View Pi-hole on UC-CK 0.13.6
# Instructions for installing Pi-hole 4.2 on UniFi CloudKey Gen 1 (UC-CK) running firmware 0.13.6 | |
# Pi-hole will need to be completely re-installed after every FW update or if CloudKey is reset to defaults. | |
# Verify UC-CK is running firmware v0.13.6 (or later) before installing Pi-hole. If not, do: | |
ubnt-systool fwupdate https://dl.ubnt.com/unifi/stage/cloudkey/firmware/UCK/UCK.mtk7623.v0.13.6.7ad551e.190225.0939.bin | |
# UC-CK firmware v0.13.6 downgrades UniFi Controller to 5.10.17. Upgrade to 5.10.19 with: | |
cd /tmp | |
wget https://dl.ubnt.com/unifi/5.10.19/unifi_sysvinit_all.deb | |
dpkg -i unifi_sysvinit_all.deb |
View ERL GF Commands
set firewall all-ping enable | |
set firewall broadcast-ping disable | |
set firewall ipv6-name WANv6_IN default-action drop | |
set firewall ipv6-name WANv6_IN description 'WAN inbound traffic forwarded to LAN' | |
set firewall ipv6-name WANv6_IN rule 10 action accept | |
set firewall ipv6-name WANv6_IN rule 10 description 'Allow established/related' | |
set firewall ipv6-name WANv6_IN rule 10 state established enable | |
set firewall ipv6-name WANv6_IN rule 10 state related enable | |
set firewall ipv6-name WANv6_IN rule 20 action drop | |
set firewall ipv6-name WANv6_IN rule 20 description 'Drop invalid state' |
View Pi-hole whitelist.txt
raw.githubusercontent.com | |
mirror1.malwaredomains.com | |
sysctl.org | |
zeustracker.abuse.ch | |
s3.amazonaws.com | |
hosts-file.net | |
clients4.google.com | |
clients2.google.com | |
s.youtube.com | |
video-stats.l.google.com |
View config.worky
firewall { | |
all-ping enable | |
broadcast-ping disable | |
ipv6-receive-redirects disable | |
ipv6-src-route disable | |
ip-src-route disable | |
log-martians enable | |
name WAN_IN { | |
default-action drop | |
description "WAN to Internal" |
View config.noworky
firewall { | |
all-ping enable | |
broadcast-ping disable | |
ipv6-name WAN6_IN { | |
default-action drop | |
rule 10 { | |
action accept | |
description "Allow established/related" | |
state { | |
established enable |
View config.boot for Google Fiber + TV + ER-POE
Moved to: https://github.com/stevejenkins/Google-Fiber-EdgeRouter-Configs |
View unifi_ssl_import.sh
# MOVED TO https://github.com/stevejenkins/unifi-linux-utils |
View upgrade_unifi.sh
# MOVED TO: https://github.com/stevejenkins/unifi-linux-utils |
View UniFi.service
# MOVED TO: https://github.com/stevejenkins/unifi-linux-utils |
View UniFi
# MOVED TO: https://github.com/stevejenkins/unifi-linux-utils |
NewerOlder