CHR 7 proxmox VM + Unifi AP weird connecting issue

RouterOS
1

Hi, we’re in process of migrating a x86 mikrotik to a proxmox server with intel quad nic and 3 realtek pcie nic passthrough’ed to the CHR VM, the devices are :

linksys switch

Unifi AP x2

Huawei Modem.

The Issue is : Both Unifi AP offline no matter what i do, but they are pingable, the modem and switch connects just fine.

  • Controller is in home assistant VM addon, with same ip as the home assistant IP
  • Realtek & intel NIC don’t have pcie lane issue, ran this in host for d in 03:00.0 03:00.1 04:00.0 04:00.1 05:00.0 06:00.0 07:00.0 ; do echo "===== PCI $d =====" lspci -vv -s $d | egrep "LnkCap|LnkSta" echo done
  • Both unifi AP’s can be ping’ed
  • Both unifi AP’s telnet failed, connectHandler: Operation timed out
  • Mikrotik Log is showing Unifi AC lite up and then down
  • IP > ARP is already showing correct mac and IP Address of the AP
  • firewall already bypassed both AP Ip’s

Any thoughts? asked gpt but it says i need to use linux bridge instead of passthrough for unifi APs, is this true? sounds a bit messy config-wise… I plan to delegate this to someone else so i’d rather passthrough it if possible to simplify things.. diagram :

diagram
diagram694×573 47.1 KB

2

I personally avoid passthrough unless it’s required. So far the only thing I’ve done passthrough on for my Proxmox servers is the sata controller for my TrueNAS VM. For network ports I haven’t found a need to use passthrough. I just set them up as linux bridges and assign them to VMs as virtio devices.

If I was doing and really high speed routing I might look at passthrough, but I have found it convenient a few times to setup additional VMs on those interfaces for testing or troubleshooting.

As for why your unifi aps are offline, if your controller isn’t the same controller they were previously online with, I think you have to unmanage them from the old controller before moving them. Otherwise you could do a physical reset and adopt them again I think.

Also, besides the mikrotik firewall, don’t forget there is a proxmox firewall option as well, so make sure that firewall is not blocking anything for your unifi controller vm.

3

EDIT : OK its solved, its either one of these

  1. license entering stale period because i forgot to reactivate it, its limited to 1MB

  2. i disabled dhcp from the proxmox host, noticed it after its giving continuous error in log

  3. i enabled ip bindings for both APs in IP > hotspot. it was disabled before

whichever one of those made the AP online again, i think its no 3

now im testing the hotspot functionality, i heard there were some quirks in ch7, i hope its fixed already

CHR proxmox + pcie passthrough to unifi AP = client cannot access the login page