Remote Access EAP225
Remote Access EAP225
I have an EAP225 at my camp. It is hooked directly to my starlink router via the optional Ethernet cable. I was able to add the AP in Omada phone app in standalone mode.Works great. Looking for the ability to manage the AP remotely. i.e. add/remove SSIDs, change passwords, etc.. when I am not at camp.
Do I have any options without adding a bunch of hardware?
Thanks
Bri
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hello @Brian312,
You may set the Gateway IP on the EAP, and then set a port forwarding rule for EAP's IP address on the Router.
The port used for EAP is 80/443 by default, you may change it on the web interface of EAP.
- Copy Link
- Report Inappropriate Content
You could also purchase a cloud controller license and add the AP to that controller/site which will work better than the port forward suggested above, because Starlink uses CGNAT which means there's no public IP that's usable from the outside. If you can add just 1 piece of hardware, then adding a local OC200 between the starlink and the AP will achieve the same thing with a one-time cost (the downside is it will limit your aggregate up/down speeds via the AP to about 90Mbps as the ports on the OC200 are only 100Mb capable).
- Copy Link
- Report Inappropriate Content
@d0ugmac1 Thanks for the reply. I did start looking at the cloud controller.In order to see the AP i think I need to add the hardware controller at a minumum.The OC300 does support 1GB ports as well. Trying to find a thread where someone has done this to ensure it will resolve the CGNAT issue. Also wondering if i can connect the OC300 directly to the AP.Starlink has no native ethernet ports. I bought an adapter that has 1 inline port. so currently the AP is connected to the Starlink router directly. I think I will need to buy an Archer router as well and put the starlink router in bypass mode. This way the new router can assign IP addresses to both the controller and the AP on the inside network.
Another option comes to mind. WIth the purchase of an Archer series. I could connect it via a pppoe connection with my home Bell credentials. This would issue a public address. Them remote router acces as well as port forwarding rules, DDNS etc.. would work. At least thats my theory.
- Copy Link
- Report Inappropriate Content
Hmm, Fibe and Starlink, that sounds very familar :) Why not do this, using the public IP you have on your Fibe service ideally with a DDNS so your can use somedomaincom instead of a fixed IP which does change with Fibe on power cycles, then set up your controller, OC200/300 or software, locall inside the Fibe private network. Open the required ports in the Fibe firewall, for Omada management traffic, I believe there are 4-5 ports. Now program your remote AP with the public information of the Fibe based controller. Your AP will reach out through the CGNAT and the internet to find your controller behind your Fibre router and register with it. I'd create a separate site for the remote AP, and one for anything Omada-ish you have behind the Fibe connection. I've done this and it worked great, no single point of failure behind the Starlink box, and only 1 physical port needed, and you can continue to use the Starlink Wifi if you desire.
- Copy Link
- Report Inappropriate Content
@d0ugmac1 I was thinking along the same line. My Bell Fibe is my home network. My starlink is my trailer. So with a TP-link router connected at the trailer replacing the starlink receiver , i would connect with a PPPoe connection with my fibe credentials. I have done this from my house before to test something else. Bell issued my tplink a secoond public IP. Once bell issues a public IP i would use a DDNS connection. I already subscribe to noip. Then no Omada controller at all. Sctrictly port forwarding to get to the web interface of the AP. Same as if i was at the trailer. Simple unless i'm overlooking something.
- Copy Link
- Report Inappropriate Content
Pretty sure you can only use your Bell b1 PPPoE credentials on a Bell access network :). This means you cannot use your login credentials and a router to get a public IP at the trailer via Elon's network.
If all you want to do is remote monitor and manage the AP at the trailer, the easiest thing to do is install an OC200 inside your homenetwork and forward the Omada control ports to it and enable cloud access (I don't expose the Web ports, but use TPlink's cloud connector instead). The reason for this is that the OC200 provides the necessary packet relay to defeat the CGNAT on Starlink, either locally, or via the included cloud access to the OC200. Then on the trailer AP, configure the AP with your home's NOIP alias, fire it up, adopt it via the controller remotely (via the tplink cloud), and you are good to go.
One very useful side benefit of the remote controller managing the AP, is you notifications when it stops responding...which means you will know if and when the power has gone out, and if it has come back on by the status alerts you'll get via the Omada app. For me, the value of this info more than covered the one time C$120 outlay for the controller, and if that's still too much, I posted earlier about how to make a C$55 Raspberry Pi-clone based controller that was at least as good as the OC200.
- Copy Link
- Report Inappropriate Content
See here for the ports, needed, but I think you only need 29810, 29814-816 for v5 controllers forwarded across the router.
https://www.tp-link.com/ca/support/faq/3281/
- Copy Link
- Report Inappropriate Content
@d0ugmac1 . I like it. Makes snese what you said about PPPoe. Would never thought possible configuring the hardware on my home network and I didn't like the idea of the oc200 at the trailer as it is a 100 MB device. OC300 is 1 GB but the price doubles. As i would be just using to reach in I would not be limiting the speed at the trailer. There was talk of addig a second AP to mesh to relay to other trailers. In this config would that still be possible via cloud without on prem hardware? Give the second AP a diff DDNS entry and still configure via the oc200 from home?
- Copy Link
- Report Inappropriate Content
Now that's a good question! I haven't tried AP meshing with a remote controller yet, but, I'm thinking it should still work...otherwise the TPlink 'Cloud Controller' would never be able to support meshing between APs (which would be a huge negative). You can always buy the second AP and try it once you get the first one up and running.
@Clive_A Is there more detail on controller support for meshing and/or features like fast roaming, when the controller is remote from the AP/user subnets?
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 1686
Replies: 14
Voters 0
No one has voted for it yet.