I mean the unifi ipv6 routing is crap,for local service is okay,but for service that hosted outside of SG/MY then the routing might be quite not stable and causing the speed is lower than ipv4 to the same server(compare with ipv4/ipv6).

And of course even to Cloudflare, Unifi ipv4 and ipv6 also not having good everday,sometimes will reroute to HK area(TM- routing faults),so in this situation for important site,using self-choosing cloudflare ip entering to hosts file is better.

no problem on my end-Johor.
http://smokeping.mywebping.com/smokeping/?target=IPv6

I just put a 240mm usb fan under RB5009. Temp 39°C.


You guys got use Queue(QoS) or only enable fasttrack only for unifi/maxis?

I trying to setup queue but the result still not satisficed , running max download speed still affected latency...
Bufferbloat test keep giving A only,still unable to get A+

This post has been edited by go626201: Jun 14 2022, 04:31 PM

I thought bridge mode btu does not affect performance?
I also want to change the btu,because i think this btu got some problem,but i not sure is my area issue or not,
Sometime the rj11 phone will suddenly drop the call while using the phone. (And i having this issue about 6-7 years ao since from my previous home with the same btu and nearby resident area-different taman)

Ya waveform,i think yours download speed not running full speed so the latency not affected,mine during test totally eat 800+mbps dl and 200mbps+ up speed,so the latency is affected.
Later I try to limit my speed to see got difference or not.

Dont know use what reason the force them to replace...Since I cant pretend btu broken without btu off...
So nvm la,just wait for a few more years when they introduce higher plan then at that time btu must be change.

This post has been edited by go626201: Jun 14 2022, 05:16 PM

I think nope,seems like your unifi ip range not getting stable routing to the server.

And i just tried simple queue with 90% speed limit - 750M and 180M ,and the result is good.

https://www.waveform.com/tools/bufferbloat?...47-5f2837d2ebe1

Not sure what spec for the new hAP ax2. If like ax5000+ then i might get one for second floor wifi.
If good enough and acceptable coverage then i going to replace my xiaomi ax3600 for ground floor.

Should be able to "overclock" to 1.2 GHz. (IPQ6010)

For this spec,i might just skip this one 1st. and wait for an upgrade version. AX1800 quite low now,atleast ax3000 or ax3200 for future proof should be enough for most people. Although nowadays most people still didn't need high wifi speed,but a wifi router should last for more than 3years.
(Since 2.5Gbe is be mainstream within 2-3years. China is starting to distribute affordable(still a little expensive) 2.5Gbe BTU for market in this years end,so 2024 or 2025 more people will also be using better internet)

For me i think one year one set is quite unacceptable for me.
I change router about every 2-3years. (Next time should be around new series that replace RB5009 level,but i might be getting CCR series for whole house 10G network)

1.Youtube got alot of tutorial just follow it.(Remember to add a Firewall rules- Filter rules - add input allow for Wireguard UDP port access)


2.Reset the hEX,and the default generated firewall rules should be enough for most people,and just add or edit from the default conf.
3.Follow Soonwai thread : https://forum.lowyat.net/index.php?showtopic=4202122 for VLAN tagging.
4.For me i just us the fq_codel for queue to every interface with specific interface speed limitation to avoid high bufferbloat.
5.Search on google,should have alot of CF DDNS script that can be modified for use.

What thumbdrive you are using?

I was thinking to get a ssd to play with containers on RB5009. (Although i have a RPi 4 running 24/7 too)
Because pendrive is not design for long operating time,and the overall performance and life cycle is lower than ssd.

I think it quite normal happens on mikrotik router,as sometimes i can see people talks about their ethernet port died on mikrotik forum. (Amost every model will have the possibility of ethernet died)

I dont have UBNT eqipment,so not sure about that.
I using Xiaomi Wifi router as my AP setup, UBNT device not cheap if want full setup for whole house.

I think Mikrotik price is more reasonable and cheaper, which can think we actually is buying routeros software with free mikrotik hardware.
I bought RB750Gr3 few years ago because of Soonwai.
Thanks to Soonwai for bringing me to the Mikrotik RouterOS world,
I using alot of wireguard service with worldwide vps as VPN usage.

My future plan will be 1-2 years(2024/2025) later that i will just buy CCR model to replace my RB5009. (Current usage for Wireguard is "performance hungry")
My estimated model will need atleast 2 SFP+ port with at least 1 10G Ethernet and maybe multiple 2.5G ethernet port.
1G can have or not,as i not really care about it,and I just bought a 2.5G switch(8x 2.5G and 1x SFP+ port) on taobao with 10G DAC cable to link with RB5009.

And i hope at the that time,Mikrotik have change their router to use the newer generation CPU(like recent 1-2 years released) for their router.
Current CCR cpu grade seems like not so powerful.

I dont think so ,i estimate next RB5009 full/big upgrade model will be release ’1+’ - ‘3’ years later.
RB5009 just release 1 years plus only.
(I was one of the first who getting RB5009 in Malaysia)

My suggestion:
If u do not need 10G managed switch,then just get a cheapo 10G unmanaged switch from somewhere else.
Mikrotik device is mainly use for managed network usage.

Mikrotik 4 SFP+ port 10G managed switch (CRS305-1G-4S+IN) cost RM729.
TP-Link CN 8 SFP+ port 10G unmanaged switch (TL-ST1008F) cost CNY609-749 (Around RM450+-)

4port vs 8 port
Almost RM 150-300 price difference.

And if 10G not a must for you at current stage,just wait for another 1-2 years,the price will be lower,as the hardware is cheaper and more cheaper soon with higher stability. (I estimate at least 20% more cheaper)

2.5G is a sweet spot for current stage,the price had came down from few months ago,As realtek release new chip for 2.5G switch.
Previously 5port 2.5G unmanaged switch cost around RM300-400,but now 8port 2.5G switch is cheaper than that.
I just bought one unmanaged switch with 8x 2.5G port + 1x 10G SFP+,and it cost me only RM250+

This post has been edited by go626201: May 10 2023, 02:06 PM

Your usage better get a managed switch to separate your CCTV and PC network and other device.
And router upgrade might be needed,since AC68U is not for business usage,it might only use for lower concurrent device number with non-high concurrent usage.

Normally no need to do extra settings for internet access,but if you not going to tinkering with it,better buy other consumer grade router.
Normal RM300+ router should be enough for most 90% people. And need bigger coverage just buy another one to pair mesh network.

Most business or enterprise grade managed switch should be okay.
For brand i cant give any recommendation,since i never get used to any managed switch.

My suggestion is get a managed switch(IF Not using enterprise grade switch ),
And split your network to multiple switch,
All CCTV use 1 switch,PC use 1 switch, Wifi AP use 1 switch,others device use 1 switch or just connect to PC or Wifi switch.

Concept 1:
BTU <Ethernet> Enterprise grade router <Ethernet / SFP+> Multiple Switch <>end device
This way u just setup switch on the router size,should be isolate different switch.(Example setup Router Lan Port 2 and 4 cant communicate directly)

Concept 2:
BTU <Ethernet> mid-high Consumer grade router <Ethernet> Managed Switch <Ethernet / SFP+> managed/unmanaged Switch <>end device
This way the router is not powerful,but the traffic exchange task given to Managed switch chip to manage. (But the total uplink bandwidth is low ,unless the router and switch support LACP or LAN aggregation OR 10G router + switch)

Example: (With Mikrotik) RB5009 As router. (CCR router should be better,If you have VPN tunnel usage,get better grade router)
BTU <LAN 1 --- LAN 2> RB5009 For Unifi Access

RB5009 <LAN 3 --- LAN1> Switch A - 1G POE switch For CCTV
RB5009 <LAN 4 --- LAN1> Switch B - 1G POE or non-POE switch For AP/Mesh
RB5009 <LAN 5/6 --- LAN1/2> Switch C - 1G managed switch For PC (2Port with LACP/Link Aggregation)
RB5009 <LAN 7 --- LAN1> Switch D - 1G switch for other device

RB5009 <LAN 1 --- LAN 1> 2.5G LAN device / 2.5G switch or 2.5G Fiber optic converter(with GPON Stick to Replace BTU/ONR)

RB5009 <SFP+> 10G Server or switch or something else or GPON Stick(to Replace BTU/ONR)


Keep in mind: RB5009 Switch only have total 10G link to Router CPU.

Just tried to redirect most cloudflare https usage to optimized speed and ping ips. (Should be cover 99.5% of cloudflare cdn accessible ips)
Use for few hours, for the result - work very well.




Edited:
UDP for 443 is also needed. (Due to QUIC is using UDP)

Edited 2:
After adding NAT setting,better restart your device or router or browser,as the connection is still established with old ips.

This post has been edited by go626201: May 24 2023, 01:27 AM