Just set up a UDM pro to replace a really old Cisco 881W and had some initial thoughts on it :-
- The firewall configuration is more than a little clunky; the version I was using still seems to require the legacy interface to configure IPv6 firewall rules. Plus configuring a set of IPv4 rules and a seperate set of IPv6 rules added to the clunkiness – why not allow tcp any to ${addresses} eq ssh rather than repeat the same rule with different address types? Anything to keep firewall rule sets simple is good (but I deal with another firewall that has over 200 rules).
- Whilst we’re on the subject of the firewall, it would be nice if the firewall supported the “apps” identified in the traffic management; not really an easy thing to do, but a firewall relying on port numbers is a bit 1990s to those of us used to next-generation firewalls.
- Device identification is just a little bit rough; to be fair I’m using a separate DHCP server. But to identify a Linux container as a Windows PC is more than a little off! I had to check that my virtual Windows 10 machine wasn’t actually running when I first saw this.
- The topology diagram is all very well but very boring if you’re not using all Ubiquiti gear. Not everyone is going to replace all their switches just to get this to work straight away – I have three switches not counting the ethernet-over-power devices that also count as switches. It would be handy if the UDM would at least go to some effort to identify third-party network devices.
- Oh, and ssh access to the command-line is … confusing. The gooey implies that you set up a password and a username, but it seems that whatever the username you use it really only works with the user root. And the username you supply isn’t contained within /etc/passwd on the device.
Oh! And requiring access to the cloud to generate the first admin (“owner”) account could well be problematic. Apart from the obvious problem of allowing the Cloud admin-level access to a firewall – something the more paranoid may regard as a killer misfeature, what happens if something goes wrong during the creation of a cloud-based account?
And having SNMP mentioned within the gooey but requiring command-line “bodges” (from here) to actually get it running is not acceptable. Strange that such a feature isn’t supported on a network device!
The date of 1066 is often presented to us as the end of Anglo-Saxon rule and the start of (Anglo-)Norman rule. Well that’s not wrong as such, but there is another way of looking at it. If you look at the kings both before and after The Conquest, there were more similarities than you would expect.
Harold Godwinson (the last crowned Anglo-Saxon king of England) was the son of Godwin who had been made the Earl of Wessex by Cnut the Great (a Dane) and Gytha Thorkelsdóttir a Danish noblewoman related by marriage to Cnut the Great. So he was more than a little Danish.
And if you look at his predecessor – Edward the Confessor, he himself was the daughter of Emma of Normandy who herself was descended from Danes with a French accent (i.e. the Normans). And Emma was a relative of the conqueror William.
So whilst it is quite right that 1066 was regarded as a significant date for the country with some very significant changes to law and language, in terms of the monarchs it wasn’t much of a change at all – they were pretty much all related to each other.
The Highway Code changes that went into effect on the 29th January seems to have caused a bit of a palava amongst drivers. Except this is probably a noisy minority as most are either :-
The majority are either completely oblivious to the changes or assume that nothing significant is changing (and they’re not entirely wrong).
And the majority of the remainder are probably accepting of the changes.
When you come down to the changes, they’re mostly fairly minor. The biggest change is making explicit a hierarchy of priorities based on the vulnerability of road users – pedestrians are the most vulnerable so have the highest priority, etc. Funnily enough very little protest against that has been heard, although some of the other objections do indicate an unconscious bias in favour of driver priority; perhaps assisted by the widespread myth that motorists pay for roads. Interestingly whilst there a number of changes for cyclists, these have attracted very little attention – it seems that Highway Code changes are only controversial when they might inconvenience car drivers.
The most noise has been about the change requiring motorists to allow pedestrians to proceed when waiting to cross at a junction – for example when turning from a major road into a minor road, the motorist should wait to allow the pedestrian crossing that minor road. This is not as big a change as it seems as motorists were already required to wait when pedestrians were already crossing. What happens when a pedestrian doesn’t choose to cross? Presumably because they were wool-gathering, or their assistance dog is trained to wait until the road is clear. Will this result in permanently stuck motorists causing city-wide traffic chaos? Well, “giving priority” doesn’t mean “wait forever” – you would stop, wait for 10s or so, and then proceed slowly.
Those protesting make a big fuss about how stopping before turning may result in them being rear-ended by other motorists who aren’t expecting traffic to stop. There’s two problems with this – motorists already stop at turnings to allow pedestrians to cross, and motorists should already be prepared for vehicles in front of them to stop unexpectedly. Fact is, in every accident where a car is rear-ended, the motorist behind is the one at fault.
Lastly there is the new rules regarding cyclists – specifically the rule allowing cyclists to ride in the centre of the lane. Funnily enough this isn’t really new although it wasn’t explicitly stated before – there was never a rule that cyclists had to segregate themselves into the gutter risking life and limb risking the gutter pot-holes. But you would imagine from the reaction of some drivers that this new rule was allowing cyclists to use shotguns against car drivers they’ve been so up in arms about it. It is not as if they are supposed to do it all the time – just on slower roads and to increase safety.
But no, these drivers imagine roads are there for car drivers exclusively and anything that inconveniences them must be prohibited. There are special roads like that – motoreways.