Now we need Unifi network to allow setting the WAN port to not have a gateway so we can automatically assign a gateway with OSPF. At least in our configuration, that is the main benefit of OSPF, failover routing. Hard to do that when a default gateway has to be set on the WAN.
Have you ever heard of a successful setup? I already have bad feeling so don't want to spend time on it if it's never been done by anyone successfully...
@@hz777 doing it with pfsense using two IPsec VTI tunnels. I have a client that I configured with a backbone area, a NSSA area receiving a external route and a summary route, and a TSTUB area that just publishes itself to the backbone.. works but there is a delay in the route change even with BFD.. so I'm now using BGP and pfsense is playing much nicer.. I wonder how Unifi would behave in a similar scenario
@mcury85 Just did a quick test. It works. Unexpectedly smooth and fast configuration! To make it work, the VPN type needs to be route based, instead of policy based. I will upload a video about it next week.
Now we need Unifi network to allow setting the WAN port to not have a gateway so we can automatically assign a gateway with OSPF. At least in our configuration, that is the main benefit of OSPF, failover routing. Hard to do that when a default gateway has to be set on the WAN.
how i do ospf for 60ghz antenna and 5ghz as a backup using ospf?
waiting on pfsense ospf/bgp from you :)
Yes, it's in my plan, but backlogs are piling up...
Can you perform the same test, but running OSPF over two ipsec tunnels ?
Thanks
Have you ever heard of a successful setup? I already have bad feeling so don't want to spend time on it if it's never been done by anyone successfully...
@@hz777 doing it with pfsense using two IPsec VTI tunnels.
I have a client that I configured with a backbone area, a NSSA area receiving a external route and a summary route, and a TSTUB area that just publishes itself to the backbone.. works but there is a delay in the route change even with BFD.. so I'm now using BGP and pfsense is playing much nicer.. I wonder how Unifi would behave in a similar scenario
I meant a success story by using UniFi current gateways... When I have time, I may try it but not very soon.
@@hz777 not yet, i want to test in a lab before deployment but can't emulate unifi devices in GNS3.. so I watch your videos :)
@mcury85 Just did a quick test. It works. Unexpectedly smooth and fast configuration!
To make it work, the VPN type needs to be route based, instead of policy based.
I will upload a video about it next week.