Identify the issue by checking signal stability and testing connections repeatedly.
Identify the issue by checking signal stability and testing connections repeatedly.
Hi there, I just moved into my new office last month and configured a private network. The issue is that connections are often unstable—not just mine, but across the entire building. Background: My friend set up his cafe’s network using an Ubiquity Edge Router X and an AC Access Point linked to the ISP modem. A CCTV unit is directly connected to the ISP modem. The ISP modem’s IP range is 192.168.255.50–192.168.255.100 (fixed), while the Ubiquity Router uses 192.168.2.10–192.168.2.255. So far, customers haven’t reported problems since opening. Possibly because they don’t run sensitive apps. The change: I moved in last January and created a domain network with Win Server. DC DHCP and DNS are hosted on one VM, connected to the ISP modem via a static IP of 192.168.255.52, and linked to a Gigabit router for my private network (no slave instance needed yet since we have under 10 people). Problems: 1) Frequent video calls with clients cause occasional drops and LOL/Destiny 2 interruptions—suspect network instability. 2) Disconnections persist even when accessing servers remotely via RDP, with the whole chain failing. I’m hesitant to tweak ISP or router settings until I confirm the root cause. Any advice on troubleshooting? Here’s a network diagram for reference.
Are there any issues with the CCTV cameras? From what I observe here, you've set up two separate Double-NATs. This could definitely be the cause. Double NAT is often linked to problems in certain situations, especially games. You might try removing a router and switching the Modem/Router to Bridged Mode; that could resolve the problem. However, you'll need a router capable of handling multiple LANs to maintain separate networks.
192.168.255.0 represents network one, which is a single NAT level. Clients on 192.168.2.0 and 10.1.1.0 need to go through another NAT stage: 192.168.2.0 → 192.168.255.0 → Internet, then 10.1.1.0 → 192.168.255.0 → Internet. What you're aiming for is a direct path: 192.168.2.0 → Internet and 10.1.1.0 → Internet. This works best if your router supports multiple LANs and the modem operates in Bridged Mode. Even if this isn't perfect, it can assist with other problems that might arise later.
Consider using direct NAT for a 1:1 setup. You'd need just one router between the ISP and your network. The local IP would match the second router's address, and your public IP would remain static if configured properly. If CGNAT is in place, you'd be limited to a single NAT configuration.
This configuration is quite involved. The Ubiquiti ER-X supports several LANs depending on the ports connected after linking to WAN. EdeOS’s guide will walk you through the process. I apologize if I missed any details. To make it easier, consider placing the ER-X after the modem, using separate switches for each LAN with distinct IP ranges or subnets. Your client devices—like CCTV, workstations, and APs—can connect to different switches. Setting up the modem can be challenging, but keeping the ER-X on a different subnet and assigning it a static IP in the modem’s client list should resolve the issue.
It is! But this is only temporary. We'll be moving out mid year (hopefully) and I don't want to go to the trouble of reconfiguring my private network when we do. Plugin new ISP modem, and done! Sounds so much work for 2-3months' hassle. Not to mention that I might break the cafe's WiFi. Thanks for the insight though! I do have a static IP. Will try putting my server into the DMZ. Thanks!
Consider this approach: you don’t need separate switches for every network segment. A single large Ubiquiti or UniFi switch can handle everything, and you can set up VLANs to organize clients effectively.
Confirm the DMZ is set correctly, meaning both the ISP gateway and the router must connect the server.