Unifi Official TM UniFi High Speed Broadband Thread V42, READ 1ST PAGE FOR RELEVANT WIFI INFO!
|
|
 Jul 19 2024, 01:19 AM
Show posts by this member only | IPv6 | Post
#3890
|
 
Senior Member
1,196 posts Joined: Sep 2018  
|
QUOTE(xCryptik @ Jul 19 2024, 12:29 AM) Why so many people queue up for TM Live chat until queue number is 132 at this time. 😠That's why I called them straight 😂Give me chance please.  |
|
|
|
|
|
Jul 19 2024, 02:14 AM
|
Senior Member
1,209 posts Joined: Aug 2018
|
TM is poisoning DNS again. Last time they just outright block port 443, preventing DoH. This time they redirect you to their own server using their own certificate. CODE $ nmap -sCV -Pn -p 443 1.1.1.1 Starting Nmap 7.93 ( https://nmap.org ) at 2024-07-19 02:09 +08 Nmap scan report for 1.1.1.1 Host is up (0.0093s latency). PORT   STATE SERVICE  VERSION 443/tcp open  ssl/http EMC Navisphere CIM Object Manager httpd |_http-title: Site doesn't have a title. | ssl-cert: Subject: commonName=dns.tm.net.my/organizationName=Telekom Malaysia Berhad/stateOrProvinceName=Kuala Lumpur/countryName=MY | Subject Alternative Name: DNS:dns.tm.net.my | Not valid before: 2024-07-09T01:22:02 |_Not valid after:  2025-04-06T04:36:03 |_ssl-date: TLS randomness does not represent time Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 33.86 seconds This post has been edited by kwss: Jul 19 2024, 02:14 AM hasmidzul_jojo, Azims, and 4 others liked this post
|
|
|
Jul 19 2024, 07:22 AM
Show posts by this member only | IPv6 | Post
#3892
|
Senior Member
805 posts Joined: Dec 2004
|
QUOTE(Anime4000 @ Jul 18 2024, 09:59 PM) I know TM refuse to give /56 to end users, but RFC 6177 recommend give least /56 which is allow user to create another LAN Subnet for isolating security risk like IoT/SmartHome/CCTV Device, HomeLab and Family Network at least allow Ultra customer to request /60 (16 subnet) which is good enough to create 16 different network. if we going truly using IPv6, do this. Regarding the pool exhaustion, the worst part is not that they don't know how to, they do. Unifi Biz gets /56 hasmidzul_jojo liked this post
|
|
|
Jul 19 2024, 09:03 AM
|
Junior Member
586 posts Joined: Mar 2006
|
QUOTE(kwss @ Jul 19 2024, 02:14 AM) TM is poisoning DNS again. Last time they just outright block port 443, preventing DoH. This time they redirect you to their own server using their own certificate. This is definitely evil...CODE $ nmap -sCV -Pn -p 443 1.1.1.1 Starting Nmap 7.93 ( https://nmap.org ) at 2024-07-19 02:09 +08 Nmap scan report for 1.1.1.1 Host is up (0.0093s latency). PORT   STATE SERVICE  VERSION 443/tcp open  ssl/http EMC Navisphere CIM Object Manager httpd |_http-title: Site doesn't have a title. | ssl-cert: Subject: commonName=dns.tm.net.my/organizationName=Telekom Malaysia Berhad/stateOrProvinceName=Kuala Lumpur/countryName=MY | Subject Alternative Name: DNS:dns.tm.net.my | Not valid before: 2024-07-09T01:22:02 |_Not valid after:  2025-04-06T04:36:03 |_ssl-date: TLS randomness does not represent time Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 33.86 seconds |
|
|
Jul 19 2024, 10:53 AM
Show posts by this member only | IPv6 | Post
#3894
|
Senior Member
1,162 posts Joined: Sep 2008 From: PJ
|
Just curious, for all the user of unifi thus far, do you recommend unifi for new user?
I have changed from one to another throughout the years. Currently I am on astro fiber, which is not that great, so thinking of changing back to Unifi. I can't get access to Time internet unfortunately, so thats out. So any user here have any comment on Unifi in general nowadays. Thank you. |
|
|
Jul 19 2024, 12:24 PM
|
|
Senior Member
1,185 posts Joined: Nov 2020
|
QUOTE(yenchenje @ Jul 18 2024, 10:41 PM) I actually watch, but quite some time is just me putting it on to keep my PC from sleeping lol omg lmaofor mac we have app called amphetamine to prevent sleep im sure you can find one for windows if you prefer really do miss my dream machine, but i had so much guilt after buying it haha side note, i sleep much better if i have a tv show running in the backgroung so i subscribed to disney plus just because they dont have the "are you still there" warning so whole night it'll play on my nest hub |
|
|
|
|
|
Jul 19 2024, 12:33 PM
|
|
Senior Member
1,458 posts Joined: Sep 2021
|
QUOTE(peter32 @ Jul 19 2024, 10:53 AM) Just curious, for all the user of unifi thus far, do you recommend unifi for new user? unifi are great but astro fibre is trashI have changed from one to another throughout the years. Currently I am on astro fiber, which is not that great, so thinking of changing back to Unifi. I can't get access to Time internet unfortunately, so thats out. So any user here have any comment on Unifi in general nowadays. Thank you. mine 500mbps unifi i don't have any issue so very good unifi |
|
|
Jul 19 2024, 04:36 PM
Show posts by this member only | IPv6 | Post
#3897
|
Senior Member
774 posts Joined: Jun 2014
|
QUOTE(blacktubi @ Jul 18 2024, 10:28 PM) For those who got the Skyworth GN630V combo router, it's super easy to turn that thing into bridge mode and still use PPPOE at your own router. Hi, currently I got Skyworth GN630V combo router, may I know why the buffer bloat for upload latency is higher than download? Isn't that the buffer bloat for Fibre Optics should be lower on both download and upload?You should definitely do that as any decent third party router should have a much faster CPU than the GN630V. My settings below:  Note: VLAN tagging / IPTV Profile / VLAN profile not needed on your router with this configuration! Remember to switch off the WiFi function once that's done.  |
|
|
Jul 19 2024, 04:47 PM
Show posts by this member only | IPv6 | Post
#3898
|
 
Elite
8,427 posts Joined: Jul 2008 
|
QUOTE(NagaK @ Jul 19 2024, 12:11 AM) Thanks for tip. For 1Gbps user Asus AX6000 Tuf gaming is good ? I'm eyeing for goof Asus router since lot of functions compared to my trustworthy TP Link routers Excellent CPU and produce very little heat compare to Broadcom or Qualcomm.QUOTE(Jeffreynsx @ Jul 19 2024, 04:36 PM) Hi, currently I got Skyworth GN630V combo router, may I know why the buffer bloat for upload latency is higher than download? Isn't that the buffer bloat for Fibre Optics should be lower on both download and upload? Bufferbloat got more to do with QoS and congestion control at the router. That's why I recommend to turn the GN630V to bridge mode and use your own router.Bad congestion control can lead to ping spike, laggy WiFi calls. This is an example of a Unifi 500Mbps speedtest over WiFi with a good router.  This post has been edited by blacktubi: Jul 19 2024, 04:50 PM |
|
|
Jul 20 2024, 02:35 AM
Show posts by this member only | IPv6 | Post
#3899
|
|
Junior Member
197 posts Joined: Jul 2011
|
QUOTE(kwss @ Jul 19 2024, 02:14 AM) TM is poisoning DNS again. Last time they just outright block port 443, preventing DoH. This time they redirect you to their own server using their own certificate. No wonder yesterday suddenly my android private dns settings suddenly not working.CODE $ nmap -sCV -Pn -p 443 1.1.1.1 Starting Nmap 7.93 ( https://nmap.org ) at 2024-07-19 02:09 +08 Nmap scan report for 1.1.1.1 Host is up (0.0093s latency). PORT   STATE SERVICE  VERSION 443/tcp open  ssl/http EMC Navisphere CIM Object Manager httpd |_http-title: Site doesn't have a title. | ssl-cert: Subject: commonName=dns.tm.net.my/organizationName=Telekom Malaysia Berhad/stateOrProvinceName=Kuala Lumpur/countryName=MY | Subject Alternative Name: DNS:dns.tm.net.my | Not valid before: 2024-07-09T01:22:02 |_Not valid after:  2025-04-06T04:36:03 |_ssl-date: TLS randomness does not represent time Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 33.86 seconds Btw this redirecting will break TLS right? Considering if we use DoH or DoT |
|
|
Jul 20 2024, 12:22 PM
|
|
Senior Member
1,458 posts Joined: Sep 2021
|
QUOTE(Jeffreynsx @ Jul 19 2024, 04:36 PM) Hi, currently I got Skyworth GN630V combo router, may I know why the buffer bloat for upload latency is higher than download? Isn't that the buffer bloat for Fibre Optics should be lower on both download and upload? because Skyworth GN630V combo router CPU AND RAM Unable handle that why I recommend to turn the GN630V to bridge mode then use your own router. try tp link ax73 enough handle or you want more powerful get ASUS Router |
|
|
Jul 20 2024, 12:27 PM
Show posts by this member only | IPv6 | Post
#3901
|
Junior Member
87 posts Joined: Feb 2013 From: Wilayah Persekutuan, KL
|
QUOTE(izhamsatria @ Jul 18 2024, 01:05 PM) You're wasting their time and your money Nowadays, they do not cap at OLT/ONU. Only cap at pppoe profile. Regarding fast.com result, its not accurate QUOTE(blacktubi @ Jul 18 2024, 06:09 PM) Actually, there's an OLT level cap and it's known as DBA. The DBA profile can be misconfigured at some OLT. As expected the person who came was just a normal contractor who knew neither head nor tail of the issue. In fact I pitied him because he wasted his time coming over. I was also quite annoyed at TM because I specifically mentioned to not bring their contractors as this is way above them.Huawei OLT is really strict on DBA profile. It wouldn't let you to allocate more bandwidth than the available bandwidth. I will give you an example how it can be misconfigured. Huawei OLT will round down the DBA bandwidth into a multiple of 64. If the DBA profile is set to 1000, it will round down to 960Mbps (64*15). However, I agree that it's wasting time cause only very senior engineer can understand this and it really can't be fixed easily. I have the exact same issue on Maxis-TM infra.  Anyway, his supervisor was supposed to escalate the case to their actual second level. Someone else is going to come in another hour or so, let's see. I'm willing to fight for this because we are paying heftily for TM's 1gbps and this sort of speed capping is not fair to the customer. I pay for 1gbps I should get 1gbps over LAN at the very least. God knows I've spent quite a bit on hardware (2.5gbe ports) throughout my setup to enjoy even via WiFi. This post has been edited by Verblassen: Jul 20 2024, 12:27 PM |
|
|
Jul 20 2024, 04:53 PM
|
|
Senior Member
774 posts Joined: Jun 2014
|
QUOTE(tng55 @ Jul 20 2024, 12:22 PM) because Skyworth GN630V combo router CPU AND RAM Unable handle that why I recommend to turn the GN630V to bridge mode then use your own router. try tp link ax73 enough handle or you want more powerful get ASUS Router I tried to setup as a bridge mode based on the screenshot provided earlier. However, I cannot connect it to my Asus Router. May I know any area need to setup to establish the connection? |
|
|
|
|
|
Jul 20 2024, 08:54 PM
Show posts by this member only | IPv6 | Post
#3903
|
|
Senior Member
2,616 posts Joined: Nov 2020
|
QUOTE(Jeffreynsx @ Jul 20 2024, 04:53 PM) I tried to setup as a bridge mode based on the screenshot provided earlier. However, I cannot connect it to my Asus Router. May I know any area need to setup to establish the connection? selected PPPoE in the asus and entered the username and password? |
|
|
Jul 20 2024, 09:28 PM
|
|
Senior Member
1,458 posts Joined: Sep 2021
|
QUOTE(Jeffreynsx @ Jul 20 2024, 04:53 PM) I tried to setup as a bridge mode based on the screenshot provided earlier. However, I cannot connect it to my Asus Router. May I know any area need to setup to establish the connection? asus router can you need select PPPoE username and password |
|
|
Jul 21 2024, 12:11 AM
|
|
Senior Member
1,209 posts Joined: Aug 2018
|
QUOTE(Kadaj @ Jul 19 2024, 09:03 AM) This is definitely evil... Makes me think their only reason for going with ZTE for next gen network is importing censorship from CCP.QUOTE(zhuoyang @ Jul 20 2024, 02:35 AM) No wonder yesterday suddenly my android private dns settings suddenly not working. If your resolver is properly configured then it should break TLS.Btw this redirecting will break TLS right? Considering if we use DoH or DoT Mikrotik by default won't validate certificate if you enable DoH so this will successfully poison all Mikrotik device. If you use Mikrotik resolver you must manually import the CA certificate and enable validation. I have verified the following resolver to be safe: Android Private DNS. This is the most noob-proof resolver as in they won't allow you to configure it wrongly. systemd-resolved (if you configure domain name) CODE [Resolve] DNSOverTLS=yes DNS=2606:4700:4700::1111#one.one.one.one 1.1.1.1#one.one.one.one stubby (if you configure tls_auth_name) CODE tls_authentication: GETDNS_AUTHENTICATION_REQUIRED Â - address_data: 2606:4700:4700::1111 Â Â tls_auth_name: "one.one.one.one" Windows 11, Firefox, Chromium-based browser (if you use full path) CODE https://cloudflare-dns.com/dns-query This post has been edited by kwss: Jul 21 2024, 12:41 AM Kadaj liked this post
|
|
|
Jul 21 2024, 12:23 AM
|
|
Senior Member
1,209 posts Joined: Aug 2018
|
QUOTE(peter32 @ Jul 19 2024, 10:53 AM) Just curious, for all the user of unifi thus far, do you recommend unifi for new user? I am thinking of going with other provider as Unifi is not as good as it used to be. Actually it is quite lousy right now. Since you tried other providers, can you tell me which one is best other than TM?I have changed from one to another throughout the years. Currently I am on astro fiber, which is not that great, so thinking of changing back to Unifi. I can't get access to Time internet unfortunately, so thats out. So any user here have any comment on Unifi in general nowadays. Thank you. Here are some of TM's problems: 1. Links to Singapore seems like permanently congested 2. Local congestion during the evening. If you are familiar with NBN's Typical Evening Speed but worse. 3. TM is actively performing man in the middle attack at random time. No other telco do this. 4. TM is cheating their speedtest. You will get max speed for both "client" and "server" but actual speed is like 15% only. 5. All local telco exchange traffic at MyIX. TM will go all the way to Singapore just to exchange traffic. This post has been edited by kwss: Jul 21 2024, 12:27 AM |
|
|
Jul 21 2024, 08:43 AM
Show posts by this member only | IPv6 | Post
#3907
|
|
Senior Member
774 posts Joined: Jun 2014
|
QUOTE(PRSXFENG @ Jul 20 2024, 08:54 PM) selected PPPoE in the asus and entered the username and password? Already done this part. In fact, previously I was using ZTE modem with Asus Router. No problem at all.QUOTE(tng55 @ Jul 20 2024, 09:28 PM) asus router can you need select PPPoE username and password Already done this part. In fact, previously I was using ZTE modem with Asus Router. No problem at all. |
|
|
Jul 21 2024, 08:59 AM
Show posts by this member only | IPv6 | Post
#3908
|
|
Senior Member
2,517 posts Joined: Mar 2016
|
QUOTE(Jeffreynsx @ Jul 21 2024, 08:43 AM) Already done this part. In fact, previously I was using ZTE modem with Asus Router. No problem at all. Set ISP profile to None in Lan > IPTVAlready done this part. In fact, previously I was using ZTE modem with Asus Router. No problem at all. This post has been edited by yongtjunkit: Jul 21 2024, 08:59 AM |
|
|
Jul 21 2024, 09:49 AM
Show posts by this member only | IPv6 | Post
#3909
|
|
Senior Member
774 posts Joined: Jun 2014
|
QUOTE(yongtjunkit @ Jul 21 2024, 08:59 AM) Set ISP profile to None in Lan > IPTV If the ISP Profile set to None in LAN > IPTV from Asus Router. The VOIP will it work if I set the stock TM router to Bridge Mode? |
|
Topic ClosedOptions
|
| Change to: |  0.0233sec
 0.98
 6 queries
 GZIP Disabled
Time is now: 23rd December 2025 - 11:03 PM |
Quote