Forum Discussion

amirijaz's avatar
amirijaz
Freshman
8 years ago

Gen5: adding access points

Gen5 being installed tomorrow at our church.  Business account.  We will need to add 3 access points to cover the church properly.  Our plan is to add Unifi access points (from Ubiquiti).  This requires a Unifi security gateway (or Edge router) to be connected to the HT2000 router/modem.  My plan was to turn off the wifi on the HT2000 and simply connect the Unifi gateway to one of the LAN ports.  But then I read that you must put the first router in bridge mode....but we cannot do that with HT2000.  Here was my plan:

 

HT2000 > Unifi Security Gateway (USG) > Unifi Switch > Unifi access points controlled by a cloud key controller

 

Will the Unifi access point plan described above still work without bridge mode on the HT2000?  If not, what is the best way to add access points to a Hughesnet Gen5 system?

  • C0RR0SIVE's avatar
    C0RR0SIVE
    8 years ago

    Remote features wont be possible unless accessed via IPv6...  As you said, these HT2000w units can't be put into a bridged mode, so chances are the UniFi Cloud Key will be useless for remote administration after you add on the fact you are behind CGN...

    I have yet to run into a scenario where Ubiquiti AP's require a Unifi Gateway or Edge Router unless you are attempting to make remote management of the equipment and network easier, which again, is useless thanks to CGN, unless you can figure out something with IPv6...

    pswired and tracerrx have been working together on their IPv6 conundrum together, the thread they are discussing remote IPv6 address in could provide some good insight in that area... https://community.hughesnet.com/t5/Tech-Support/HT2000W-IPv6-inbound-services/m-p/83342#M58814

     

    To be fairly honest, I would just go HT2000w > Switch > AP's, disable the HT2000w wifi, and create my own wifi network.  Never really touched their switches or anything else as the features are mostly useless IMO.

  • C0RR0SIVE's avatar
    C0RR0SIVE
    Associate Professor
    8 years ago

    Remote features wont be possible unless accessed via IPv6...  As you said, these HT2000w units can't be put into a bridged mode, so chances are the UniFi Cloud Key will be useless for remote administration after you add on the fact you are behind CGN...

    I have yet to run into a scenario where Ubiquiti AP's require a Unifi Gateway or Edge Router unless you are attempting to make remote management of the equipment and network easier, which again, is useless thanks to CGN, unless you can figure out something with IPv6...

    pswired and tracerrx have been working together on their IPv6 conundrum together, the thread they are discussing remote IPv6 address in could provide some good insight in that area... https://community.hughesnet.com/t5/Tech-Support/HT2000W-IPv6-inbound-services/m-p/83342#M58814

     

    To be fairly honest, I would just go HT2000w > Switch > AP's, disable the HT2000w wifi, and create my own wifi network.  Never really touched their switches or anything else as the features are mostly useless IMO.

    • amirijaz's avatar
      amirijaz
      Freshman
      8 years ago

      Appreciate the response. Are you aware of any specific brands/ models for the switch and APs in the configuration you described?

      • C0RR0SIVE's avatar
        C0RR0SIVE
        Associate Professor
        8 years ago

        It's what works best for each person... I am using a pair of consumer grade routers (Nighthawk R7000 with Merlin firmware) setup in AP mode and an HP Procurve 2848.  Both access points are using the same SSID, password, and encryption type, but sit on opposite channels for 2.4Ghz and 5Ghz bands as well as opposite ends of my home.  HT2000w wifi is disabled.  In my case, all of my devices will hop between the two different access points with out me noticing anything what so ever.

        I would probably consider sticking with the ubiquity access points at a minimum these days though (for the most part they are about as good as it gets for the price), and would use them in my own home network if I didn't already have the two consumer grade routers laying around. 

        I just don't see a point in buying other ubiquity products for a location that will be sitting behind Hughesnet unless you can figure out how to get IPv6 working in a remote manor.  

        My actual network layout is sort of as follows...  HT2000w > PFSense Firewall > HP Procurve 2848 > remainder of LAN.

    • amirijaz's avatar
      amirijaz
      Freshman
      8 years ago
      C0RR0SIVE wrote:

      Remote features wont be possible unless accessed via IPv6...  As you said, these HT2000w units can't be put into a bridged mode, so chances are the UniFi Cloud Key will be useless for remote administration after you add on the fact you are behind CGN...


      C0RR0SIVE. I just had this bright idea, and perhaps it's beyond the scope of this forum, but thought I'd ask anyway.  With the goal of having the access points controlled and configured such that we can have more robust control over guest accounts (to limit speed, etc), what if instead of a Unifi USG/CLoad Key arrangement I originally described (which would require IPv6 enablement/bridge mode), we use an always-on PC running Unifi Controller software connected locally to the Unifi switch?  While there would be no remote control of the network (thus no IPv6 complications), I'm thinking all the other features of the Contrioller could be enabled (Unifi AP guest wifi speed control, data limits, etc).  What you think?  Am I missing something in the way HT2000w would behave in this set-up?

       

      HT2000w > Unifi switch > local PC running Unifi Controller 

                                             > Unifi access points

       

    • CR_Ranch_Boss's avatar
      CR_Ranch_Boss
      New Poster
      3 years ago

      Has anyone tried setting up the HT2000W to use the DMZ and have your router then serve as the firewall and net router.  This way the HT2000W just acts as a de-facto modem?