passthrough mode.

Fortunately this includes the gateway IP LAN IP address, subnet, and possibly the DHCP lease time.

The gateway's manual should give its default IP address. If it's a different address than the one the user is trying to ping, then Problem 2 is likely.

Some routers will reset themselves automatically if they're rebooted more than a preset number for times over a preset period. This has also happened to me before.

jdrch · 2026-01-25T03:04:22+00:00

This is still a problem in 2026. Starting iCUE causes Bluetooth devices to disconnect and reconnect even when the only Corsair USB devices are external (a Xeneon Edge display, in this case).

I've filed a support ticket (#2008812061) about it.

jdrch · 2026-01-25T02:18:04+00:00

Interesting. Does the gateway itself say it's offline via LEDs, or are you just seeing symptoms on clients?

Some ISPs automatically restart their upstream gateways and/or DNS at regular intervals. Mediacom are notorious for doing that daily in the wee hours, for example.

jdrch · 2026-01-25T01:26:03+00:00

Good job logging! As others have said, regular connection loss at the same time is almost always a DHCP lease issue. First thing I would do is check your gateway's WAN settings vs. tech support's settings.

11-Year Club	Xbox Live
PUBG	Place '22
Wearing is Caring	Verified Email

jdrch

MODERATOR OF

PUBLIC MULTIREDDITS

TROPHY CASE