I want to setup a expandable home network with PFsense , 10gb networking and a wireless AP.
I was thinking about getting a Netgate XG-7100 with a Unifi Pro AP. The problem is I learned from one of lawrence videos, I can’t use an RJ45 SFP converter to connect my 10gb Imac to my XG-7100.
If you are looking at Unifi I have the impression you have to be all in, while the GUI looks cool, once setup you don’t have to use it that much.
I use Netgear switches, they have a terrible GUI but they do the job and are cost effective. My TP-Link EAP 245 access point is great, has some good features.
If your only criteria is 10G then any enabled equipment will do the job.
You need to figure out what you want to do on your network then read the manuals to see if the kit can do what you want, otherwise you have some dead weights.
You can run the controller software on any computer if you want – a real simple way is to run a docker image. To configure the ACpro it needs the software to provision the device and then you need the controller software to setup the networks etc. It sounds kind of confusing at first but it works well in the end.
As mentioned I have the TP-Link EAP 245 AP it works well in my scenario, a basic home.
However, you can also setup a management controller in a VM or you can managed the AP independently without it. If the controller was to fail, the AP continues to simply run but you won’t be able to configure it.
I have blocked it from communicating outside to the WAN, it just means I am not notified of firmware updates and the cloud controller doesn’t work.
You are correct that I believe the controller software only needs to be run during configuration.
I’m also aware there was a report of firmware calling home. I’m not sure if the calling-home feature still exists since I believe most of the code was removed however there were well published methods for blocking unifi at the firewall or router level to prevent this. There is always the possibility the controller is calling home in a yet undiscovered manner, however I’m fairly certain users would have caught this by now since the last call-home feature was discovered within days. In terms of running the controller software – if its setup and running within a VM or docker – it just runs as a service in the background. You’d have to kill the service manually. Honestly in my opinion the Unifi controller software seems very unobtrusive and it works pretty well particularly if you have a wired ethernet backbone.