Nanostation Discovery Tool
Berniece Leonhardt
The Ubiquiti Device Discovery Tool is a helpful network management tool that allows users to discover and manage Ubiquiti devices on their local network it will even find Unifi Devices and the Unifi Controller. In this blog post, we will provide an overview of the tool and its benefits, as well as some tips for how to use it effectively.
The Ubiquiti Device Discovery Tool is a cross-platform discovery utility that locates Ubiquiti devices on the local network. It allows users to connect to these devices and configure them without knowing the IP address. The tool also offers features like showing you MAC addresses. There is a Java discovery tool, but we recommend sticking to the Chrome Extension, which can be downloaded here in the google chrome store.
If you use Ubiquiti Unifi devices, you may have heard about the Ubiquiti device discovery tool that allows quickly finding Unifi devices on your network with little effort. The tool has several varieties, including a standalone desktop tool and a browser extension. However, both tools are now deprecated.
The Ubiquiti Discovery Tool is a powerful and easy-to-use app designed to simplify the management of your Ubiquiti devices within your local network. It includes a streamlined interface and many features. It streamlines the discovery and configuration of your UniFi devices.
If you look at the Unifi download page, you will see that both the standalone tool and browser plugin have not been updated in years. Take note of the dates for both. They are now both deprecated. You can get the Java version of the tool to run, but you need an OLD version of Java, Java version 8 update 251.
Since these are now deprecated and super old, you will likely encounter issues trying to run either of the tools, especially with new versions of Java. However, there is a Ubiquiti device discovery tool alternative you can use called WiFiman.
Devices not appearing in the list: Ensure your devices are connected to the local network and powered on. You will need to make sure you are on the same broadcast domain (VLAN) as your Ubiquiti devices to be successfully detected by WiFiman
Just go to Tools > Software Upgrade in the Elevated radios GUI and upload the Ubiquiti firmware file. After it finishes the flashing process, it will come back up just like it was before being elevated.
Upon, simply loading the UBNT firmware into the Elevate UI under the software upgrade window (as you would normally upgrade the firmware on a Cambium device), I have lost access to the device. Neither discovery tool will find it, and I cannot ping the IP at all.
It sounds like something went wrong flashing it... I've had that happen with quite a few ubnt radios recently (not just going between Elevate and ubnt firmware, but more so just updating the ubnt firmware to newer versions).
The Ubiquiti Device Discovery Service is an application used to facilitate the discovery of Ubiquiti devices in a managed environment. It is installed automatically as part of the UniFi controller software installation process and is enabled by default.
In addition, an internet accessible Ubiquiti device discovery service will allow a malicious actor to extract potentially sensitive information of the network devices that have the service enabled. Information such as the Name of the device, IP address, MAC address, Firmware version, Model, Status and the Extended Service Set Identification (ESSI) of the device if wireless-enabled.
Ubiquiti Inc. develops wireless and wired technology platforms to deliver highly advanced and easily deployable communications to a global customer base with a focus on high-capacity distributed Internet access, unified information technology and consumer electronics for home and personal use. Ubiquiti networking products are powered by the Ubiquiti Network Management System (UNMS) and UniFi software platforms to provide high capacity distributed internet access and Unified information technology management.
The Ubiquiti Network Management System (UNMS) is a comprehensive management controller with a graphical user interface that is used to centrally monitor and manage several of Ubiquiti network device platforms, such as airFiber, airMAX, edgeMAX and UFiber. UNMS provides configuration backups, firmware updating, monitoring and alerting.
Ubiquiti's UniFi is an ecosystem of wireless access points, routers, switches, security cameras, controller devices, VoIP phones and access control products. UniFi network equipment is managed by the UniFi Network Management Controller. The UniFi Controller is a wireless network management software solution from Ubiquiti Networks used for configuring and monitoring an UniFi network or multiple wireless networks using a web browser. The Unifi Controller software is installed automatically as part of the installation process when creating a UniFi network. The software can be installed on Linux, Mac OS X or Microsoft Windows operating systems. It requires a Java Runtime Environment 1.6 (or above).
UniFi Access Points connect to the UniFi Controller software either by Ethernet or by a wireless connection. Multiple wireless networks can be organised into Wireless Local Area Network (WLAN) groups on different Access Points.
Ubiquiti uses the TDMA protocol on a number of their platforms. TDMA is a digital modulation technique used in digital cellular telephone and mobile radio communication that enables multiple clients to share the same frequency by dividing the limited spectrum available over a radio frequency cellular channel into different time slots. TDMA allows each client to send and receive data using pre-designated time slots scheduled by an intelligent Access Point (AP) Controller. The 'time slot' method eliminates hidden node collisions and maximises air time efficiency. It provides improvements in performance in latency, throughput, and scalability compared to other systems.
To establish if a host has an Internet accessible service, simple utility programs or tools included with the standard Linux/Ubuntu distribution can be utilised. The test should not be run on the host itself or from the local network, instead it should be run from a different node on the Internet.
Insert the IP address of the host you wish to check for an Internet accessible Ubiquiti Device Discovery Service when invoking the 'Nmap' open source network scanner utility program together with the options included in the following example.
To establish a connection to an Internet Accessible Ubiquiti Device Discovery Service, and elicit a response from the Ubiquiti device, the 'socat' (socket cat) command line based utility for data transfer between two addresses can be used.
The implementation of best practice in relation to Ingress filtering limits the impact of a Denial of Service (DoS) attack on one's own network while the implementation of best practice in relation to Egress filtering limits the impact of a compromised network in a Denial of Service (DoS) attack on networks of other organisations. Additional information on Ingress & Egress Filtering can be found at the following link - Ingress & Engress Filtering
UDP Based Denial-of-Service (DoS) Attack
The User Datagram Protocol (UDP), a generic carrier for several higher-level protocols, has a number of properties that makes it susceptible to exploitation for DoS attacks against third parties. Additional information on the components and techniques deployed in an UDP based DoS attack can be found at the following link - UDP Based Denial-of-Service (DoS) Attack
Additional InformationRapid7 Labs - Understanding Ubiquiti Discovery Service Exposures
Shadowserver - Open Ubiquiti Report a Cyber Security Incident
Router-Switch.com - What is Ubiquiti Networks UniFi
Ubiquiti Inc - airOS/airMAX and management access
EdgeRouter - Ubiquiti Device Discovery Service
Ubiquiti - UDP Broadcasts on Port 10001
Ubiquiti - UniFi Network - Getting started
Ubiquiti - UniFi-Ports Used
Preferring SOCAT over NETCAT
Report a Cyber Security Incident Reports help the NCSC to develop a better understanding of the threat environment and will assist other organisations who are also at risk.
EasyUbnt Lite is an essential mobile tool designed for wireless ISP providers who manage networks via Ubiquiti Networks equipment. The app allows for complete setup and management of any Ubiquiti device running AirOS versions 3/4/5 directly from an Android device, eliminating the need to carry a laptop to different sites. Its compatibility spans across various Ubiquiti models including Nanostation, PowerStation, and more.
Beyond basic setup, the platform offers exclusive features that enhance the user experience, such as a device discovery tool, an online speedtest that displays real-time device performance, voice-guided signal navigation for precise alignment, a perpetual site survey for monitoring network status, and a secure encryption key database to manage network security details.
This streamlined tool, notably tested on AirOS 5, is designed to improve efficiency in network deployment and maintenance, representing a significant advantage for field technicians and network admins. With the software, optimizing and securing a wireless network infrastructure is more accessible and manageable from the convenience of a handheld device.
Uptodown is a multi-platform app store specialized in Android. Our goal is to provide free and open access to a large catalog of apps without restrictions, while providing a legal distribution platform accessible from any browser, and also through its official native app.
2. As you can see our discovery tool has found our router, switch, RocketM5 and multiple NanoStations on our network. At this point your network should look very similar, perhaps minus a few NanoStations. We'll need one more tool before we can proceed with the device adoption.
11. Bring back your unifi discovery tool from before. Click scan to find the new access point on the network. At this point, the AP will default to the unifi default of 192.168.1.20... but if you have a DHCP server on your network (like your router should be doing) you will soon after be issued a new IP address.
c80f0f1006