Official TM UniFi High Speed Broadband Thread V42

Lowyat.NET forums

Lowyat.NET Kopitiam Garage Sales

Lowyat.NET Rules and Regulations FAQ Help Search Members

Welcome Guest ( Log In | Register )

Lowyat.NET -> Networks and Broadband

Bump Topic Topic Closed RSS Feed

5 Pages « < 2 3 4 5 >Bottom

Outline · [ Standard ] · Linear+

Unifi Official TM UniFi High Speed Broadband Thread V42, READ 1ST PAGE FOR RELEVANT WIFI INFO!

views

BenYeeHua	Sep 9 2024, 04:17 PM Return to original view \| IPv6 \| Post #61
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(OlgaC4 @ Sep 9 2024, 03:40 PM) As i mentioned the feeling is heaven and earth. You will notice it immediately when you know what to look. Just by loading lowyat.net you can see feel the different. Different dns you will notice different loading time. Heck even ipv4 and ipv6 you will notice it. That is why i stop using ipv6. I just preloading game, and using SG DNS just getting 1MB/s speed lol. Removed it and back to normal. Second times already, aiyo. That's why I kind of hate ISP blocking 8888, there is not much MY DNS and popular DoH/DoT server that can give correct MY CDN IP address, using SG DNS will getting kick to SG server and facing throttling.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 9 2024, 04:32 PM Return to original view \| IPv6 \| Post #62
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(TongCN @ Sep 9 2024, 04:22 PM) TM called me regarding about the SWU plan but he didn't do homework ? My current plan RM139+RM30 with naming 300mbps special edition (VAR +UPB) but actual speed is FSU 2023 500mbps He offering me same price same plan but will upgrade 800mbps later. Then later he check again see that new plan actually cost RM219/month and halt with me. Say will check with management again :\ However, it does still come with 6 months waiver. There is a lot of UniFi customer(>50% of Malaysian, you know), so it is fine to make mistake, should be he looking at another customer's data while talking with you lol. Or the person that write batch processing failed to handle those special plan case, so this happen.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 9 2024, 06:09 PM Return to original view \| IPv6 \| Post #63
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(TongCN @ Sep 9 2024, 04:48 PM) Lol... but i wish to lower down my cost though, haha So guess i will see whichever cheaper first Update: So the guy call back and give me this offer SWU 4.0 Option 1 : 500mbps RM139 with 6 months waiver TV pack (Ruby) RM30 without waiver So it's (139 * 18) + (30 * 24) = RM134.25 prior SST / month Option 2 : Everything same price but only 3 months waiver with speed upgrade to 800mbps (RM139 * 21 ) + (30 * 24) = RM151.63 prior SST / month Guess i should go opt for other ISP ? Depend, the good side for UniFi is fast repair and 99% uptime, you hardly seek those benefit from others. If you really need stable oversea high speed, TM ISP + VPN is always the best solution, else, moving to SG which is where the server located, lol. For low cost, guess only Time? But Time downtime is not during midnight la, 99% of my UniFi downtime maintenance is midnight, and it take 1-2 hours only. This post has been edited by BenYeeHua: Sep 9 2024, 06:11 PM
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 10 2024, 10:03 AM Return to original view \| IPv6 \| Post #64
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(hazairi @ Sep 10 2024, 08:48 AM) If you're not that heavy downloader and household not that big, 300mbps package seems damn worth it. Like me, my household is big and all of us eat bandwidth for meals, so, really prefer the 1Gbps Yes, 300M bare min for >1 person, YouTube 4k video bite 100M already lol, but yes, bottleneck is at 5G WiFi la. Lucky most ppl use tiktok instead of YouTube, so the video bitrate kind of low.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 10 2024, 07:57 PM Return to original view \| IPv6 \| Post #65
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(hazairi @ Sep 10 2024, 03:30 PM) Ooh ya correct2. 2.5Gbps is only from the WAN Unless you need >1Gbps for your steam PC etc, having 2.5G WAN should be enough, the rest that left over will be works like QoS, which assigned to whole WiFi and other LAN port. So, when you having full speed downloading for your PC, no need worry about all speed used up, as there is like 100-300 Mbps left for your WiFi device. QUOTE(PRSXFENG @ Sep 10 2024, 05:20 PM) Yeah it's a service to protect from some malware it is certainly not a replacement for an antivirus consider also Quad9, 9.9.9.9 they also offer Malware Protection but personally, adblocking is a better tool at preventing virus in the first place so, an adblocking dns like Adguard Public DNS is an option Yes, just like DDNS, not gonna block them all on real-time, as malware just change domain as fast as they can, lol. This post has been edited by BenYeeHua: Sep 10 2024, 07:58 PM hazairi liked this post
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 10 2024, 08:17 PM Return to original view \| IPv6 \| Post #66
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(hazairi @ Sep 10 2024, 08:12 PM) Anybody here who is on 1Gbps package can get 999Mbps download speed on speedtest? Because how's browser is being testing(either HTTP or websocket, you can't really test accurately, because it is not accurate enough. Better running the app. https://www.speedtest.net/apps Can switch to single-thread if you really wanna test how real world is, browser mostly are single thread HTTP connection. This post has been edited by BenYeeHua: Sep 10 2024, 08:18 PM hazairi liked this post
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 10 2024, 08:25 PM Return to original view \| IPv6 \| Post #67
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(Oltromen Ripot @ Sep 10 2024, 08:21 PM) anyone knows if Unifi Plus Box can be repurposed with mainstream linux distros? don't want those restrictive distros with limited OS packages. eager to use it for mapping unsecured DNS from dhcp LAN to secure DNS, through IPsec tunnel.. i don't think Play store have app capable of performing the above intent upon every reboot (after power restore). Normally those device got left the JTAG or dev port for connect ADB, check youtube or yourself la. But I think it need bl unlock, which break DRM L1.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 10 2024, 08:50 PM Return to original view \| IPv6 \| Post #68
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(wata @ Sep 10 2024, 08:47 PM) i got the same problem too Now, yes, lucky it is single player mobile game, lol.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 10 2024, 09:14 PM Return to original view \| IPv6 \| Post #69
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(Oltromen Ripot @ Sep 10 2024, 09:07 PM) baaah, i don't have capacity or patience if having to pry open and pin here and there. no time and no conducive working@home enviroment that can support such enthusiastic endeavour. but it is such a waste that i have 2 more V1 and V2 lying idle in store room. would have been good if there's app that can do the pony tricks i want, but it will be tricky if needing to relaunch apps again and again, especially when i am away. (i have a 2nd V2 being used for Android gaming purpose in kids' bedroom.) If the link is for your model, seem easy, just might time wasted lol.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 11 2024, 11:31 AM Return to original view \| IPv6 \| Post #70
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(sgpdsmss @ Sep 11 2024, 11:27 AM) so walk in tm for recontract? or switch line ..wait tm to counter offer ? thanks .. Yes, walk in and ask is best. I also got email telling recontract give 3 month free, but not SWU 4.0 level la.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 11 2024, 12:58 PM Return to original view \| IPv6 \| Post #71
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(Oltromen Ripot @ Sep 11 2024, 12:37 PM) » Click to show Spoiler - click again to hide... « got too involved as i am working/worked on DNS proxying the past few nights. an endeavour which itself involved research purposes, with the achieved outcome is obviously meant to facilitate future research purposes. so far i have DoH working in iphone, ipad, windows, and linux. android unfortunately requires DoT, which i am avoiding because its default port tcp/853 can be detected and thus subject to blocking - and worst, hijacking. -- i'm ignoring cost of creating and cost of deciphering DNS wire payload, which is applicable to each below. DNS no udp/53 protocol penalty DNS-over-TLS tcp/853; cost of establishing TCP session, cost of negotiating secure TLS session, cost of tearing TCP session DNS-over-HTTP/1, DNS-over-HTTP/1.1, DNS-over-HTTP/2 tcp/443; cost of establishing TCP session, cost of negotiating secure TLS session, cost of parsing HTTP request and response, cost of tearing down TCP session DNS-over-HTTP/3, which runs over QUIC udp/443; cost of negotiating QUIC session, cost of parsing HTTP request and response https://www.f5.com/glossary/quic-http3 -- instead of using DoH-proxy reinvented by people out there, i decided to use nginx as my DNS-over-HTTPS forwarder. no need to reinvent the wheel. immediately can support all HTTP/1 to HTTP/3, tcp and quic protocols. and specifically choosing nginx; because i can hide my DNS-over-HTTPS entry point behind normal web hosting. Unless one knows the exact https://what-is-my-exact-name/, you shouldn't be able to identify it nor use it. Hiding in plain sight. -- (oh, yes. i'm bragging.) Ya, Win 11 one DoH is the best, got keepalive, so all browser's auto supported get ECH, including those Electron(chromium) apps. https://tls-ech.dev/ Android too random, all use like UCweb or TBS(Tencent) webview, many even not following DoT config lol. Even you set the DNS to 8888 by DHCP, it will fallback to China DNS as it like... iOS enforce safari webview, so it just getting safer when webview updated with iOS. --- Anyway, it is funny that you had to redirect/hijack your port 53 for Android DNS, else just don't use any China apps, lol. This post has been edited by BenYeeHua: Sep 11 2024, 01:00 PM
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 11 2024, 03:30 PM Return to original view \| IPv6 \| Post #72
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(BladeRider88 @ Sep 11 2024, 03:21 PM) Actually given the current situation, DoT is sufficient for those device that not compatible with DoH I use AdGuard app to protect my phone from ads & implement DoH when i am outside my network. My major concerns is more on ad-blocking as i been using ads free Android phone for many years. DoH is just additional bonus for me. Nothing wrong to refuse as this is everyone's preference. EDIT: I did some research and i come across this https://www.androidpolice.com/android-dns-o...https-mainline/ Maybe you can give it a try? Since it does not involved any apps and it is bake into the system And it means the same, only support CF or Google DoH lol. QUOTE Google DNS and Cloudflare DNS at launch, others may be added in the future. https://security.googleblog.com/2022/07/dns...ndroid.html#fn2 lol, 2 years still only this 2 in whitelist, means DNS provider gonna pay google to get on list them. This post has been edited by BenYeeHua: Sep 11 2024, 03:31 PM
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 11 2024, 03:49 PM Return to original view \| IPv6 \| Post #73
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(BladeRider88 @ Sep 11 2024, 03:34 PM) I quote from AndroidPolice "Eventually, this upgraded system should just work without you having to even worry about which DNS server you might be using. For now, the feature is ready; it's on DNS providers to finish rolling out support for DNS over HTTPS." As per my understanding, it is up to the DNS provider to provide DoH or DoT, nothing to do with the phone as the phone & OS is DoH/DoT ready Better wait for someone setup own DNS with DoH support only, then key in his own custom domain, check did it connect via DoH first, or DoT first. Or simple, key in any domain, wiresharp, see first connection make via DoH or DoT port. Kind of lazy person now, so someone who wanna do a test, go ahead la. BladeRider88 liked this post
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 11 2024, 03:50 PM Return to original view \| IPv6 \| Post #74
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(axxer @ Sep 11 2024, 03:46 PM) Only 2 dns provider will use doh when adding to the Private DNS setting on android, Google dns and cloudflare dns. Google hardcoded to only allow those 2 to use doh. If you want to force dot, use other than the 2. Quad9, opendns, adguard dns etc. Or use third party app that can be specific on using either doh or dot depends on your requirement. Ya, that's my point of view, it should be whitelisted and controlled by Google, I don't think Google will be KIND enough to connect any domain with DoH first, then DoT. BladeRider88 liked this post
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 11 2024, 03:54 PM Return to original view \| IPv6 \| Post #75
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(Hikari Natsumi @ Sep 11 2024, 03:50 PM) is the DoH address it self has E-SNI ? It is pointless, when you know 90% of DNS give you same IP address, so by knowing you are connecting to that IP address, means you are using DoH lol. Except rethink DNS, yes, it is supported by CloudFlare. QUOTE colo=SIN sliver=none http=http/3 loc=MY tls=TLSv1.3 sni=encrypted https://sky.rethinkdns.com/cdn-cgi/trace The only problem left is, did the DoH client can connect DoH HTTP3 with ECH or not, lol. ---- Another solution is, you sign cert with IP address as well, so you can be. https://[2606:4700:4700::1111]/dns-query But the problem is, which custom DNS allow to do this la. This post has been edited by BenYeeHua: Sep 11 2024, 03:57 PM
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 11 2024, 04:17 PM Return to original view \| IPv6 \| Post #76
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(Oltromen Ripot @ Sep 11 2024, 03:59 PM) i confirm my DNS out there is DoH-only, and only Android Secure DNS cannot use it. other OS platforms can use my DoH. I was initially baffled why Cloudflare, Adguard, Google, Quad9 etc etc out there can work while mine can't. Until I stumbled on articles that mentioned Android only support DoH with those 2 providers. and made me realise of course Android appeared worked with any random 3-party DNS out there; because they have both DoH and DoT on same IP address, so it gave the appearance of working (by actually using DoT) while I was expecting otherwise. A bit off-topic, but yes, Google nowadays is not that old "Don't be evil". To collect test data on QUIC, they just letting regular Chrome user use QUIC to Google by default. Then VPx video codec, next is WebP. After success, now they are: JPEG XL? Nope, no one gonna use it, sorry, not gonna support it. But the success of WebP is because it is supported by most browser, then open source/free to use. For now, it is funny to see them fighting with different kind of HDR standard on old JPG or HEIF, instead just drop on JPEG XL and done. So far only Apple one leading, lol. QUOTE(RiriRuruRara @ Sep 11 2024, 04:11 PM) Hi, is the SWU promo still available??? Yes, TM Point pls. PRSXFENG liked this post
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 12 2024, 12:14 PM Return to original view \| IPv6 \| Post #77
Regular Senior Member 1,873 posts Joined: Nov 2010	Thanks, someone, educated rakyat how's important encryption and how easy DNS (blocking) is. But pls, do it with better method next time, thank you.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 16 2024, 09:43 PM Return to original view \| IPv6 \| Post #78
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(kwss @ Sep 16 2024, 12:14 PM) I'm starting to suspect the software used by TM for BGP optimization fucked up. Or they use it wrongly. Now it's clear to me in order to fully utilize all their capacity, they distribute traffic equally to HK, SG, UK and MyIX. Depending on where your traffic gets distributed, latency will go through the roof Confirmed http://[2606:4700:4400::ac40:9561]/cdn-cgi/trace Test using http/1.1, Chrome will recreate a new connection by each time you F5, and it is funny that the colo jumping in between KUL and SIN. If you are lucky, you will get KUL which is fast, else. QUOTE(Nicknamed666 @ Sep 16 2024, 06:06 PM) Is it only me or it feels slow? Accessing bilibili.com is so slow! Since yesterday, but you can workaround it by not using local/nearby server.(CDN within China or Nearby China Mainland) I guess, it is caused by the holiday in China, Mid-Autumn Festival, which also start yesterday, everyone is browsing Bilibili now.
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 17 2024, 12:23 PM Return to original view \| IPv6 \| Post #79
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(heLL_bOy @ Sep 17 2024, 12:00 PM) CGNAT or Public IP all is under load balance via ip range set by TM nothing to do either you are CGNAT or public ip Double confirmed, as I am CGNAT, after saw kwss's post about the low latency, I tested on mine which is 60.5x.x.x, get 80ms. Then reboot twice, get 175.141.x.x, 10ms, much better now. Even IPv6 getting same latency affecting, also drop to 10ms. QUOTE(kwss @ Sep 17 2024, 10:58 AM) Here is the thing. I do not think they have enough bandwidth to begin with. Here's why: If they have enough bandwidth, they don't need to do the TM-HE-Equinix, TM-TATA-Equinix stunt. They could have just stick to TM-Equinix and still milk u-mobile and whoever for their IP Transit charges. Or... Corruption is in play. When this is time for MCMC to stand out and let them talk well to each others like 5G DNB, they still thinking about transparent DNS. Anyways, with 175.141.x.x QoS, this IPv6 of this CloudFlare still jumping in between KUL and SIN, lol. And nope, I can't reproduce it on IPv4, only certain anycast IPv6 facing this interesting routing issues. (Yes, collected a lot of IP that routing to KUL, can use for another long time, sadly don't saw any JHB, only saw HKG lol. ) http://[2606:4700:4400::ac40:9561]/cdn-cgi/trace
Card PM	Report Top Like Quote Reply

BenYeeHua	Sep 17 2024, 12:28 PM Return to original view \| IPv6 \| Post #80
Regular Senior Member 1,873 posts Joined: Nov 2010	QUOTE(PJng @ Sep 17 2024, 12:23 PM) If you notice he keep repeat same comment over and over As i don host game, cctv, or any storage on home that need acces outside I don see any big different speed or respond, torrent for good seed also can max speed 38, 39MB/s Yes, certain users in lowyat do the same, like bot, just ignore them for best. Anyways, after swap to 175.141.x.x, still fine, gonna retest after 7 PM which everyone at home. For those interested on HKG, here you go. http://23.227.38.33/cdn-cgi/trace CODE traceroute to 23.227.38.33, 30 hops max, 52 bytes payload 1 192.168.1.1 * RFC1918 1.32 ms / 1.13 ms / 0.51 ms 2 100.118.127.254 * RFC6598 1.08 ms / 5.31 ms / 4.71 ms 3 10.233.97.55 * RFC1918 1.11 ms / 6.95 ms / 6.47 ms 4 * 5 62.115.46.176 AS1299 [ARELION-NET] 中国香港 arelion.com hnk-b4-link.ip.twelve99.net 177.19 ms / * ms / * ms 6 62.115.143.241 AS1299 [ARELION-NET] 中国香港 arelion.com hnk-b3-link.ip.twelve99.net 51.85 ms / 52.51 ms / 52.21 ms 7 213.248.84.113 AS1299 [TELIANET] 中国香港 arelion.com cloudflare-ic-371889.ip.twelve99-cust.net 52.09 ms / 51.53 ms / 55.88 ms 8 103.22.203.231 AS13335 [CLOUDFLARE-AP] 中国香港 cloudflare.com 51.06 ms / 51.58 ms / 51.25 ms 9 23.227.38.33 AS13335 [SHOPIFY-NET] 加拿大安大略省渥太华 cloudflare.com checkout.shopify.com 46.93 ms / 46.63 ms / 46.50 ms (Yes, this is IP only for shopify, you can't use it for others, lol.)
Card PM	Report Top Like Quote Reply

« Next Oldest · Networks and Broadband · Next Newest »

5 Pages « < 2 3 4 5 >Top

Topic ClosedOptions

Change to:

0.0332sec

0.76

7 queries

GZIP Disabled
Time is now: 14th December 2025 - 06:18 AM

All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)

Removal Request

Powered by Invision Power Board © 2025 IPS, Inc.