I'm planning to step up my WiFi game and after some research I feel a little lost. do have questions.
At the moment with an all in one router (a fritzbox ) and a WiFi range extender the coverage is not sufficient and the extended connection not reliable enough. So I plan to get two wireless access points. That would be all for now, in the future I am thinking about switching to opensense to get vlan support - I'd like to have one for iot devices, one for kids, one for guests.
The questions for now:
If using access points with a software controler (I.e. T-Link EAP653 or UbiquitI U6+) can I just plug these into the router, turn WiFi in the router off and have the access points handle the WiFi?
But IP addresses will still be assigned by the router, right?
I don't want to leave the router WiFi running with the same ssid because this will affect the smoth transition between access points managed by the software controler?
If the software controller is down for whatever reason, will the WiFi still work?
Questions for later:
Will opensense be able to handle vlans for WiFi connected decices or do they need to be configured in the controler software?
Are the access points I mentioned suitable? I want WiFi6, not willing to spend more then double for WiFi6e, max 15-20 devices in the network, no cloud controller, generally I prefer open systems. Any better suggestions for devices?
Answers also to a single question are very much appreciated!
Most standalone APs can be plugged into the router and immediately start working, they'll forward along DHCP requests. You can turn off your router's wifi after they have been configured. For Unifi APs you only need the controller running when you want to manage/update the APs and for stats collection, I only power mine up to check for new firmware updates once a month. Can disable Unifi analytics/telemetry with a config file option too but no way to do it via web UI.
For VLANs you will need to configure the VLANs on Opnsense and the APs. Unifi lets you specify the mgmt VLAN and VLAN per SSID. For my setup I have vlan 5 for work ssid, 10 for mobile devices, 15 for IoT and other things that don't need internet, and 20 for a couple temporary & guest SSIDs.
The Unifi APs are alright but the controller software itself is fairly limited for stats/data, still better than other standard consumer APs I've used though. I've been wanting to try out Grandstream Wifi APs for replacement as most models include a built-in controller capable of managing more than enough APs for my home uses and still have option of standalone controller or cloud managed but it's not priority as my current APs still receive firmware updates,
I've had my TP-Link Omada server go down and I still had WiFi. I would guess that auto AP roaming might not function correctly, but I'm not sure.
I use TP-Link AXE5400 Pros. They're a pretty great bang for the buck. The only downsides are that they don't allow for separate 2.4GHz and 5GHz SSIDs, and they aren't PoE powered.
Unifi ticks most of the boxes you have. Wifi will work without controller and they act as an bridge, so DHCP and other services work as-is, VLAN support is there (if you want to use different SSID for different VLAN then you need a controller) and so on. I have couple of their APs and I've been pretty happy, but that being said, their push for their own cloud-only products and the way they manage updates, longevity and other stuff isn't the best (to say the least). For now it works absolutely great for what I need it, but at the future situation may change with a short notice.
No idea about T-link, but mikrotik devices are interesting. For wifi I don't have any kind of experience, so I can't recommend them, but on paper they seem pretty nice.
Thanks. Yeah people say not so nice stuffed a out unifi and Ideally don't want to,be pushed in somebodies cloud. Mikrotik looks good. Will do some more reading about them. Your comments were really helpful!
if you want to use different SSID for different VLAN
With newer versions of the controller you can actually use PPSK for a different VLAN per password (same SSID), but at the moment you'd be stuck using WPA2.