Accessing a Draytek Vigor 130 via UDMP

Quick guide in how to setup access to a Draytek Vigor 130 through a Unifi Dream Machine Pro.

SSH into the UDM Pro:

ssh -oHostKeyAlgorithms=+ssh-rsa root@192.168.0.254

ip address add 192.168.2.2/24 dev eth7
ip route add 192.168.2.0/24 dev eth7

from the UDM Pro telnet to the Modem:

telnet 192.168.2.1

ip route add 192.168.0.0 255.255.255.0 192.168.2.2 static

Now you can use a web browser to access http://192.168.2.1/

Advertisement

Getting WAN Ping to work on Unifi Dream Machine Pro UDM

Changes to the UnifiOS have meant that WAN ping does not work any more. You can enable this on the UDM by going into Firewall & Security in the UDM Network Settings. Create a new rule called “Echo Reply” in Internet Local and select “ICMP” for IPv4 Protocol and “Echo Reply” for IPv4 ICMP Type Name. Leave all other settings as default and ensure that Rule Applied shows “Before Predefined Rule”.

Automated updates for Ubuntu 22.04 LTS (in packer etc)

For a long time I have seen that Ubuntu APT has declared it has not got a stable CLI interface and with 22.04LTS that has become a thing. If you try to a automate apt -y upgrade after an update your command will never complete as it will pop up a dialog window asking you which services you want to restart. Not very friendly for automation.
Now I don’t know if this the right way to do it, but it works for me in my homelab. What we do is leverage unattended-upgrade and change the settings before and after we run this command. By default unattended-upgrade is set only to apply security updates, something you want right. However, when you are creating a template usually you want all the other updates and patches that go with the default setup of your distro. So this is how I do it under packer with a shell script:

#!/bin/bash
sudo apt -y update
sudo sed -i '/${distro_codename}/s/\/\//  /g' /etc/apt/apt.conf.d/50unattended-upgrades
sudo unattended-upgrade -d
sudo sed -i '/${distro_codename}-updates/s/"${distro_/\/\/"${distro_/' /etc/apt/apt.conf.d/50unattended-upgrades
sudo sed -i '/${distro_codename}-proposed/s/"${distro_/\/\/"${distro_/' /etc/apt/apt.conf.d/50unattended-upgrades
sudo sed -i '/${distro_codename}-backports/s/"${distro_/\/\/"${distro_/' /etc/apt/apt.conf.d/50unattended-upgrades

We use sed to uncomment all the options, run unattended-upgrade and then revert the change. This is because we don’t want to have images built from this template to be automatically upgrading everything. If you really want that, just remove the sed lines after the upgrade command.

YMMV.