I know how to configure VPN on an Edgerouter via ssh, but not a USG. For some reason the unifi app is failing when I try to change the LAN IP range from 192.168.1.0/24 to [my Class C/24]/29, and I suspect this could be solved via ssh configuration. Any unifi.app solution to modify that setting could work too. Ideally I’d turn off the USG’s DHCPD server too, and just let the existing dhcpd server serve IPs to any connecting VPN clients. Any helpful pointers appreciated! thanks!
EDIT: since 123.456.789.0 was being taken *literally*, I’ve changed it to [my Class C/24]
Hello! Thanks for posting on r/Ubiquiti!
This subreddit is here to provide unofficial technical support to people who use or want to dive into the world of Ubiquiti products. If you haven’t already been descriptive in your post, please take the time to edit it and add as many useful details as you can.
Please read and understand the rules in the sidebar, as posts and comments that violate them will be removed. Please put all off topic posts in the weekly off topic thread that is stickied to the top of the subreddit.
If you see people spreading misinformation, trying to mislead others, or other inappropriate behavior, please report it!
I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.
Thanks for the attempts, but focusing on the Class C is missing the point. I just don’t feel like publicly divulging my Class C /24 4-octet set. ;-p
Surely the USG isn’t hard-coded to ONLY allow the limited “private” ranges!! ??? I have had my Class C set up internally for ages, but hide it behind NAT for now. It’s been working just fine on my EdgeRouter Lite for years, but something went wonky with that router recently, so I put my old spare USG in its place, and thought I’d be able to configure everything the same *and* have remote UniFi access to the USG (which I didn’t have with the Edgerouter).
According to https://quizlet.com/544969436/google-it-networking-week-2-part-12-flash-cards/ your IP number is 32 bits (4 bytes) divided into four octets, each octet can represent any number from 0-255 and are written in dotted decimal notation.
Ex: 12.30.56.78 valid IP address
Ex: 123.456.789.100 invalid IP address because the middle two octets consist of numbers higher than what 8 bits can represent.
Not an expert but this maybe help you.
As far I know There are several private IP number ranges that are reserved by IANA.
10.0.0.0 - 10.255.255.255 Class A
172.16.0.0 - 172.31.255.255 Class B
192.168.0.0 - 192.168.255.255 Class C
I have never seen 123.xxx.xxx.xxx range being used. The ranges above have been documented in RFC 1597 and RFC 1918. These private IP address ranges are not routed in the Internet and can be used without registration in any number of private networks .
I have the same problem. No matter what I do, the USG insists on serving a 192.168.x.x address. I turned off “auto” on several features, and manually set the IP for the VPN server, and the internal range to be my hidden (currently unrouted public) subnet. I even turned off the USG’s DHCP server, and set it to relay from my network’s DHCP server. No dice. Let me know if you find a solution.