Inbound VPN for home network

Posted on
Thu Mar 30, 2017 3:51 pm
kw123 offline
User avatar
Posts: 6449
Joined: May 12, 2013
Location: Dallas, TX

Re: Inbound VPN for home network

Could you share your jsons? And the link ?


Sent from my iPhone using Tapatalk

Posted on
Thu Mar 30, 2017 4:11 pm
virgahyatt offline
Posts: 121
Joined: Jan 11, 2014

Re: Inbound VPN for home network

I'm not using it anymore because of the uPnP issue. I need it running for other services on the network and I have too many apple devices come and go that might have it on. So I ended up using the Mac OS Server VPN instead. Also it lets me provide support for some clients a lot easier because I can send them the VPN profile right from the server.

But I will see if I can find the link to the walkthroughs. I went through a bunch at the time trying to figure out what I was doing wrong till I find the BTMM issue. LOL

EDIT:
Here is the link to the walkthrough:

https://help.ubnt.com/hc/en-us/articles ... 2TP-Server

Posted on
Thu Mar 30, 2017 5:17 pm
Different Computers offline
User avatar
Posts: 1894
Joined: Jan 02, 2016
Location: East Coast

Re: Inbound VPN for home network

So no Back to My Mac with a UniFi router, or is there a way to work around the problem?

Losing that would be a deal killer for me.

SmartThings refugee, so happy to be on Indigo. 10.13.6 on an i5 MBP w/Harmony Hub, Hue, DomoPad, Dynamic URL, Device Extensions, HomeKit Bridge, MatplotLib, Plex, uniFAP, Wunderground, Nanoleaf, LED Simple Effects, Airfoil Pro, Grafana.

Posted on
Thu Mar 30, 2017 6:08 pm
virgahyatt offline
Posts: 121
Joined: Jan 11, 2014

Re: Inbound VPN for home network

I couldn't find a way for it to work with the UniFi acting as the VPN server. Using the Mac OS Server VPN it works fine as far as I have been able to tell. Just had to setup the port forwarding for the VPN. I don't use BTMM on my systems anymore because the VPN takes it place and is far more reliable.

Posted on
Thu Mar 30, 2017 10:39 pm
MarcoGT offline
Posts: 639
Joined: Sep 11, 2014
Location: Germany

Re: Inbound VPN for home network

I also an UniFi USG (3-Port) but I do not use the built-in VPN Server.
I use the VPN Server included in macOS Server and it works flawlessy, no problem since months :)

Posted on
Wed Sep 19, 2018 6:15 pm
kw123 offline
User avatar
Posts: 6449
Joined: May 12, 2013
Location: Dallas, TX

Re: Inbound VPN for home network

re-opening this discussion..
i seen slow performance using the USG3 vpn setup. anyone could share their throughput.
mine is < 1 Mbit.. the up/downlink is 1 Gbit and I get that when I do a local speed test to the ISP

There is discussion on the web that the USG lacks the encryption performance to do better than 30Mbit.

I was on the OSX server vpn version, but the VPN setup magically disappeared during an OSX upgrade . :twisted:

any feedback welcome

Karl

Posted on
Thu Sep 20, 2018 6:31 am
citysnaps offline
Posts: 34
Joined: Jul 13, 2016

Re: Inbound VPN for home network

It appears VPN is being removed from macOS Server. https://support.apple.com/en-us/HT208312.

...........................
Brad
Urban photoblog: www.citysnaps.net

Posted on
Thu Sep 20, 2018 6:46 am
roquej offline
User avatar
Posts: 304
Joined: Jan 04, 2015

Re: Inbound VPN for home network

Karl,

Although I have Unifi gear for all my access points and switches, I stayed with the Edgerouter for the VPM performance. I also have 1Gb from U-verse (actual throughput is 930 to 960MB) and getting good VPN performance. Just tested it from a crappy hotel Wifi and getting 10MB. From a little better Google Starbuck wifi, got 14MB yesterday.

JP

Posted on
Thu Sep 20, 2018 10:09 am
kw123 offline
User avatar
Posts: 6449
Joined: May 12, 2013
Location: Dallas, TX

Re: Inbound VPN for home network

I have to reverse my statement ..

now have >25Mbit on the USG w VPN. But i can only test w my iPhone and at home I only have max 2 bars.
must have been something else..

And the MAC VPN server menu is magically back too. I have no clue why.
I know that apple announced that NEW OSX Server installs will have the VPN part removed, but they stated that existing ones would continue to work . Well its back now

could the folks w the USG-4 pro run a test - I have the USG3 pro

will play around w it


Karl

Posted on
Sun Sep 23, 2018 10:01 am
virgahyatt offline
Posts: 121
Joined: Jan 11, 2014

Re: Inbound VPN for home network

virgahyatt wrote:
kw123 wrote:
Yes that's the plan


Has anyone setup a UniFi router and could share how to set it up?


Sent from my iPhone using Tapatalk


I have gone through it and the setup is pretty painless. But there is one rather big snag when using macs with it that I ran across Back To My Mac. Which uses some of the same ports as VPN and if uPnP is also enabled on the edge router it will prevent either one from working right. So make sure you turn it off on all the computers used in the house or disable uPnP. They have walkthroughs available that will take you setting it up and making sure the firewall rules are setup.



Back to my mac is actually being discontinued in Mojave. So that is less of a concern.

I was previously using the VPN server available in MacOS Server but since that is also being discontinued I set it up on my ER-3. Setup was pretty painless actually. You can also exclude the ports from uPnP, though of course that would break BTMM on your network if you are actively trying to use it.

Posted on
Sun Sep 23, 2018 3:59 pm
kw123 offline
User avatar
Posts: 6449
Joined: May 12, 2013
Location: Dallas, TX

Re: Inbound VPN for home network

just upgraded from a USG3 to a USG4 pro.. it took 3 minutes..

1. in controller: forget USG3
2. connect network WAN and LAN to new USG, and remove the old
3. adopt
4. wait.
done. all routes are moved over

that was much easier than expected.

will check performance of the 4 compared to the 3 for vpn etc

Karl

and will have to adopt the plugin to the little differences between USG3 and USG4

Posted on
Sun Sep 23, 2018 4:59 pm
kw123 offline
User avatar
Posts: 6449
Joined: May 12, 2013
Location: Dallas, TX

Re: Inbound VPN for home network

have the plugin working for the USG4 ... naturally the key names have changed:

Code: Select all
  "config_port_table": [
    {
      "ifname": "eth0",
      "name": "wan"
    },
    {
      "ifname": "eth1",
      "name": "lan"
    },
    {
      "ifname": "eth2",
      "name": "wan2"
    }
is now:
Code: Select all
config_network_ports": {
    "LAN": "eth0",
    "WAN": "eth2",
    "WAN2": "eth3"
  }


I guess another developer

but it seems the other fields are the same. Will post a version for the USG4

again the transition was extremely painless.

Karl

now doing performance measurements USG3 / USG4

Posted on
Tue Sep 25, 2018 9:46 am
kw123 offline
User avatar
Posts: 6449
Joined: May 12, 2013
Location: Dallas, TX

Re: Inbound VPN for home network

sone comparisons USG3 vs USG4 using ATT 1Gbit fiber

basic download speed going to ATT speediest is about the same 900+Mbit/sec down/up for USG3 and USG4
speed test using UniFi controller:
USG3: 500/600
USG4: 780/910
okla speedtest
USG 3 and 4 about the same varying 200..300 depending on time of day

VPN using cellphone
USG3 ~ 10Mbit
USG4 ~20Mbit

Overall impression with regular web browsing: the speed of the USG4 is dramatically faster, the pages just pop up instantly.


Karl

Posted on
Tue Sep 25, 2018 8:36 pm
kw123 offline
User avatar
Posts: 6449
Joined: May 12, 2013
Location: Dallas, TX

Re: Inbound VPN for home network

Update for vpn. I got 60 MBit down on a better cell signal with the usg4.


So in summary if you just do regular down load and you are ok with the web browsing speed the usg3 is fine.

If you want higher vpn performance you might want to consider the usg4

Karl


Sent from my iPhone using Tapatalk

Who is online

Users browsing this forum: No registered users and 1 guest