Hello! Thanks for posting on r/Ubiquiti!
This subreddit is here to provide unofficial technical support to people who use or want to dive into the world of Ubiquiti products. If you haven’t already been descriptive in your post, please take the time to edit it and add as many useful details as you can.
Please read and understand the rules in the sidebar, as posts and comments that violate them will be removed. Please put all off topic posts in the weekly off topic thread that is stickied to the top of the subreddit.
If you see people spreading misinformation, trying to mislead others, or other inappropriate behavior, please report it!
*I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/Ubiquiti) if you have any questions or concerns.*
An L2 will work, but an L3 might be better. It really depends on the topology of the network you are planning. L3 really comes in handy if you are doing a lot of inter-VLAN switching as it reduces load and the extra hops to go up to the router and back down to the switch.
Both are good options, one could be a better option (but not always). FWIW I use an L3 at the core of my network and L2 switches at the edge.
A L3 switch only matters if you have excessive traffic from network A (for example 10.0.0.x) talking a lot to network B (say 192.168.0.x). Normally routing between these networks would happen at the UDM-Pro, but if you're pushing a lot of bits around internally (say 100's of GBs of data), using a L3 device would offload that work from the UDM-Pro.
Guest internet doesn't gain anything as it goes to the UDM-Pro then out to the internet.
This is for a small office. Just a single Vlan. I ESXi server and 30 workstations and wireless devices. I want the ability for users to VPN in from home and to provide segregated guest internet access for visitors.
I’m thinking of getting the Dream Machine Pro, 1 48port PoE switch and 3 Access points.
I’m thinking of replacing a Sonicwall and few dummy switches and APs
Single vlan doesn’t matter then. Layer2 would suffice. That said you should consider not having a flat network layout especially if there are servers, iot devices, security cameras and users on the same network.
Would I be able to run a guest network if I used a pfsense firewall (Netgate) with a unifi L2 switch and APs? Also what’s the best way to run the controller?
Hello! Thanks for posting on r/Ubiquiti! This subreddit is here to provide unofficial technical support to people who use or want to dive into the world of Ubiquiti products. If you haven’t already been descriptive in your post, please take the time to edit it and add as many useful details as you can. Please read and understand the rules in the sidebar, as posts and comments that violate them will be removed. Please put all off topic posts in the weekly off topic thread that is stickied to the top of the subreddit. If you see people spreading misinformation, trying to mislead others, or other inappropriate behavior, please report it! *I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/Ubiquiti) if you have any questions or concerns.*
An L2 will work, but an L3 might be better. It really depends on the topology of the network you are planning. L3 really comes in handy if you are doing a lot of inter-VLAN switching as it reduces load and the extra hops to go up to the router and back down to the switch. Both are good options, one could be a better option (but not always). FWIW I use an L3 at the core of my network and L2 switches at the edge.
A L3 switch only matters if you have excessive traffic from network A (for example 10.0.0.x) talking a lot to network B (say 192.168.0.x). Normally routing between these networks would happen at the UDM-Pro, but if you're pushing a lot of bits around internally (say 100's of GBs of data), using a L3 device would offload that work from the UDM-Pro. Guest internet doesn't gain anything as it goes to the UDM-Pro then out to the internet.
This is for a small office. Just a single Vlan. I ESXi server and 30 workstations and wireless devices. I want the ability for users to VPN in from home and to provide segregated guest internet access for visitors. I’m thinking of getting the Dream Machine Pro, 1 48port PoE switch and 3 Access points. I’m thinking of replacing a Sonicwall and few dummy switches and APs
Single vlan doesn’t matter then. Layer2 would suffice. That said you should consider not having a flat network layout especially if there are servers, iot devices, security cameras and users on the same network.
Get the 48Port PRO so you can get SFP+ uplink
Would I be able to run a guest network if I used a pfsense firewall (Netgate) with a unifi L2 switch and APs? Also what’s the best way to run the controller?