I have a question about wireless devices like shellys at home: I am moving to Ubiquiti this weekend, do you think I should assign fixed ip´s or reserved ip´s for all of them, or any other solution?
Thanks
Hi,
I just reserved mine. Nice and easy with Unifi 
And the device never changes ip? You just take the ip of a shelly for instance, on a given moment, and you reserve that ip on the router?
Exactly that. If you want to group them you can set the reserved IP, tell it to reconnect it and voila - it has a new reserved IP of your choice. You can even lock them to the nearest access point.
What do you mean by “group them”?
Say you wanted them all in order i.e. 192.168.1.10, 192.168.1.11, 192.168.1.12 etc. instead of random
I have to read more about reserve ips, lol.
the reserved ip you give is based on the current ip of the device or its Mac address?
Unifi will base it on the mac address but the GUI just makes it simple for you. Simply turn on “fixed ip” for the device in your list and that’s it.
Thanks a lot. Will do.
By the way, what router do you use?
I am using a USG-3P
Ok, I just ordered the dream router and spent a lot of money in switches and APs 
How many vlans did you configure? I am thinking:
1 - Management
2 - Devices like iPhones and iPads
2 - Devices like smart tvs and Apple TV or android box
3 - IOT with my raspberry and all my devices
what do you think?
Sounds great, I didn’t go the vlan route yet, just stuck all my IOT stuff on a 2.4GHZ only SSID.
At some point I will do that though!
Just remember the mroe config you put in place the more you have to manage. I personally take a less is more approach and DO NOT split any configs out unless I have a real identified need to do so. In your list:
What problem does this solve?
I will begrudgingly agree to separating an IoT only segment if you use Wifi based IoT devices in any volume (which I don’t) so that’s one - your network #3. Then network #1 - your main.
Activate guest segmentation on your Unifi gear and guests will only be able to go to the Internet and can’t talk to anything else. That problem is solved.
That said, I personally don’t see any reason for your other 2 networks. Either put that stuff on your IoT network or your main network. Yes configuring stuff on Unifi is easy - but don’t do it just because you can. Every network you create creates more configuration on your other gear to accommodate the segmentation. That stuff is cumbersome and sensitive to misconfiguration in ways that’s hard to notice unless you do this stuff every day and I would offer that a misconfigured ‘strong’ configuration is as bad as a well configured ‘weak’ configuration from a security and performance perspective.
1 Like
This is very good advice indeed. I must say I am just studying all the possibilities for now. I might start with 2 networks and see how it goes. Although I believe a 3rd with iot devices that only need to communicate locally, makes sense…
It is a good idea to have a maintenance vlan, where your Netgear is placed, so the vlans are protected from unwanted altering.
But be careful with too much segmentation.
Broadcast and multicast do not travel between the networks, unless there are made special rules for those cases.
Broadcast and multicast are often used for discovery of devices on the network.
Regarding fixed or reserved IP, then keep in mind that a reserved IP is still just a DHCP address, which means your DHCP service have to be working for it to work and your devices use time and ressources in communicating with the DHCP service, which can have quite an impact on battery powered devices.
1 Like