Ubiquiti’s Devices (Network)

Networking at home should be easy, straight forward and painless. I have been using the modem provided by my Internet provider and an Airport Extreme as the router at home. Everything has worked fine and there was barely anything to setup to make it work. For a couple of years I have been using it with no issues, then the WiFi started to drop occasionally. When I called the internet provider to complaint about the internet, they had told me that the issue may be the router but I was hesitant to blame my precious router. I needed to do something though and  one day I decided that I needed to invest in a good router that was not from Apple but that came from a trusted company. It took me a while until I saw Troy Hunt talking very highly in regards of the Ubiquiti’s devices. Yes, I said devices because now I was not going to buy just a single router. I was going to buy a whole set of networking devices to make my Local Area Network (LAN) much more robust and secure.

Instead of buying one router, I ended up buying a Security Gateway (Firewall), a Switch, a CloudKey (Controller) and an Access Point. Troy Hunt is to blame for all this since he was so convincing that the products were something special. Ubiquiti’s devices are amazing and I would agree with Troy on this one. Talking about Troy, please check his Introduction to Unifi videos on Youtube for free. Ubiquiti Unifi is a set of devices that consolidate the network with enterprise capabilities if necessary. Unifi can be setup for a one room apartment as well as for a business, this is how powerful the product can be. It also could take you around 15 to 20 minutes to set it up at home but it could also take hours and hours if you want to customize it your way.

The beauty of the product is that if you only spend 15 to 20 minutes and setup the basic, the network will be in a better shape than anything you had before. As mention above, check Troy Hunt’s video since he gives a demo on installing the devices with basic settings. If you consider yourself tech savvy then you could do wonderful stuff with your new setup even if it is not for a business.

My setup is base on the Internet provider’s Modem (Internet), Security Gateway (Firewall), Switch, CloudKey (Controller) and an Access Point. My house is not that big so this basic setup is just perfect for me. My internet comes from the Modem from where I have connected my Security Geteway and the Security Gateway then its connected to the Switch. The CloudKey and the Access Point are connected then to the Switch as well. Aside from having the AP and the CloudKey connected to the Switch, I also have my Server and an Apple TV.

Security Gateway – Firewall

The Security Gateway is a type of firewall. Since now a days there is a bigger sense of security and privacy, the Security Gateway will help on this department. The firewall is not a required component to setup your LAN at home but it is recommended. This particular device is the one that the tech savvy folks will spend much of the time trying to harden their network. The Unifi Security Gateway connects to the modem and then to the Switch which is to be expected. We want the internet to come into the firewall first to then apply all the rules we may have setup for security reasons. The traffic will then go to the switch where all the clients are connected, either via ethernet or the AP.

Switch 8 PoE – 60W

In this case, the Ubiquiti Switch 8 PoE – 60W handles all my wired devices. This is where my AP is connected in order to get internet access to provide to the wireless clients. The switch is doing the job of a router but only partially since it only service the wired clients. In combination, the AP and the Switch are doing the router’s job in its totality . I understand that some people my be thinking, why would I want to have more devices to do the same job. The advances of this is management and scalability. Management because I would be able to manage my wired clients in a more productive way without touching the AP. The Switch 8 PoE also will help with those devices that have the capabilities to be Power over Ethernet (PoE), this will help by having less cables to work with. Scalability because in the event that you move from a one bedroom apartment to a two story house, the only thing you may need is to buy another AP or a couple of them but the core will stay intact. The CloudKey is also connected to the switch and it is PoE as well.

AP AC Lite, Router?

In reality, I did not get a Router but an Access Point (AP) and a bunch of other devices. A Router is a Network device that handles the transferring of data either wirelessly or via the wire. On the other hand, an AP only provide Wireless capabilities to those devices that need it. Routers can function as an AP but an AP cannot function as a Router. In my old setup with the Airport Extreme, I had a Router which was in charged of everything. The Airport Extreme was in charge of all the wired and wireless devices, it acted as an AP as well. Now with the Ubiquiti AP AC Lite, I have an AP that its only job is to serve all the wireless clients. The AP AC Lite is connected directly to the switch.

CloudKey Controller

This is basically the management portal for all your Ubiquiti’s devices. Allow you to configure and manage all the devices, in my case, the Security Gateway, Switch and the AP.  It allow local as well as remote access for management. Access it locally via local IP and remotely via the Ubiquiti’s site or the Ubiquiti’s mobile app. Management with Ubiquiti is so much fun and it is easy, the statistics section is just awesome. It provides plenty of details of what is going on in your network, from which site are the most visit to how much data is been use in any particular site or app. It even allows you to see the devices connected in your whole network and block them if necessary. This are just a few of the dozen of features Ubiquiti has to offer. As previously mention, the CloudKey is connected directly to the Switch.

I personally like simplicity but I also like to have power over my devices and see what is actually going on. I understand that my new network setup is not as simple as my previous one but I am in love with it. The capabilities I have now are much more powerful than a simple router will ever have. The control I now have over my network is just amazing, I was really missing out. I think a lot of people are missing out of this amazing group of devices. I would try to follow up with other posts while I find new interesting features. I will say this, the devices are not cheap but are affordable.

The use of a VPN!

What does VPN means?

Virtual Private Network (VPN) is a way to use a “Private Network” on a public environment. Basically it connects to a private network even though the user is using an open or public network. This is use for privacy matters and to protect any organization or individual from the public network to see the user’s traffic. In other words, the VPN encapsulate the information been transmitted and send it into a tunnel which is encrypted and inaccessible from anybody on the public network. In a every day scenario, a user goes to a Cafe where the WiFi is free and open. The user will use this WiFi access to connect to the internet to then connect to the VPN client. The client will then encrypt the information been transmitted by the user into a tunnel, this way it protects it from others on the same open network from seeing the information at all.

 

Typical Uses

Aside from encrypting your traffic, VPNs can also spoof your location. This is possible because the VPN provider has many data centers around the world. This way a user can choose the datacenter from where he/she wants the data to be encrypted and by doing this the user is able to “change” their device location. For example, if VPN client X has a datacenter in US, China and Australia, the user could select Australia and be able to trick the device’s location to Australia even though the real location is the USA. A lot of users use VPNs for mainly this purpose because they want to see or access a site that has been blocked in their country and by doing this trick, they are able to access the site.

The other use is one already described, the use of VPN to protect your data from been intercepted by those owning the public network the device is connected. The only catch is that when using a VPN for privacy and protection, one should be very cautious when choosing VPN providers. The user should really trust the VPN provider because even though the information will be protected from the public network, the VPN provider itself could see your traffic if desire. My choice of VPN is Freedome from F-Secure, the reason I have chosen this VPN is because I really trust in Mikko Hyponnen which is the Chief Research Officer at F-Secure.

I believe on the use of VPNs but also as mentioned before one should be careful while choosing a provider.

Sharing on Social Media

Social Media is a great way to keep in contact with your family and friends, or even make new friends. Sites such as Facebook, Twitter and Instagram, help maintain a connection between people. Those sites even help reunite those that have not been in contact for many years, which is great. There are social media sites that can be use to meet a new companion or even to have an affair (I really don’t encourage to use or do the latter).

Social media is like anything in the world, it has its good and bad sides. In order to prevent or better yet mitigate the bad side effects, people need to be educated and have common sense. There has been a great deal of talk around security and privacy ever since Edward Snowden leaked the NSA documents in 2013. In the social media world, we need to take care of our privacy settings and choose carefully what you share in order to have a chance on your security.

Privacy Settings

Users needs to be aware that every social media site have privacy settings that could be change in certain ways to help preserve the user’s integrity. Settings such as those that prevent users that are not following you or friends of friends to see your posts, or even prevent any person from following you at all (Private account). I have just mentions a few but in some sites there are a ton of settings to turn on or off (Must of the time is to turn off). These privacy settings can be time consuming to set but are worth the time and effort if you really care about your privacy as well as that of your family.

Sharing Information

If those privacy settings are not set properly and you start posting pictures or even regular posts that contains your location for example, you may be at risk already. For example, if your phone has location enabled for pictures and you post it in a social media, it would be easy for anybody to see the GPS coordinates which will eventually give up your real location. Most of the time is just as easy as looking at someone’s status to find their real location since a great amount of people are using the location services provided by their phones and social media apps.

I think that people should be really careful about what they share in social media. You may think you are sharing it only with your friends and family but if your privacy settings are not set correctly, then you may be sharing it with everybody. This can be really scary if a bad actor can easily know your location and get to you if wanted.

User’s should also need to be careful about what they say in social media. If you write something on the internet it is very unlikely to disappear ever even if you delete it. This is one of the reasons you should think before posting anything that can be sensitive or offensive. A bad post can hunt you back. Please do not post while you are drinking, post responsibly.

Always check for your settings, it does not matter if it an account your are creating or an app you are using. Users should take the time to see how the company is using your data, how much data is been share by the default privacy settings and how much you can prevent from been share. If there are ways to prevent your information from been use or seem by others then you should be preventing it.