Trying to set up a new unifi network but this time I’d like to use qualified domain name and not ip of the self hosted controller as i had issues tranferring controllers in the past to a different vm with different ip. i understand that I should not adopt devices over the internet, so i’ll adopt them internally. This is how i understand I should do it:
- in pfsense in dns resolver make an entry and set host override for say unifi.something.net to point to say 10.10.10.10 where my controller will live.
- ssh into unifi devices and do set-inform http://unifi.something.net:8080/inform
- i should see the device in the controller now
now if i want to deploy this device in my friends house,
- i need to own the something.net domain (say i do)
- and if i want to use say cloudflare, make the unifi.something.net point to my public ip address (it can’t be proxied by cloudflare right?)
- in pfsense i need to forward port 8080 to the ip of the controller, in this example 10.10.10.10 port 8080
- do i also need to forward the stun port?
- is that a secure way of doing this? i will not be exposing the web management to the internet.
does that sound right or did i mess this up?
