Hub Tech Solutions

Phase 1 — Know Your Equipment

Before you touch a single cable, you need to know what every piece of gear does, why it exists, and where it fits in the network. Pick up each device. Read the labels. Understand the ports.

The Three Core Devices

Common UniFi Hardware

Port Types You'll Encounter

✅ Phase 1 Checklist

• I can identify a gateway, switch, and AP by sight
• I can explain the role of each device in one sentence
• I understand the difference between WAN and LAN ports
• I understand what PoE does and why it matters
• I can identify RJ45 vs SFP ports on a switch

📚 Resources

• ui.com/consoles — UniFi Console product lineup
• ui.com/switching — UniFi switch lineup & specs

Phase 2 — Physical Infrastructure & Rack Discipline

A clean install starts at the rack. If the rack is a mess, the network will be a mess. This is where you build the foundation — literally.

Rack Components (Top to Bottom)

Hub Tech Rack Standards

• Velcro only — never zip ties. Zip ties pinch cables, are hard to undo, and look unprofessional.
• Label both ends of every cable. Use a label maker. Example: PATCH-01 → SW1-P01
• Service loops — leave 12-18 inches of slack neatly coiled. Never pull cables tight.
• Consistent cable lengths — use the right length, not whatever's lying around.
• Color coding — Pick a standard and stick to it (e.g., Blue = data, Yellow = PoE/AP, Red = WAN).

✅ Phase 2 Checklist

• I can identify every component in a standard network rack
• I know the correct mounting order (patch panel → switch → gateway → UPS)
• I understand why power and data cables must be separated
• I can explain why we use Velcro instead of zip ties
• I can label a cable properly with both ends identified

📚 Resources

• r/cableporn — Inspiration for clean rack builds

Phase 3 — Cabling Fundamentals

Ethernet cable is the circulatory system of the network. If the cables are bad, nothing else matters. Learn to terminate, test, and run cable properly.

Cable Categories

T-568B Wiring Standard

Hub Tech uses T-568B on all terminations. Both ends of every cable must use the same standard. Memorize this pin order:

Termination Tools

• RJ45 Crimper — for making patch cables with RJ45 connectors
• Punch-down tool — for terminating cables on patch panels and keystones
• Cable tester — verifies all 8 wires are properly connected. Always test every termination.
• Tone generator & probe — for tracing cables through walls and ceilings
• Cable stripper — removes the outer jacket without nicking internal wires

Cable Running Rules

• Never exceed 100m (328 ft) for a single Ethernet run
• Avoid running parallel to electrical wiring
• Don't kink, crush, or sharply bend cables (maintain minimum bend radius)
• Use J-hooks or cable trays in ceilings — never lay cable on ceiling tiles
• Leave a service loop at both ends
• Label before you pull — it's much harder after

✅ Phase 3 Checklist

• I can recite the T-568B pin order from memory
• I can terminate an RJ45 connector and pass a cable test
• I can punch down a cable on a patch panel
• I can use a tone generator to trace a cable
• I know the max run length for Ethernet (100m)
• I understand the difference between Cat5e, Cat6, and Cat6a

📚 Resources

Phase 4 — Gateway, WAN & Controller Setup

This is where the network comes alive. You'll connect to the Internet, set up the gateway, and bring the UniFi controller online. Follow these steps in order — this is the real-world standup process.

Step 1: Verify ISP / Modem

1. Confirm the ISP modem is powered on and showing an online status (check modem lights)
2. Ask the client or ISP: Is this a static IP or DHCP from the ISP?

Step 2: Cable the Gateway

1. Run an Ethernet cable from the modem to the WAN port on the gateway
2. Run an Ethernet cable from the LAN port on the gateway to the core switch
3. Power on the gateway

Step 3: Set Up the Gateway (UniFi App)

1. Download the UniFi app from the App Store or Google Play
2. Open the UniFi app — it will discover the gateway via Bluetooth
3. Create a Ubiquiti account or sign in
4. Follow the setup wizard — set site name, WiFi network, timezone

Step 4: Configure WAN (Internet)

In the UniFi app → Settings → Internet:

• If DHCP: Leave the default setting (DHCPv4). The gateway will pull an IP from the ISP automatically.
• If Static IP: Change IPv4 Connection to "Static" and enter:
  • IP Address — the public IP from the ISP (e.g., 74.125.200.10)
  • Subnet Mask — usually 255.255.255.0
  • Gateway — the ISP's gateway IP (e.g., 74.125.200.1)
  • DNS — ISP's DNS, or use 8.8.8.8 and 1.1.1.1

Step 5: Verify Internet

1. In the app, verify WAN status shows "Connected"
2. Connect a device via WiFi or Ethernet
3. Open fast.com — run a speed test
4. Confirm speeds match what the ISP promised

Step 6: Adopt Devices

Adoption is the process of registering a UniFi device (switch, AP) to your controller. Until a device is adopted, you cannot configure it.

1. Plug the device into the core switch (powered via PoE or adapter)
2. Open the UniFi app → go to Devices
3. Wait 1-3 minutes for it to appear with status "Pending Adoption"
4. Tap Adopt
5. Wait for the device to provision (status changes to "Connected" with a solid blue light)
6. Repeat for all switches and APs

✅ Phase 4 Checklist

• I verified the ISP modem is online
• I know whether the ISP uses DHCP or static IP
• I connected modem → WAN port → LAN port → core switch
• I set up the gateway through the UniFi app
• I configured the WAN connection (DHCP or static)
• I verified Internet with a speed test
• I can explain what double NAT is and how to fix it
• I adopted all switches and APs through the app
• I can factory reset a stuck device and re-adopt it

📚 Resources

• Ubiquiti: UniFi Network Setup Guide

Phase 5 — IP Addressing & DHCP

Every device on a network needs an IP address — that's how they find and talk to each other. Understanding IP addressing is the most important theory you'll learn.

Key Concepts

Static vs DHCP

DHCP Server Placement

Common IP Scheme

🧮 Interactive: Subnet Explorer

Pick a network below to see how subnets work. This is what you'll configure in the UniFi app when creating networks.

Lab Exercise (UniFi App)

1. Open the UniFi app → Settings → Networks
2. Edit your LAN network
3. Set the DHCP range to 192.168.1.100 – 192.168.1.200
4. Connect a laptop via Ethernet to the switch
5. In the app, go to Clients — find the laptop and verify it received an IP in your DHCP range
6. On the laptop, open a browser and go to fast.com to verify Internet connectivity

✅ Phase 5 Checklist

• I can explain what an IP address, subnet mask, gateway, and DNS do
• I understand the difference between static and DHCP
• I can configure a DHCP range in the UniFi app
• I can find a device's IP address in the UniFi app under Clients
• I know why there should only be one DHCP server per network
• I used the Subnet Explorer and can describe what /24 means

Phase 6 — WiFi Configuration & Security

WiFi is what your clients actually interact with. Get this wrong and their first impression is "it doesn't work." Get it right and they never think about it — that's the goal.

Key WiFi Terms

Creating a WiFi Network (UniFi App)

1. Open the UniFi app → Settings → WiFi
2. Tap Create New WiFi Network
3. Set SSID name (keep it professional — HubTech-Office, not FBI_Surveillance_Van)
4. Set security to WPA2/WPA3
5. Set a strong password (12+ characters, mixed case, numbers, symbols)
6. Assign to the correct network/VLAN
7. Save and test connection from a phone

WiFi Security Rules

• Always use WPA2 minimum — never leave a network open or use WEP
• Use strong passwords — never password123 or the business name
• Hide SSID only if the client specifically requests it (it doesn't improve security much)
• Guest networks should use client isolation so guests can't see each other's devices

AP Placement Tips

• Mount APs on the ceiling, face down — they radiate signal downward in a cone
• One AP per 1,500–2,000 sq ft (depending on walls and interference)
• Avoid placing APs near metal ductwork, microwaves, or thick concrete
• Don't crank Tx power to max — it causes overlap and client "stickiness" issues
• Let UniFi auto-optimize channels, or set them to avoid overlap (1, 6, 11 for 2.4GHz)

✅ Phase 6 Checklist

• I can create a WiFi network in the UniFi app
• I can explain what SSID, WPA2, and WPA3 mean
• I know the difference between 2.4GHz and 5GHz bands
• I understand channel selection and why it matters
• I can set up a separate Guest WiFi SSID
• I know proper AP mounting and placement guidelines

📚 Resources

• Ubiquiti: WiFi Network Configuration

Phase 7 — VLAN Fundamentals

VLANs are one of the most important concepts in professional networking. Even if you don't configure complex VLANs on day one, you must understand what they are and why they exist.

What is a VLAN?

A Virtual LAN (VLAN) creates separate, isolated networks using the same physical switch. Devices on different VLANs cannot talk to each other unless a firewall rule explicitly allows it.

Common VLAN Layout

Why Use VLANs?

• Security — a compromised guest device can't reach your servers
• Guest isolation — visitors get Internet but nothing else
• Device segmentation — cameras on their own network, phones on another
• Reduced broadcast traffic — smaller broadcast domains = better performance
• Compliance — many industries require network segmentation (PCI-DSS, HIPAA)

Creating a VLAN (UniFi App)

1. Open the UniFi app → Settings → Networks
2. Tap Create New Network
3. Name it (e.g., "Guest")
4. Set VLAN ID (e.g., 10)
5. Set the subnet (e.g., 192.168.10.1/24) — use the Subnet Explorer in Phase 5 to understand this
6. Enable DHCP for this network
7. Save — then assign a WiFi SSID to this VLAN

Controlling Cross-VLAN Traffic

By default, VLANs can communicate through the gateway (inter-VLAN routing). To block this:

1. In the UniFi app → Settings → Firewall & Security → LAN Rules
2. Create a rule: Block traffic from Guest (VLAN 10) to all LAN networks
3. Allow Guest → Internet (WAN) only

✅ Phase 7 Checklist

• I can explain what a VLAN is in plain English
• I know why we separate Guest, IoT, and Internal traffic
• I can create a new VLAN in the UniFi app
• I can assign a WiFi SSID to a specific VLAN
• I understand that firewall rules control cross-VLAN traffic
• I can create a basic firewall rule to block Guest → LAN

📚 Resources

• Ubiquiti: Configuring VLANs

Phase 8 — STP & Switch Basics

Switches are smart — but they can destroy themselves if you create a loop. STP prevents that.

What is STP?

Spanning Tree Protocol (STP) prevents switching loops. A loop occurs when there are multiple paths between switches, causing traffic to circulate endlessly.

STP Priority (Root Bridge Election)

Every switch has a priority value. The switch with the lowest priority becomes the Root Bridge — the "center" of the network.

Setting STP Priority (UniFi App)

1. Open the UniFi app → Devices → select the core switch
2. Go to Settings → Services → Spanning Tree
3. Set priority to 4096
4. Leave access switches at default (32768)
5. Save changes

Switch Port Concepts

✅ Phase 8 Checklist

• I can explain what STP does and why it exists
• I can describe what a broadcast storm is
• I can set the core switch to a lower STP priority
• I know the difference between uplink, access, and trunk ports
• I understand why UniFi's default STP needs adjustment

📚 Resources

• Ubiquiti: STP Configuration

Phase 9 — Test & Break It

You don't truly understand a system until you've broken it and fixed it. This phase is about intentionally creating failures in a lab so you know what to expect on-site.

Exercise 1: Unplug the Uplink

1. Unplug the Ethernet cable between an access switch and the core switch
2. Observe: What happens to devices on the access switch?
3. Answer: They lose connectivity to the gateway, Internet, and devices on other switches. Local traffic between devices on the same switch still works.
4. Lesson: The uplink is the lifeline. No uplink = no network for that branch.

Exercise 2: Disable DHCP

1. In the UniFi app, turn off DHCP on the LAN network
2. Disconnect and reconnect a device
3. Observe: The device gets a 169.254.x.x address (APIPA — automatic fallback). No gateway, no Internet.
4. Lesson: Without DHCP, new devices can't get an IP. Existing devices may work temporarily until their lease expires.
5. Re-enable DHCP when done.

Exercise 3: Change an AP's VLAN

1. In the app, change an AP's switch port to a different VLAN (e.g., VLAN 10)
2. Observe: The AP loses contact with the controller. It may show "Isolated" or "Disconnected."
3. Lesson: APs need management access to the controller's network. VLAN assignments on switch ports must be correct.
4. Move it back to the correct VLAN when done.

Exercise 4: Create a Switching Loop

1. Plug both ends of one patch cable into the same switch (two different ports)
2. Observe: If STP is working, one port goes into blocking state (amber light). Network stays up.
3. Lesson: STP is your safety net. Always verify it's enabled and configured.
4. Remove the loop cable immediately.

✅ Phase 9 Checklist

• I completed the uplink disconnect exercise and can explain the result
• I completed the DHCP disable exercise and understand APIPA
• I completed the VLAN reassignment exercise and understand AP isolation
• I observed STP blocking a loop and can explain what happened
• I understand that breaking things in a lab prevents breaking things on-site

Professional Installation Standards

Your technical skills get you in the door. Your installation discipline is what earns repeat business and referrals. A Hub Tech install should be identifiable by how clean, organized, and repeatable it is.

The Hub Tech Standard

Client Handoff Checklist

• Network diagram (physical and logical) provided to client
• All passwords documented and stored securely
• IP scheme documented
• All cables labeled
• WiFi SSIDs and passwords documented
• Client shown how to access the UniFi app/dashboard
• Photos of completed rack taken for our records

Reference — Troubleshooting Flowchart

When something breaks, don't panic. Don't start changing random settings. Follow this flowchart every single time. Move from physical to logical to policy.

The 6-Step Diagnostic Flow

Common Issues & Quick Fixes

Final — Knowledge Check

Answer these without looking at the manual. If you can answer all of them correctly, you're ready to run installs independently.

Written Questions

Write your answers below. Discuss with your supervisor.

1. What are the three core network devices, and what does each one do?

2. Why don't we let UniFi handle DHCP when there's a Domain Controller?

3. When would you let UniFi handle DHCP?

4. Why do we isolate Guest WiFi on its own VLAN?

5. What happens if two gateways are plugged into the same LAN?

6. A client calls saying "the Internet is down." Walk through your troubleshooting steps.

7. What is STP and what problem does it solve?

8. You arrive at a rack another tech installed. How can you tell if it was done professionally?