Ubiquiti Networks EdgeOS 1.4 User Manual [nl]

Operating System for Ubiquiti EdgeRouters

Release Version: 1.4

Table of Contents

Chapter 1: Overview ................................................1

Introduction. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1

Configuration Interface System Requirements. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1

Hardware Overview and Installation ..............................................1

Typical Deployment Scenarios ....................................................1

Chapter 2: Using EdgeOS ...........................................3

Ports and Status Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3

Navigation .......................................................................3

Common Interface Options .......................................................4

Chapter 3: Dashboard Tab ..........................................8

Services ..........................................................................8

Interfaces ........................................................................9

Table of ContentsEdgeOS™ User Guide

Chapter 4: Routing Tab ............................................14

IPv6 Routing ....................................................................14

Routes ..........................................................................15

OSPF ............................................................................17

Chapter 5: Security Tab ............................................20

Firewall Policies .................................................................20

NAT .............................................................................24

Firewall/NAT Groups .............................................................28

VPN .............................................................................29

Chapter 6: Services Tab ...........................................30

DHCP Server ....................................................................30

DNS .............................................................................34

PPPoE ...........................................................................34

Chapter 7: Users Tab ..............................................35

Local ............................................................................35

Remote .........................................................................36

Chapter 8: Wizards Tab ............................................37

Setup Wizards ...................................................................37

Feature Wizards .................................................................40

Ubiquiti Networks, Inc.

Chapter 9: Toolbox ................................................42

Ping .............................................................................42

Trace ............................................................................43

Discover. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .43

Packet Capture ..................................................................43

Log Monitor .....................................................................44

Appendix A: Command Line Interface .............................45

Overview ........................................................................45

Access the CLI ...................................................................45

CLI Modes .......................................................................47

Appendix B: Contact Information ..................................54

Ubiquiti Networks Support ......................................................54

Table of ContentsEdgeOS™ User Guide

Ubiquiti Networks, Inc.

Chapter 1: OverviewEdgeOS™ User Guide

Chapter 1: Overview

Introduction

EdgeOS™ is a powerful, sophisticated operating system from Ubiquiti Networks™.. It allows you to manage your EdgeRouter and networks. This User Guide is designed for use with version 1.3 or above of the EdgeOS Configuration Interface and all of the EdgeRouter models, which this User Guide will collectively refer to as EdgeRouter. Additional information is available on our website at:

http://community.ubnt.com/edgemax

http://documentation.ubnt.com/edgemax

Product Name Model Number of Ports PoE

EdgeRouter Lite ERLite-3 3

EdgeRouter PoE ERPoe-5 5

8-Port EdgeRouter ER-8 8

EdgeRouter PRO ERPro-8 8*

* Two ports are either RJ45 or SFP.

Configuration

The intuitive EdgeOS Configuration Interface allows you to conveniently manage your EdgeRouter using your web browser. (See “Using EdgeOS” on page 3 for more information.) If you need to configure advanced features or prefer configuration by command line, you can use the Command Line Interface (CLI). (See “Command Line

Interface” on page 45 for more information.)

Configuration Interface System

✓

Service Provider Deployment

This scenario uses six EdgeRouter devices:

1. OSPF Area 0 to OSPF Area 1

2. OSPF Area 0 to OSPF Area 2

3. OSPF Area 1

4. OSPF Area 1 to Internet

5. OSPF Area 2

6. OSPF Area 2 to Internet

eth0 eth1 eth2

Site A

Site B

OSPF

Area 1

eth0 eth1 eth2

Site-to-Site

Link

OSPF

Area 0

eth0 eth1 eth2

OSPF

Area 2

eth0 eth1 eth2

Internet

Requirements

• Microsoft Windows 7, Windows 8, Linux, or Mac OS X

• Web Browser: Google Chrome, Mozilla Firefox, or Microsoft Internet Explorer 8 (or above)

Hardware Overview and Installation

The Quick Start Guide that accompanied your EdgeRouter includes a hardware description and instructions for hardware installation.

Typical Deployment Scenarios

While there are numerous scenarios that are possible, this section highlights three typical deployments:

• Small Office/Home Office (SOHO) Deployment

• Service Provider Deployment

• Corporate Deployment

SOHO Deployment

Click the Wizards tab and follow the on-screen instructions. See “Wizards Tab” on page 37 for more information.

eth0 eth1 eth2

Internet

Here are the typical steps to follow:

1. Configure the appropriate settings on the System tab (see “System” on page 4 for more information):

• Host Name

• Time Zone

• Gateway

• Name Server

• Domain Name

• NTP

2. Configure the interfaces on the Dashboard tab; see “Interfaces” on page 9 for more information.

3. Configure OSPF settings on the Routing > OSPF tab; see “OSPF” on page 17 for more information.

4. Configure DHCP server(s) on the Services tab; see ”DHCP Server” on page 30 for more information.

5. Configure NAT rules on the Security > NAT tab; see ”NAT” on page 24 for more information.

Ubiquiti Networks, Inc.

Chapter 1: OverviewEdgeOS™ User Guide

6. Configure firewall rules on the Security > Firewall Policies tab; see ”Firewall Policies” on page 20 for more information.

7. Configure additional settings as needed for your network.

Corporate Deployment

This scenario uses a single EdgeRouter device. The three independent interfaces connect to the following:

• Internet

• DMZ

• LAN

eth0 eth1 eth2

Firewall Policies

Internet

3. Configure DHCP server(s) on the Services tab; see

”DHCP Server” on page 30 for more information.

4. Configure NAT rules on the Security > N AT tab; see ”NAT” on page 24 for more information.

5. Configure firewall rules on the Security > Firewall Policies tab; see ”Firewall Policies” on page 20 for more information.

6. Configure additional settings as needed for your network.

DMZ

LAN

Here are the typical steps to follow:

1. Configure the appropriate settings on the System tab (see “System” on page 4 for more information):

• Host Name

• Time Zone

• Gateway

• Name Server

• Domain Name

• NTP

2. Configure the interfaces on the Dashboard tab; see “Interfaces” on page 9 for more information.

Ubiquiti Networks, Inc.

Chapter 2: Using EdgeOSEdgeOS™ User Guide

Chapter 2: Using EdgeOS

EdgeOS is a powerful, sophisticated operating system that manages your EdgeRouter. It offers both a browser‑based interface (EdgeOS Configuration Interface) for easy configuration and a Command Line Interface (CLI) for advanced configuration.

To access the EdgeOS Configuration Interface:

1. Connect an Ethernet cable from the Ethernet port of your computer to the port labeled eth0 on the EdgeRouter.

eth0 eth1 eth2

2. Configure the Ethernet adapter on your computer with a static IP address on the 192.168.1.x subnet (e.g.,

192.168.1.100).

Note: As an alternative, you can connect a serial

cable to the Console port of the EdgeRouter. See “Command Line Interface” on page 45 for more information.

3. Launch your web browser. Type https://192.168.1.1 in the address field. Press enter (PC) or return (Mac).

4. The login screen will appear. Enter ubnt in the Username and Password fields. Read the Ubiquiti License Agreement, and check the box next to I agree to the terms of this License Agreement to accept it. Click Login.

The EdgeOS Configuration Interface will appear, allowing you to customize your settings as needed.

Note: To enhance security, we recommend that you

change the default login using one of the following:

• Set up a new user account on the Users > Local tab (preferred option). For details, go to “Add User” on page 35.

• Change the default password of the ubnt login on the Users > Local tab. For details, go to “Configure

the User” on page 36.

Ports and Status Information

The Ports image displays active connections: purple indicates 10 Mbps, amber for 100 Mbps, and green for

1000 Mbps. The Status bar graphs display the following:

CPU The percentage of processing power used by the

EdgeRouter.

RAM The percentage of RAM used by the EdgeRouter.

Uptime The duration of the EdgeRouter’s activity.

Place your mouse over a port to view the following:

Enabled/Disabled The administrative status is displayed.

Link The connection status is displayed.

Speed The speed (in Mbps) and duplex mode are

displayed.

Navigation

The EdgeOS software consists of five primary tabs, and some of these tabs have sub‑tabs. This User Guide covers each tab with a chapter. For details on a specific tab, refer to the appropriate chapter.

• Dashboard The “Dashboard Tab” on page 8 displays status information about services and interfaces. You can also configure interfaces and Virtual Local Area Networks (VLANs).

• Routing The “Routing Tab” on page 14 configures static routes and Open Shortest Path First (OSPF) settings, including metrics, areas, and interfaces.

• Security The “Security Tab” on page 20 configures firewall policies, Network Address Translation (NAT) rules, firewall/NAT groups, and PPTP VPN options.

• Services The “Services Tab” on page 30 configures DHCP servers, DNS forwarding, and the PPPoE server.

• Users The “Users Tab” on page 35 configures user accounts with administrator or operator access.

• Wizards The “Wizards Tab” on page 37 offers a variety of wizards: a setup wizard that configures the EdgeRouter for a typical SOHO deployment and feature wizards that configure port forwarding, TCP MSS clamping, and UPnP.

Ubiquiti Networks, Inc.

Chapter 2: Using EdgeOSEdgeOS™ User Guide

Depending on the tab you click, some of the screens display information and options in multiple sections. You can click the open/close tab to hide or display a section.

Open/Close Tab

Common Interface Options

The common interface options are accessible from all tabs on the EdgeOS interface:

• Welcome

• CLI

• Toolbox

• Alerts

• System

Required fields are marked by a blue asterisk *. When the information icon is displayed, you can click the icon for more information about an option.

Alerts

The number of new alerts is displayed in a red popup.

At the bottom of the screen, click the Alerts tab.

A table displays the following information about each important event.

Message A description of the event is displayed.

Field The settings that are affected by the event are

displayed.

Actions The following options are available:

• Remove Click this button to clear an alert.

• Clear All Click this button to clear all alerts.

Click the top right corner of the Alerts tab to close it.

System

At the bottom of the screen, click the System tab to access the device settings.

Welcome

At the top left of the screen, click Welcome to view the

Logout option:

Logout To manually log out of the EdgeRouter

Configuration Interface, click this option.

CLI

Advanced users can make configuration changes using Linux commands. At the top right of the screen, click the

CLI button. See “Command Line Interface” on page 45 for more information.

Toolbox

At the top right of the screen, click the Toolbox button. The following network administration and monitoring tools are available:

• “Ping” on page 42

• “Trace” on page 43

• “Discover” on page 43

• “Packet Capture” on page 43

• “Log Monitor” on page 44

The device settings are organized into these sections:

• “Basic Settings” on page 5

• “Management Settings” on page 5

• “Configuration Management & Device Maintenance”

on page 6

• “Restart & Shut Down Router” on page 7

Ubiquiti Networks, Inc.

Chapter 2: Using EdgeOSEdgeOS™ User Guide

Basic Settings

Host Name

System host name Enter a name for the EdgeRouter. The

host name identifies the EdgeRouter as a specific device. For example, a .com URL typically uses this format: <host_name>.domain_name.com

Time Zone

Use Coordinated Universal Time (UTC) UTC is the

international time standard used by Network Time Protocol (NTP) servers. If your routers are located in multiple time zones, then you may want to use UTC.

Time zone To set your network to a specific time zone,

select Time zone and configure the following:

• Select continent/ocean Select your location.

• Select country/region Select your location.

• Select time zone Select your time zone.

Gateway

Domain Name

System domain name Enter the domain name of your

EdgeRouter. The domain name identifies the EdgeRouter’s network on the Internet. For example, a .com URL typically uses this format: host_name.<domain_name>.com

NTP

NTP is a protocol for synchronizing the clocks of computer systems over packet‑switched, variable‑latency data networks. You can use it to set the system time on the EdgeRouter. If the System Log option is enabled, then the system time is reported next to every log entry that registers a system event.

Automatically update system time using NTP By

default, the EdgeRouter obtains the system time from a time server on the Internet.

Click Save to apply your changes.

Management Settings

SSH Server

System gateway address Enter the IP address of your

gateway. This will set up your default route. If you want to set up additional default routes, configure them as static routes on the Routing tab. See “Routing Tab” on page

14 for more information.

Name Server

Domain Name System (DNS) translates domain names to IP addresses; each DNS server on the Internet holds these mappings in its respective DNS database.

System name server Enter the IP address of your DNS

server (example: 192.0.2.1 for IPv4 or 2001:db8::1 for IPv6). Click Add New to add additional servers.

Ubiquiti Networks, Inc.

Enable Enabled by default. This option allows SSH

(Secure Shell) access to the EdgeRouter for remote configuration by command line. SSH uses encryption and authentication, so it is a secure form of communication. See “Command Line Interface” on page 45 for more information.

Port Specify the TCP/IP port of the SSH server. The default

is 22.

Chapter 2: Using EdgeOSEdgeOS™ User Guide

Telnet Server

Enable Disabled by default. This option allows Telnet

access to the EdgeRouter for remote configuration by command line. Telnet is not a secure form of communication, so we recommend SSH. See “Command

Line Interface” on page 45 for more information.

Port Specify the TCP/IP port of the Telnet server. The

default is 23.

System Log

Every logged message contains at least a system time and host name. Usually a specific service name that generates the system event is also specified within the message. Messages from different services have different contexts and different levels of detail. Usually error, warning, or informational system service messages are reported; however, more detailed debug level messages can also be reported. The more detailed the system messages reported, the greater the volume of log messages generated.

Log to remote server This option allows the EdgeRouter

to send system log messages to a remote server. Enter the remote host IP address and TCP/IP port that should receive the system log (syslog) messages. 514 is the default port for the commonly used, system message logging utilities.

For the purpose of equipment identification, configure the SNMP agent with contact and location information:

Enable Disabled by default. This option activates the

SNMP agent.

SNMP community Specify the SNMP community string.

It is required to authenticate access to MIB (Management Information Base) objects and functions as an embedded password. The device supports a read‑only community string; authorized management stations have read access to all the objects in the MIB except the community strings, but do not have write access. The device supports SNMP v1. The default is public.

Contact Specify the contact who should be notified in

case of emergency.

Location Specify the physical location of the EdgeRouter.

Click Save to apply your changes.

Configuration Management & Device Maintenance

The controls in this section manage the device configuration routines, firmware maintenance, and reset to factory default settings.

Back Up Config

We recommend that you back up your current system configuration before updating the firmware or uploading a new configuration.

Note: Properly configure the remote host to receive

syslog protocol messages.

SNMP Agent

Simple Network Monitor Protocol (SNMP) is an application layer protocol that facilitates the exchange of management information between network devices. Network administrators use SNMP to monitor network‑attached devices for issues that warrant attention.

The EdgeRouter contains an SNMP agent, which does the following:

• Provides an interface for device monitoring using SNMP

• Communicates with SNMP management applications for network provisioning

• Allows network administrators to monitor network performance and troubleshoot network problems

Ubiquiti Networks, Inc.

Download backup config file Click Download to

download the current system configuration file.

Note: We strongly recommend that you save the

configuration file in a secure location because it includes confidential information. The user login passwords are encrypted; however, other passwords and keys (such as those used for VPN, BGP, authentication, and RADIUS) are stored in plain text.

Chapter 2: Using EdgeOSEdgeOS™ User Guide

Restore Config

Upload config file Click Upload a file to locate the

configuration file previously created by the Back Up Config option. Select the file and click Choose. We recommend that you back up your current system configuration before uploading the new configuration.

Note for advanced users: You can also upload a

raw configuration file, /config/config.boot, using

thisoption.

Upgrade System Image

Download the firmware file from downloads.ubnt.com and save it on your computer.

The firmware update is compatible with all configuration settings. The system configuration is preserved while the EdgeRouter is updated with a new firmware version. However, we recommend that you back up your current system configuration before updating the firmware.

Restart & Shut Down Router

Restart Router

Restart To turn the EdgeRouter off and back on again,

click this option.

Shut Down Router

Shut Down To turn off the EdgeRouter, click this option.

WARNING: Click Shut Down to properly shut down

the EdgeRouter. An improper shutdown, such as disconnecting the EdgeRouter from its power supply, runs the risk of data corruption!

Click the top right corner of the System tab to close it.

Upload system image To update the EdgeRouter with

new firmware, click Upload a file and locate the new firmware file. Then click Choose.

Please be patient, as the firmware update routine can take three to seven minutes. You cannot access the EdgeRouter until the firmware update routine is completed.

WARNING: Do not power off, do not reboot, and

do not disconnect the EdgeRouter from the power supply during the firmware update process as these actions will damage the EdgeRouter!

Reset Config to Default

This option resets the EdgeRouter to the default configuration. This option will reboot the EdgeRouter, and the default configuration will be restored. We recommend that you back up your current system configuration before resetting the EdgeRouter to its default configuration.

Reset to Default To reset the EdgeRouter to its default

configuration, click this option.

Ubiquiti Networks, Inc.

Chapter 3: Dashboard TabEdgeOS™ User Guide

Chapter 3: Dashboard Tab

The Dashboard tab displays status information about services and interfaces. You can also configure interfaces and Virtual Local Area Networks (VLANs). Any setting marked with a blue asterisk * is required.

Services

Status information is displayed. Each heading is a convenient link to the appropriate tab.

Routes

The following route types are listed:

• Connected

• Static

• RIP (Routing Information Protocol)

• OSPF (Open Shortest Path First)

• EBGP (Exterior Border Gateway Protocol)

• IBGP (Interior Border Gateway Protocol)

The number of each route type and the total number of routes are displayed. Click Routes to display the Routing>Routes tab. Go to “Routes” on page 15 for more information.

OSPF

The OSPF status, settings, and number of areas are displayed. Click OSPF to display the Routing > OSPF tab. Go to “OSPF” on page 17 for more information.

NAT

The NAT (Network Address Translation) status and number of NAT rules are displayed. Click NAT to display the Security > NAT tab. Go to “NAT” on page 24 for more information.

Ubiquiti Networks, Inc.

Firewall

The firewall status and numbers of sets and rules are displayed. Click Firewall to display the Security > Firewall Policies tab. Go to “Firewall Policies” on page 20 for more information.

Chapter 3: Dashboard TabEdgeOS™ User Guide

DHCP

The DHCP server status and numbers of active and inactive servers are displayed. Click DHCP to display the Services tab. Go to “DHCP Server” on page 30 for more information.

Interfaces

Distribution

Click Hide Distribution to hide the Interfaces > Distribution section. Click the remaining open/close tab to display the

Interfaces > Distribution section again.

Open/Close Tab

Place your mouse over a bar to view the Current Rate and Total Amount of traffic for the selected interfaces.

All/Ethernet/VLAN

Add VLAN To create a new VLAN, click Add VLAN.

The Create a New VLAN screen appears.

Select the physical or virtual interfaces you want to display from the Interfaces column.

The TX Rate and RX Rate bar graphs display the current data traffic, which is color‑coded to match the corresponding interface. The graph scale and throughput dimension (Mbps, for example) change dynamically depending on the mean throughput value. The statistics are updated automatically.

• VLAN ID The VLAN ID is a unique value assigned to each VLAN at a single device; every VLAN ID represents a different VLAN. The VLAN ID range is 2 to 4094.

• Interface Select the appropriate interface.

• Description Enter keywords to describe this VLAN.

• MTU Enter the MTU (Maximum Transmission Unit) value, which is the maximum packet size (in bytes) that a network interface can transmit. The default is 1500.

• Address Select one of the following:

‑ No address settings The VLAN uses no address

settings. (In most cases, an address is needed.)

‑ Use DHCP The VLAN acquires network settings from

a DHCPv4 server.

‑ Use DHCP for IPv6 The VLAN acquires network

settings from a DHCPv6 server.

‑ Manually define IP address(es) Enter the

static IP address (example: 192.0.2.1/24 for IPv4 or 2001:db8::1/32 for IPv6). Click Add IP to enter additional IP addresses.

Ubiquiti Networks, Inc.

Click Save to apply your changes, or click Cancel.

Search Allows you to search for specific text. Begin

typing; there is no need to press enter. The results are filtered in real time as soon as you type two or more characters.

Chapter 3: Dashboard TabEdgeOS™ User Guide

All/Ethernet/VLAN Click the appropriate tab to filter the

interfaces as needed.

• All All interfaces are displayed by default.

• Ethernet All of the Ethernet interfaces are displayed.

• VLAN All VLANs are displayed.

A table displays the following information about each interface. Click a column heading to sort by that heading.

Description The keywords you entered to describe the

interface are displayed.

Interface The name of the interface is displayed.

Note: A switch interface is created by default

(EdgeRouter PoE only); however, there are no switched ports by default. To configure ports for the switch interface, click Actions > Config and go to

“Configure the Switch” on page 12.

Type The type of interface is displayed.

PoE (Available for the EdgeRouter PoE only.) The status

(off) or voltage (24v/48v) of the PoE feature is displayed.

IP Addr The IP address of the interface is displayed.

MTU The MTU (Maximum Transmission Unit) value of the

interface is displayed. This is the maximum packet size (in bytes) that the interface can transmit.

TX The transmit speed of the interface is displayed.

RX The receive speed of the interface is displayed.

Status The connection status of the interface is displayed.

Actions Click the Actions button to access the following

options:

• Config To configure the interface, click Config.

If the interface is a physical port, go to the Configure the Interface section.

If the interface is a VLAN, go to “Configure the VLAN” on page 11.

If the interface is a switch (available for the EdgeRouter PoE only), go to “Configure the Switch” on page 12.

• PoE (Available for the EdgeRouter PoE only.) To configure the PoE settings, click PoE. Go to “Configure the PoE Settings” on page 12.

• Disable Disable the interface while keeping its configuration. (The switch interface cannot be disabled.)

Note: If you disable a port, its PoE functionality

remains. (This applies only to the EdgeRouter PoE.)

Configure the Interface

After you click Config, the Interface Configuration screen appears.

Make changes as needed.

• Description Enter keywords to describe this interface.

• Enable Check the box to enable the interface. All of the interfaces are saved in the system configuration file; however, only the enabled interfaces are active on the device.

Note: If you disable a port, its PoE functionality

remains. (This applies only to the EdgeRouter PoE.)

• Address Select one of the following:

‑ No address settings The interface uses no address

settings. (In most cases, an address is needed.)

‑ Use DHCP The interface acquires network settings

from a DHCPv4 server. Click the Renew button to acquire fresh network settings.

‑ Use DHCP for IPv6 The interface acquires network

settings from a DHCPv6 server.

‑ Manually define IP address(es) Enter the

static IP address (example: 192.0.2.1/24 for IPv4 or 2001:db8::1/32 for IPv6). Click Add IP to enter additional IP addresses.

• MTU Enter the MTU (Maximum Transmission Unit) value, which is the maximum packet size (in bytes) that a network interface can transmit. The default is 1500.

• Delete (Available for VLANs only.) Delete the VLAN from the EdgeRouter configuration.

Ubiquiti Networks, Inc.

Chapter 3: Dashboard TabEdgeOS™ User Guide

• Speed/Duplex The default is Auto negotiation. The EdgeRouter automatically negotiates transmission parameters, such as speed and duplex, with its counterpart. In this process, the networked devices first share their capabilities and then choose the fastest transmission mode they both support.

To manually specify the transmission link speed and duplex mode, select one of the following options: 100/full, 100/half, 10/full, or 10/half.

Full‑duplex mode allows communication in both directions simultaneously. Half‑duplex mode allows communication in both directions, but not simultaneously and only in one direction at a time.

• Proxy ARP Enable the EdgeRouter to answer a source host’s ARP (Address Resolution Protocol) requests for the IP address of a destination host that is not located on the source host’s network. ARP allows hosts on the same network to discover each other’s IP address via a layer 2 broadcast to all MAC addresses. If they are not on the same network, the layer 2 broadcast will not reach its destination; however, the EdgeRouter can serve as the go‑between if Proxy ARP is enabled.

Click Save to apply your changes, or click Cancel.

Configure the VLAN

After you click Config, the Interface Configuration screen appears.

• Address Select one of the following:

‑ No address settings The interface uses no address

settings. (In most cases, an address is needed.)

‑ Use DHCP The interface acquires network settings

from a DHCPv4 server. Click the Renew button to acquire fresh network settings.

‑ Use DHCP for IPv6 The interface acquires network

settings from a DHCPv6 server.

‑ Manually define IP address(es) Enter the

static IP address (example: 192.0.2.1/24 for IPv4 or 2001:db8::1/32 for IPv6). Click Add IP to enter additional IP addresses.

• MTU Enter the MTU (Maximum Transmission Unit) value, which is the maximum packet size (in bytes) that a network interface can transmit. The default is 1500.

Click Save to apply your changes, or click Cancel.

Make changes as needed.

• VLAN ID The VLAN ID is displayed.

• Parent The interface belonging to this VLAN is displayed.

• Description Enter keywords to describe this interface.

• Enable Check the box to enable the VLAN. All of the VLANs are saved in the system configuration file; however, only the enabled VLANs are active on the device.

Ubiquiti Networks, Inc.

Chapter 3: Dashboard TabEdgeOS™ User Guide

Configure the Switch

(Available for the EdgeRouter PoE only.) After you click Config, the Interface Configuration screen appears.

Make changes as needed.

• Description Enter keywords to describe this switch.

• Address Select one of the following:

‑ No address settings The switch uses no address

settings. (In most cases, an address is needed.)

‑ Use DHCP The switch acquires network settings from

a DHCPv4 server. Click the Renew button to acquire fresh network settings.

Configure the PoE Settings

Note: Before enabling PoE, check the specifications

of your airMAX, airVision, mFi, UniFi, legacy, or third‑party devices to ensure they support passive PoE and require the available amount of voltage.

(Available for the EdgeRouter PoE only.) After you click PoE, the PoE tab of the Interface Configuration screen appears.

PoE is disabled by default on all ports. Make changes as needed.

• PoE Select one of the following:

‑ Off To disable PoE, select Off.

‑ Use DHCP for IPv6 The switch acquires network

settings from a DHCPv6 server.

‑ Manually define IP address(es) Enter the

static IP address (example: 192.0.2.1/24 for IPv4 or 2001:db8::1/32 for IPv6). Click Add IP to enter additional IP addresses.

• Switch Ports Select the ports for the switch interface.

Click Save to apply your changes, or click Cancel.

Note: To disable PoE, you must use this setting. If

you disable a port, its PoE functionality remains.

‑ 24V To output 24V PoE to the connected device,

select 24V.

‑ 48V To output 48V PoE to the connected device,

select 48V.

Note: You must have a 48V power adapter

(not included) powering the EdgeRouter PoE; otherwise, 48V PoE is not allowed.

PoE Watchdog

Watchdog is only for PoE‑enabled ports. It configures

PoE

the device to continuously ping a user‑defined IP address (it can be the Internet gateway, for example). If it is unable to ping under the user‑defined constraints, then the device will automatically turn off PoE on the port, and then turn it back on. This option creates a kind of “fail‑proof” mechanism.

Watchdog is dedicated to continuous monitoring of

PoE

the specific connection to the remote host using the Ping tool. The Ping tool works by sending ICMP echo request packets to the target host and listening for ICMP echo response replies. If the specified number of replies is not received, the tool reboots the device.

Ubiquiti Networks, Inc.

• Enable Watchdog Enable the use of PoE Watchdog.

‑ IP Address To Ping Specify the IP address of the

target host to be monitored by PoE Watchdog.

‑ Ping Interval Specify the time interval (in seconds)

between the ICMP echo requests that are sent by PoE Watchdog. The default value is 300 seconds.

‑ Startup Delay Specify the initial time delay (in

seconds) until the first ICMP echo requests are sent by PoE Watchdog. The default value is 300 seconds.

The Startup Delay value should be at least 60 seconds as the network interface and wireless connection initialization takes a considerable amount of time if the device is rebooted.

‑ Failure Count Specify the number of ICMP echo

response replies. If the specified number of ICMP echo response packets is not received continuously, PoE Watchdog will reboot the device. The default value is3.

‑ Cut power for Specify the number of seconds this

port should pause PoE (if applicable).

WARNING: Cutting power during a firmware

upgrade can damage your device. Ensure that you specify a safe Ping Interval.

Click Save to apply your changes, or click Cancel.

Chapter 3: Dashboard TabEdgeOS™ User Guide

Ubiquiti Networks, Inc.

Chapter 4: Routing Tab EdgeOS™ User Guide

Chapter 4: Routing Tab

The Routing tab displays status information about a variety of connected, static, RIP, and OSPF routes. You can also configure static routes and OSPF options. Any setting marked with a blue asterisk * is required.

You have two sub-tabs:

Routes View route information and create static routes.

OSPF Configure OSPF options.

IPv6 Routing

IPv6 (Internet Protocol version 6) is gaining popularity and is bound to grow as IP addressing demands increase. The EdgeOS Configuration Interface supports IPv6 for the following options:

• System > Name Server configuration (Refer to “Name Server” on page 5.)

• Dashboard > VLAN configuration (Refer to “Add VLAN” on page 9.)

• Dashboard > Interface configuration (Refer to “Configure the Interface” on page 10.)

For IPv6 addresses, the EdgeOS Configuration Interface supports “::” (double-colon) notation, which substitutes “::” for a contiguous sequence of 16-bit blocks set to zero. Here is an example: 2001:db8::1

If written out, the IPv6 address becomes:

2001:db8:0000:0000:0000:0000:0000:0001

The EdgeOS Configuration Interface displays IPv6 addresses only in two locations:

• System > Name Server section

• Dashboard tab

The EdgeOS Configuration Interface will increase its support of IPv6 in future releases. For other options, you can use the CLI, which has comprehensive IPv6 support.

Note: Use the CLI to view IPv6 options configured

in the CLI but not supported by the EdgeOS Configuration Interface.

Ubiquiti Networks, Inc.

Chapter 4: Routing Tab EdgeOS™ User Guide

Routes

A route determines how traffic travels to its destination network. If more than one route is suitable, the EdgeRouter uses administrative distance as a metric to compare all available routes, including directly connected routes, manually configured static routes, dynamic routes, and the default route. The EdgeRouter uses the route with the lowest administrative distance.

All/Static/Connected/RIP/OSPF

Add Static Route To create a new static route, click Add

Static Route.

The Create Static Route screen appears.

Complete the following:

• Select Route Type You have three options: Gateway, Interface, or Black Hole.

- Gateway Define a route using the IP address and subnet mask of the next hop gateway.

- Interface Define a route using a next hop interface.

• Destination network Enter the IP address and

subnet mask using slash notation: <network_IP_address>/<subnet_mask_number> (example: 192.0.2.0/24).

• Next hop interface Select the appropriate

interface from the drop-down list.

• Distance (1-255) Enter the administrative distance.

If there are identical routes from different sources (such as static, RIP, and OSPF), the EdgeRouter compares the routes and uses the route with the lowest distance.

• Enable Check the box to enable the route.

Click Save to apply your changes.

- Black Hole Define a route that drops unwanted traffic.

• Destination network Enter the IP address and

subnet mask using slash notation: <network_IP_address>/<subnet_mask_number> (example: 192.0.2.0/24).

The first default route is configured on the System tab; see “System gateway address” on page 5 for more information. To create multiple default routes, set up static routes and enter 0.0.0.0/0.

• Next hop address Enter the IP address.

• Distance (1-255) Enter the administrative distance.

If there are identical routes from different sources (such as static, RIP, or OSPF), the EdgeRouter compares the routes and uses the route with the lowest distance.

• Enable Check the box to enable the route.

Click Save to apply your changes.

Ubiquiti Networks, Inc.

• Destination network Enter the IP address and

subnet mask using slash notation: <network_IP_address>/<subnet_mask_number> (example: 192.0.2.0/24).

• Distance (1-255) Enter the administrative distance.

If there are identical routes from different sources (such as static, RIP, and OSPF), the EdgeRouter compares the routes and uses the route with the lowest distance.

• Enable Check the box to enable the route.

Click Save to apply your changes.

Search Allows you to search for specific text. Begin

typing; there is no need to press enter. The results are filtered in real time as soon as you type two or more characters.

+ 39 hidden pages