 Tom here from Warren systems and unified network application seven point four point one five six was released I loaded it on May 17th. We have quite a few clients on here It's a multi-tenant server that we have today is June 4th of 2023 and none of those sites have any issues Any of the issues I'll be talking about aren't bugs their features because you make what he said to change the way They do a few things and that's going to be some of the stuff I'm going to talk about here They did add or adds the wrong word bring back the feature to move a Adopted device to a different site they call it add because they added it to the new interface But reality is we have that in the old interface and the old interface with each subsequent upgrade including this one Becomes less functional as they don't really want you using that one But I had to use it for things like moving things to one of the different sites If we'd adopt something on my office and move it to a client site Well, we had to use it they finally put it in the new UI the open VPN server We'll talk about that being good and weird the way they implemented it So we'll get to that in a moment and then we're gonna talk about how they made VLANs more confusing And this is an aggravation to me because one of the big selling points of Ubiquity of the Unify platform is being able to say hey This is how the VLANs work and it worked for a long time in a way that is slightly different enough But I think easier than the way you would maybe label a trunk port in Cisco VLANs are one of those things that people always Struggle with and I was just always happy that you know if I made it easy And now they decided to do something weird and are going to make it more confusing So I have to probably do an updated dedicated view video on how to do VLANs on the new after 7.4 version of Unify it's not really gonna change anything in terms of if you're already set up and you just move from a previous version to the 7.4 but the way you do a new VLAN going forward my old videos or any of the old documentation Is not gonna match and I don't know why they did this because they had it so simple So let's dive into a closer look at the changes they made here Now I'll be leaving a link to the full release notes here And we're gonna talk more hands-on about open VPN and port profile changes But there's one little thing that I don't think should be overlooked because this will save people a lot of time And it's reserving the fallback IP address of 192.1681.20 DCP leads which is used when the unified devices fallback address and This is something that where if you have a device that's having trouble reaching the network that it's supposed to be on the DCP server usually is just not available or whatever the problem may be it will default to a IP address of 192.1681.20 But if something already grabbed that address now you have an IP conflict when you maybe get this thing back online or the Networks reconnected together I think this is just gonna be a big trouble shooting time-saver for people and it seems minor But I think this is probably something that people will probably run into more often than you may realize Now let's jump over to our unified dream machine here. We're gonna go over the settings We're gonna go to teleport and VPN and I have the wire guard VPN server set up Actually, I set up two different wire guard VPN servers Let's go create a third if we want or we can go here and say let's create a open VPN server So we'll call this test open VPN. So we finally have open VPN server. It doesn't have a default ports We have to choose it. So this is kind of cool. I don't have to leave it at default It'll create the rule automatically in a system I can then if I want let it pick the network or I can auto generate choose or type in the network I may want for the intermediary network that open VPN will connect the devices to Then we have different radius profiles if you wanted to use more than one that way you can have different user Bases, but let's go ahead and apply these changes here and set this up We create open VPN server again, right? No, you can only create one So even though you can create multiple wire guard. I know wire guard doesn't have a traditional Client server type of setup, but you can create more than one wire guard instance You're only allowed to create one open VPN server instance Something else of note if we go over here to our test open VPN and we can add users and manage them here That's great And just manage them through the radius in the back end if we download the configuration file Can we look at the settings in here? You'll actually notice that it only has protocol TCP I'm really not sure why they chose that that is an odd choice to me That is not the most efficient way to do open VPN You can Google and head over to open VPNs Documentation and read why to get more in depth, but UDP is a more efficient way to do this now Even in a manual settings. I don't see any way to fix that problem either So I thought this was kind of an odd choice that they forced this even when you're choosing the port It doesn't give you an option whether you want TCP or UDP if someone knows why they did that leave that in the comments down below Now I see I want to talk about if we go to a switch and we go to the ports and we pull up the port manager Which I think looks great to accept. This is where the confusion comes in There's no more all option on the network We have the primary network of dot three then cameras CG NAT and other networks I can choose or none, but there's not a all like it was before to Essentially call this a trunk port now when I choose dot three as a native It actually will send all of these other because dot three is what we call our default Then we have this new option called traffic restrictions What this allows you to do is select to block all or the block these specific networks Like maybe I want these networks not to go across here So we're gonna allow dot three and any network that doesn't match these names or we can go over here to allow and we can Say allow all these networks or we can you know scroll through here And you're kind of seeing one of the problems I have with it from a UI design is I have a lot of networks And if you are someone who has a lot of well a lab subnet for example with all these options This is just the tedious way to do it and yes, I can do things like this But you can see from a UI element I don't know why they did it this way they could have just expanded this and made it a lot easier Maybe a larger pop-out window. I hope the UX designers grab on this and go Hey, I guess we could probably do a better job on that But I think they made this a lot more confusing when they did it this way because there's so many tutorials out there that have The all in it the documentation says this to in all these not just my videos But many people who've done these videos and now they've kind of thrown that out for reasons I can't completely understand I guess it's to make a more granular control option here for restricting certain Networks that go across and are essentially grouped together or trunked over to another network So really kind of an odd design But I'll do an updated video that kind of covers how to set up networks on unify and make this may be a little bit more clear But nonetheless, I'm not exactly sure why they made that change once again If you have thoughts on a good reasoning for this leave them in the comments down below Now two more features I want to comment on but I didn't really have time to test but Cody from MacTown Com Networks you probably watch his videos as well if you're looking up unify things He did show this is the ability to take a device that's assigned to a specific SSID and assign it to a different network I thought this was kind of a neat feature I just didn't have time to set up my lab with my UDM Pro and a Wi-Fi on it And we don't deploy this commercially to any customers that we support on contract There for I didn't have any real testing to do with this But it looks like a pretty interesting feature same goes for the hot spot now one thing I will admit and I've talked about this before as new data becomes available I'm always willing to change my mind and new data or I should say new updates have become available for the unified dream machine series So yes, I am of course changing my mind from the previous videos that are now still getting comments from a while ago Should you buy a unified dream machine and offering my insights on that or what I thought the shortcomings were as those shortcomings have been Fixed such as adding an open VPN server and wire guard support and hopefully soon They'll have the ability to site to site with wire guard right now It's only IP second open VPN But I feel the rest of that's probably on the roadmap to bring it back to being what I would consider a normal basis for firewalls This is common features and many other firewalls I don't know why unified took a long time to come around to this But hey, they did so here we are and I'm gonna be excited to do an updated review on that And of course I'll also do an updated like comparison if you will between PF sense and unified dream machine So in the lab in a homelab environment It's a really popular choice people have between the two of them and they want to know what the differences are Therefore, I want to make sure I cover those very concisely Leave your questions down below for that upcoming video to make sure I give as many of them answered because my goal is ultimately to Make it easy for you to understand and make those choices informed based on my experience with them Now we do do a lot of Consulting when it comes to these unified systems if you want to hires for consulting head order website Lawrence systems calm click that Hires button at the top. We've helped many people set up the unified dream machine and related devices So my team is really familiar with them We just don't have any that are under contract support that I can just log into and take a look at all the time Is why I mentioned I didn't really have as much testing on there Nonetheless love hearing from you head on my forums for more into discussion reach out to me on all the Different socials like and subscribe because it really helps out the channel and thank you