Getting a USG with a Spark 4G modem

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › Getting a USG with a Spark 4G modem

MadManwithabox

11 posts

Geek

#271952 3-Jun-2020 12:09

I've a remote location that I have a PC and other equipment and have a 4G modem to connect to.
I need to be able to remotely see how the equipment is working and VPN directly when required.

I have an ERL and Unifi at home so I went with Unifi for compatability and reliablity.
I have an Unifi USG, Managed 8 port switch with POE, Cloud key and AP.
I can get this all working with the spark supplied B315 modem except with the USG
It refuses preventing internet access with the message "Gateway is unable to connect to the Internet"
Click to see full size
It does show some of the IP address detail but no option to proceed.

If I bypass The USG it and connect the modem to the switch, the USG can be seen by the controller but when I try to adopt it, it mandates a firmware update which never completes.

I've tried changingthe LAN to 192.168.10.1 on the controller to avoid a conflict but no change

I thought it may be a DHCP conflict so turned that off on the modem but then everything looses internet.

I know the B315 doesn't support bridging so I asked spark and they suggested a static IP address which I now have but still no change.

When I go into the modem now all the network options are not populated so can't change DHCP.
Click to see full size

Any ideas how I can get this to work?

Please help - I'm ready to defenstrate the USG

RunningMan

8965 posts

Uber Geek

#2497317 3-Jun-2020 12:16

Perhaps continue your existing thread.

Spyware

3770 posts

Uber Geek

Lifetime subscriber

#2497318 3-Jun-2020 12:29

Configure the device in an environment where there is no WAN/LAN subnet being the same conflict.

Spark Max Fibre using Mikrotik CCR1009-8G-1S-1S+, CRS125-24G-1S, Unifi UAP, U6-Pro, UAP-AC-M-Pro, Apple TV 4K (2022), Apple TV 4K (2017), iPad Air 1st gen, iPad Air 4th gen, iPhone 13, SkyNZ3151 (the white box). If it doesn't move then it's data cabled.

hio77

12999 posts

Uber Geek

ID Verified

Trusted

Lizard Networks

#2497325 3-Jun-2020 12:49

That screen in the B315 is the Ethernet WAN. Not LAN.

#include <std_disclaimer>

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

MadManwithabox

11 posts

Geek

#2497352 3-Jun-2020 13:28

RunningMan:

Perhaps continue your existing thread.

Thanks. I didn't resolve the problem on that thread, though I tried the suggestions, and thought it may be the way I asked the question. Also didn't know if I should revive an old thread. Noted for next time.

MadManwithabox

11 posts

Geek

#2497359 3-Jun-2020 13:38

Spyware:

Configure the device in an environment where there is no WAN/LAN subnet being the same conflict.

Thanks but not sure how to do that.

I've unplugged the 4g Moden and tried to adopt the USG but this stalls trying to update the firmware.

I've downloaded the firmware file but can't see an option to upload manually pre adoption

Apart from my home internet (which may conflict with my ERL) and the 4G, I don't know to hook this up for the USG to downloand the firmware required.

chevrolux

4962 posts

Uber Geek
Inactive user

#2497360 3-Jun-2020 13:40

So because you're going to have to deal with double NAT, I would just do the following...

Spark router LAN interface - 192.168.1.254/24 (i think that's default right?)

USG WAN - Set static IP, at say 192.168.1.5/24, Gateway = 192.168.1.254, DNS = 192.168.1.254

USG LAN - Lets use 192.168.10.1/24. Then add your DHCP server, etc

Finally, create a site-to-site VPN between your "main" network (wherever that might be), and the USG on the 4G network. The only thing that might stop that working is an ALG on the Spark router which you should simply turn off. If the Spark router has the option, you could also just set a DMZ to send all traffic to 192.168.1.5 (the WAN of your USG). At the worst, port forward IPsec and GRE traffic to 192.168.1.5.

Now you have access to everything on the remote 4G network, and your "main" network.

Spyware

3770 posts

Uber Geek

Lifetime subscriber

#2497374 3-Jun-2020 13:56

MadManwithabox:

I've downloaded the firmware file but can't see an option to upload manually pre adoption

Apart from my home internet (which may conflict with my ERL) and the 4G, I don't know to hook this up for the USG to downloand the firmware required.

Configure your ERL with a different network, e.g., 192.168.2.0/24, on eth2 and connect USG WAN to that. Routing will then occur and firmware update will work.

Quic Broadband

Move to New Zealand's best fibre broadband service (affiliate link). Free setup code: R587125ERQ6VE. Note that to use Quic Broadband you must be comfortable with configuring your own router.

MadManwithabox

11 posts

Geek

#2497408 3-Jun-2020 14:33

chevrolux:

So because you're going to have to deal with double NAT, I would just do the following...

Spark router LAN interface - 192.168.1.254/24 (i think that's default right?)

USG WAN - Set static IP, at say 192.168.1.5/24, Gateway = 192.168.1.254, DNS = 192.168.1.254

USG LAN - Lets use 192.168.10.1/24. Then add your DHCP server, etc

Finally, create a site-to-site VPN between your "main" network (wherever that might be), and the USG on the 4G network. The only thing that might stop that working is an ALG on the Spark router which you should simply turn off. If the Spark router has the option, you could also just set a DMZ to send all traffic to 192.168.1.5 (the WAN of your USG). At the worst, port forward IPsec and GRE traffic to 192.168.1.5.

Now you have access to everything on the remote 4G network, and your "main" network.

Thanks chevrolux, I've tried that on the USG WAN, putting in the detail but get the error as follow:

I assume I was doing this in the right place?

The Spark Router is at 192.168.1.254 though I think it only allows a DHCP range of 192.168.1.64 to 192.168.1.253. Even using a USG WAN of 192.168.1.100/24 gives the same error though

coffeebaron

6236 posts

Uber Geek

Trusted

Lifetime subscriber

#2497417 3-Jun-2020 14:47

Try

1. Factory reset Spark B315

2. Factory reset USG

3. Set B315 to 192.168.0.254 network

4. Plug in USG WAN - B315 LAN

5. Plug computer into USG LAN

6. Login to USG and check internet is set for DHCP no VLAN

7. Do you have internet out of the USG?

Then on the LAN side of the USG, try to update the USG from the controller.

Rural IT and Broadband support.

Broadband troubleshooting and master filter installs.
Starlink installer - one month free: https://www.starlink.com/?referral=RC-32845-88860-71
Wi-Fi and networking
Cel-Fi supply and installer - boost your mobile phone coverage legally

Need help in Auckland, Waikato or BoP? Click my email button, or email me direct: [my user name] at geekzonemail dot com

Spyware

3770 posts

Uber Geek

Lifetime subscriber

#2497418 3-Jun-2020 14:47

192.168.1.100/24 means IP=192.168.1.100 and subnet mask = 255.255.255.0.

And as explained the USG won't route with 192.168.1.0/24 on both LAN and WAN interfaces. Either change Huawei subnet, if it allows change, or take it home and connect to ERL.

MadManwithabox

11 posts

Geek

#2505100 15-Jun-2020 15:12

Thanks all for the help and replies.

CoffeeBarron's explanation was was simple enough that even I could follow it and get the internet running plus get all the devices updated/adopted (though I think you were all explaining it in the same way, just I wasn't familiar with dark arts of networking to understand).

The modem and equipment is back at the remote site and has been working well so mission accomplished.

Cheers!