Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Fallen94

Members
  • Joined

  • Last visited

  1. Application InformationApplication: Network Optimizer for UniFi GitHub Repository: https://github.com/Ozark-Connect/NetworkOptimizer GitHub Packages: https://github.com/orgs/ozark-connect/packages?repo_name=network-optimizer Template Repository: https://github.com/stefan-matic/unraid-templates Network Optimizer template: https://github.com/stefan-matic/unraid-templates/blob/main/templates/network-optimizer.xml Network Optimizer Speedtest template: https://github.com/stefan-matic/unraid-templates/blob/main/templates/network-optimizer-speedtest.xml Category: Network, Tools, Security DisclaimerI am not the original creator of this application. All issues with the application itself, bugs, feature requests, etc. should be submitted directly on github: https://github.com/Ozark-Connect/NetworkOptimizer If you're having issues with the UNRAID deployment or the template itself - or wish to request new changes for the template you can post a reply here. DescriptionNetwork Optimizer for UniFi analyzes your UniFi controller configuration to identify security gaps, performance issues, and misconfigurations. It answers critical questions: Do your firewall rules actually work? Are your VLANs properly isolated? Are your DNS settings being bypassed? Key Features: Security Auditing - 39 comprehensive checks across four categories with 0-100 scoring Adaptive SQM (Smart Queue Management) - Automatically manages bufferbloat with intelligent bandwidth adjustment Speed Testing - LAN testing via iperf3 and client testing via OpenSpeedTest Deep Analysis - Detects firewall rule shadowing, conflicts, and VLAN isolation issues Cellular Monitoring - Track RSSI, RSRP, RSRQ, SINR for U-LTE/U5G-Max backup connections Dual-WAN Support - Separate configurations per interface with profiles for DOCSIS, fiber, wireless, Starlink, and cellular PDF Reports - Generate actionable security audit reports Privacy First - All data stored locally, no external services ArchitectureNetwork Optimizer uses a two-container architecture: Network Optimizer - Main application that performs security audits, adaptive SQM, network monitoring, and serves the web UI. Includes SQLite database and iperf3 server capabilities. Network Optimizer Speedtest - Customized OpenSpeedTest component for browser-based client speed testing that automatically reports results to the main application. RequirementsMinimum (Audit Only)UniFi OS device (UDM, UCG, UDR, Cloud Key) or self-hosted Network Server HTTPS access to UniFi controller API Local-only UniFi account (Ubiquiti SSO not supported) Full FunctionalitySSH access enabled on gateway and UniFi devices Enable at: Settings → Control Plane → Console → SSH Device SSH: UniFi Devices → Device Updates and Settings → Device SSH Settings (UniFi Network 9.5+) InstallationPrerequisitesUnraid 6.9+ recommended UniFi controller with local account created SSH access enabled on UniFi gateway (for SQM and speed testing) Installation StepsInstall Network Optimizer (Required) Search for "Network Optimizer" in Community Applications or template list Configure the WebUI port (default: 8042) Set your HOST_IP or HOST_NAME for proper operation Optionally set APP_PASSWORD for authentication Click Apply Install Network Optimizer Speedtest (Recommended) Search for "Network Optimizer Speedtest" in Community Applications or template list Configure the WebUI port (default: 3005) Set HOST_IP or HOST_NAME to match your Network Optimizer container Click Apply Access the WebUI Navigate to http://YOUR-UNRAID-IP:8042 If you didn't set APP_PASSWORD, retrieve auto-generated password from container logs: docker logs network-optimizer Configure your UniFi controller URL in settings Authenticate with your local UniFi account Run Your First Audit Navigate to the Security Audit section Click "Run Audit" Review the results and recommendations ConfigurationNetwork OptimizerParameter Default Description WebUI Port 8042 Port to access the Network Optimizer web interface Data Directory /mnt/user/appdata/network-optimizer/data SQLite database, configs, and license files SSH Keys Directory /mnt/user/appdata/network-optimizer/ssh-keys Optional: SSH keys for device access Logs Directory /mnt/user/appdata/network-optimizer/logs Application logs Timezone America/Chicago Timezone setting APP_PASSWORD Auto-generated Optional: Set custom application password HOST_IP Required Host IP address for path analysis and client speed tests HOST_NAME Required Host name for path analysis and client speed tests REVERSE_PROXIED_HOST_NAME - Reverse proxy hostname (e.g., optimizer.example.com) BIND_LOCALHOST_ONLY false Set to true to bind to localhost only (for reverse proxy) OpenSpeedTest ConfigurationParameter Default Description OPENSPEEDTEST_PORT 3005 Port where OpenSpeedTest is running OPENSPEEDTEST_HOST - OpenSpeedTest host for CORS configuration OPENSPEEDTEST_HTTPS false Set to true if OpenSpeedTest uses HTTPS OPENSPEEDTEST_HTTPS_PORT 443 HTTPS port for OpenSpeedTest Advanced SettingsParameter Default Description IPERF3_SERVER_ENABLED false Enable to accept client-initiated speed tests on port 5201 LOG_LEVEL Information Logging level (Trace, Debug, Information, Warning, Error, Critical) APP_LOG_LEVEL Information Network Optimizer specific log level DEMO_MODE_MAPPINGS - Optional: Demo mode configuration InfluxDB Integration (Advanced)Parameter Default Description INFLUXDB_URL - Optional: InfluxDB URL for metrics storage (e.g., http://localhost:8086) INFLUXDB_TOKEN - Optional: InfluxDB authentication token INFLUXDB_ORG network-optimizer Optional: InfluxDB organization name INFLUXDB_BUCKET network_optimizer Optional: InfluxDB bucket name for storing metrics Network Optimizer SpeedtestParameter Default Description WebUI Port 3005 Port for accessing the speed test web interface Timezone America/Chicago Timezone setting HOST_IP Required Host IP for result reporting to Network Optimizer HOST_NAME Required Host name for URL construction REVERSE_PROXIED_HOST_NAME - Reverse proxy hostname for result reporting OPENSPEEDTEST_PORT 3005 Port number for OpenSpeedTest (should match WebUI Port) Usage GuideInitial SetupAccess the WebUI at http://YOUR-UNRAID-IP:8042 Log in with your password (check logs if auto-generated) Navigate to Settings and configure: UniFi Controller URL (e.g., https://192.168.1.1) UniFi local account credentials Save settings and verify connection Running Security AuditsNetwork Optimizer performs 39 checks across four categories: Firewall Analysis Deep analysis of firewall rules Detection of rule shadowing and conflicts Verification that rules actually work as intended VLAN Security Device fingerprinting via MAC lookups Confirmation that devices are on intended networks VLAN isolation verification DNS Validation DoH (DNS over HTTPS) configuration checks WAN DNS settings verification Detection of DNS bypass attempts General Configuration Network best practices validation Performance issue identification Misconfiguration detection Results are scored 0-100 and categorized by severity with actionable recommendations. Adaptive SQM SetupSmart Queue Management automatically addresses bufferbloat: Navigate to SQM configuration Select your connection profile: DOCSIS (Cable) Fiber Wireless Starlink Cellular Configure dual-WAN if applicable (separate settings per interface) Enable scheduled speed tests for automatic adjustment Deploy configuration to gateway (persists through reboots) LAN Speed TestingTest network performance between gateway and devices: Ensure SSH is enabled on UniFi gateway and devices Navigate to Speed Testing section Select target device (auto-discovers UniFi equipment) Run iperf3 test Review results with network path and hop count correlation Client Speed TestingBrowser-based testing from phones, tablets, and laptops: Access Network Optimizer Speedtest at http://YOUR-UNRAID-IP:3005 Click "Start Test" Results automatically report to Network Optimizer View location mapping (with HTTPS enabled) for coverage analysis Cellular MonitoringFor U-LTE or U5G-Max backup connections: Navigate to Cellular Monitoring View real-time metrics: RSSI (Signal Strength) RSRP (Reference Signal Received Power) RSRQ (Reference Signal Received Quality) SINR (Signal-to-Interference-plus-Noise Ratio) Track tower information and connection quality Generating ReportsComplete a security audit Navigate to Reports section Click "Generate PDF Report" Download actionable security audit report TroubleshootingCan't Connect to UniFi ControllerVerify controller URL includes HTTPS (e.g., https://192.168.1.1) Ensure you created a local-only account (Ubiquiti SSO not supported) Check firewall rules allow access from Unraid to controller Verify SSL certificate is trusted or self-signed certificates are accepted SSH Connection FailuresConfirm SSH is enabled: Settings → Control Plane → Console → SSH Verify Device SSH Settings: UniFi Devices → Device Updates and Settings Ensure SSH keys are properly mounted (if using key-based auth) Check that SSH credentials match your UniFi account Speed Test Not WorkingVerify HOST_IP or HOST_NAME is set correctly in both containers Ensure Network Optimizer Speedtest container is running Check that port 3005 is accessible Verify CORS configuration for OpenSpeedTest iperf3 Tests FailingEnable iperf3 server by setting IPERF3_SERVER_ENABLED=true Ensure port 5201 is accessible on the gateway Verify SSH access to target devices Check that iperf3 is installed on UniFi devices High CPU UsageReduce concurrent speed test operations Lower LOG_LEVEL to Warning or Error Disable scheduled speed tests if not needed Container Won't StartCheck that host port 8042 is not already in use Verify data directory permissions: /mnt/user/appdata/network-optimizer/data Review container logs: docker logs network-optimizer Ensure HOST_IP or HOST_NAME is set Performance NotesDocker Desktop on macOS/Windows introduces virtualization overhead that limits multi-gigabit testing accuracy For best speed test results, run on native Linux (Unraid is ideal) LAN testing accuracy depends on SSH connection stability Large networks may take longer for initial device discovery LicensingNetwork Optimizer uses Business Source License 1.1: Permitted: Personal, non-commercial use across up to three sites Requires License: Commercial deployment by MSPs, consultants, or service providers Future: Transitions to Apache 2.0 on January 1, 2028 Commercial Inquiries: [email protected] Privacy & SecurityAll data is stored locally in SQLite on your Unraid server No data is sent to external services UniFi credentials are stored securely (encrypted at rest) SSH connections are established only to your local UniFi devices Network topology data never leaves your network Current StatusFunctional: Core security auditing (39 checks) Adaptive SQM with multiple connection profiles LAN speed testing via iperf3 Client speed testing via OpenSpeedTest Cellular monitoring for U-LTE/U5G-Max In Development: Time-series metrics and historical analysis Cable modem statistics Multi-site support SupportIf you need help or encounter issues, please post in this thread with: Unraid version Network Optimizer version (check container logs or WebUI) UniFi Network version UniFi devices in use (UDM, UCG, UDR, etc.) Description of the issue Relevant logs (use docker logs network-optimizer or docker logs network-optimizer-speedtest) Network setup (single/dual-WAN, number of VLANs, etc.) For bugs or feature requests, you can also open an issue on the GitHub repository. FAQQ: Does this work with non-UniFi networks? A: No. Network Optimizer is specifically designed for UniFi controllers and devices. It requires UniFi API access. Q: Can I use my Ubiquiti SSO account? A: No. You must create a local-only account on your UniFi controller. Ubiquiti SSO is not supported. Q: Is my UniFi password stored securely? A: Yes. Credentials are encrypted at rest in the SQLite database and transmitted only over HTTPS to your local controller. Q: Do I need the speedtest container? A: It's optional but recommended. The speedtest container enables browser-based client testing from phones, tablets, and laptops. Q: How accurate are the speed tests? A: Very accurate on native Linux (Unraid). Docker Desktop on macOS/Windows has virtualization overhead that can affect multi-gigabit testing. Q: Can this configure my UniFi network automatically? A: No. Network Optimizer is an analysis and auditing tool. It provides recommendations but does not automatically modify your UniFi configuration. SQM deployment is the exception. Q: Does this work with UbiOS (UDM/UCG/UDR)? A: Yes. It works with UniFi OS devices and self-hosted Network Server installations. Q: What's the difference between this and UniFi's built-in analytics? A: Network Optimizer performs deep security analysis that UniFi doesn't provide, such as firewall rule conflict detection, VLAN isolation verification, and DNS bypass detection. It also offers advanced SQM and comprehensive speed testing. ChangelogVersion 1.0.0 (Initial Release) Network Optimizer template Network Optimizer Speedtest template Security auditing with 39 checks across four categories Adaptive SQM with connection profiles LAN speed testing via iperf3 Client speed testing via OpenSpeedTest Cellular monitoring support PDF report generation InfluxDB integration (optional) LinksGitHub: https://github.com/Ozark-Connect/NetworkOptimizer Template Repository: https://github.com/stefan-matic/unraid-templates Commercial Licensing: [email protected] Note: Waiting for @Squid (or mods) to move to Application Support > Docker Containers.
  2. The project received a lot of updates since the last time i packaged this. Need to bring the template up to date and then troubleshoot why it doesn't scan the host network properly. Will report bacl once it's working
  3. The error you're seeing is because the database url is not supplied. I supplied a generic url example, which needs to be filled out with your database info. Let's debate further at https://github.com/mayanayza/netvisor/issues/13#issuecomment-3523486394
  4. Fallen94 changed their profile photo
  5. Please make the following changes to the template: NODE_OPTIONS - not needed anymore, it fails to start the container if left on Default Post Arguments should be sh -c 'node ./scripts/self-host-predeploy && node ./dist/main.js' Container launches normally after these
  6. Application InformationApplication: scanopy GitHub Repository: https://github.com/scanopy/scanopy GitHub Packages: https://github.com/orgs/scanopy/packages?repo_name=scanopy Template Repository: https://github.com/stefan-matic/unraid-templates Category: Network, Tools, Productivity DescriptionScanopy automatically discovers and visually documents your network topology. It scans your network, identifies hosts and services, and generates an interactive visualization showing how everything connects, making it easy to create and maintain living network documentation. Key Features: 🔍 Automatic Network Discovery - Scans all IPv4 addresses on connected subnets 🎯 Service Detection - Recognizes 50+ common services (Plex, Home Assistant, Docker, Proxmox, pfSense, and more) 🗺️ Interactive Topology Visualization - Visual map of your entire network infrastructure 🏢 Multi-VLAN Support - Deploy multiple daemons to map complex network topologies 🐳 Container-Aware - Automatically detects Docker services and relationships 📊 Infrastructure Mapping - Identifies DNS, gateways, reverse proxies, and other infrastructure services 🔒 Privacy First - All data stored locally, no external services ArchitectureScanopy uses a server-daemon architecture: Scanopy Server - Central hub that stores network data, generates visualizations, and serves the web UI. Includes PostgreSQL database. Scanopy Daemon - Lightweight agent that performs network scanning and reports to the server. Deploy on multiple hosts to map different network segments. InstallationPrerequisitesUnraid 6.9+ recommended Host networking support for daemon container Sufficient system resources (scanning can be resource-intensive) Installation StepsInstall Scanopy Server (Required) Search for "Scanopy Server" in Community Applications or template list Configure the WebUI port (default: 60072) Click Apply Wait for the container to start and initialize the database Install Scanopy Daemon (Required) Search for "Scanopy Daemon" in Community Applications or template list IMPORTANT: Set SCANOPY_SERVER_TARGET to your Unraid server IP The daemon requires --privileged and --network=host to scan the network Click Apply Access the WebUI Navigate to http://YOUR-UNRAID-IP:60072 Initialize your network with seed data Click the discovery button to start scanning ConfigurationScanopy Server Parameter Default Description WebUI Port 60072 Port to access the Scanopy web interface Database PostgreSQL Automatically configured with docker-compose Log Level info Logging verbosity (trace, debug, info, warn, error) Scanopy Daemon Parameter Environment Variable Default Description Server Target SCANOPY_SERVER_TARGET Required IP address of your Unraid server running Scanopy Server Server Port SCANOPY_SERVER_PORT 60072 Port the Scanopy server is listening on Daemon Port SCANOPY_DAEMON_PORT 60073 Port for daemon to listen on Daemon Name SCANOPY_NAME scanopy-daemon Human-readable name for this daemon Concurrent Scans SCANOPY_CONCURRENT_SCANS 15 Max hosts to scan in parallel Heartbeat Interval SCANOPY_HEARTBEAT_INTERVAL 30 Seconds between heartbeat updates Log Level SCANOPY_LOG_LEVEL info Logging verbosity Performance TuningThe SCANOPY_CONCURRENT_SCANS setting controls how many hosts are scanned simultaneously: Low-resource systems (Raspberry Pi): 5-10 Developer laptops: 15-20 Docker containers: 10-30 (depends on memory limits) Servers/Unraid: 25-50 If you experience high memory usage, reduce this value. Docker Socket Access (Optional but Recommended)To enable enhanced Docker service discovery: Edit the Scanopy Daemon container Add volume mapping: /var/run/docker.sock → /var/run/docker.sock This allows the daemon to detect: Container names and metadata Service-to-container relationships Internal Docker networks Container ports and exposed services Usage GuideStarting Your First DiscoveryAccess the WebUI at http://YOUR-UNRAID-IP:60072 A host entry will appear for your daemon Click the Discovery button to start scanning Note: Discovery can take 5-10+ minutes depending on subnet size and network mask Discovery ProcessThe daemon will: Scan all IPv4 addresses on connected subnets Detect running services using pattern matching Map network interfaces and subnet relationships Identify infrastructure services (DNS, gateways, proxies) Network OrganizationSubnets: Automatically created during discovery Groups: Create logical connections between services (e.g., web app → database) Consolidate Hosts: Merge duplicate host entries that represent the same physical device Infrastructure Services: Automatically flags DNS, gateway, and proxy hosts Visualization CustomizationAnchor Points: Click edges to change connection points on nodes Subnet Sizing: Drag subnet boundaries to resize Layout: Drag hosts and subnets to organize your topology Changes persist across sessions Multi-VLAN SetupTo map networks across VLANs: Deploy a Scanopy Daemon on a host in each VLAN Configure each daemon's SCANOPY_SERVER_TARGET to point to your server Run discovery from each daemon Use the Consolidate feature to merge hosts detected from multiple perspectives NOTE: If you network setup allows to have UNRAID reach out to every other VLAN then this will work out of the box Detected ServicesScanopy automatically detects 50+ services including: Media: Plex, Jellyfin, Emby Home Automation: Home Assistant, Philips Hue Bridge Virtualization: Proxmox, Docker, Kubernetes Network: Pi-hole, AdGuard Home, Unifi Controller, pfSense, OPNsense Storage: Synology, QNAP, TrueNAS, Nextcloud Monitoring: Grafana, Prometheus, Uptime Kuma Reverse Proxies: Nginx Proxy Manager, Traefik, Cloudflared For the complete list, see the service definitions. TroubleshootingDaemon Can't Connect to ServerVerify SCANOPY_SERVER_TARGET is set to the correct IP Check that port 60072 is accessible (firewall rules) Ensure both containers are on the same network or can communicate High Memory UsageReduce SCANOPY_CONCURRENT_SCANS value Start with 10-15 and adjust based on available resources Discovery Takes Too LongThis is normal for large subnets (e.g., /24 = 254 hosts to scan) Adjust SCANOPY_CONCURRENT_SCANS higher if you have resources Service Not DetectedCheck if the service is in the supported list Open an issue on GitHub to request new service detection Container Won't Start (Daemon)Ensure the container has --privileged flag enabled Verify --network=host is set Check Unraid logs: docker logs scanopy-daemon Privacy & SecurityAll data is stored locally in PostgreSQL on your Unraid server No data is sent to external services Communication between daemon and server occurs over your local network only The daemon requires privileged access to scan network interfaces SupportIf you need help or encounter issues, please post in this thread with: Unraid version Scanopy Server version (check container logs) Scanopy Daemon version (check container logs) Description of the issue Relevant logs (use docker logs scanopy-server or docker logs scanopy-daemon) Network setup (e.g., multiple VLANs, subnet sizes) For bugs or feature requests, you can also open an issue on the GitHub repository. FAQQ: Does this work with IPv6? A: Not currently. Future plans include collecting IPv6 addresses during discovery, but full IPv6 subnet scanning will not be supported. Q: Can I map multiple VLANs? A: Yes! Deploy a daemon on a host in each VLAN. Use the Consolidate feature to merge duplicate host entries. Q: Is my data sent anywhere? A: No. All data stays local on your Unraid server. No external communication occurs. Q: How do I add a service that's not detected? A: Open an issue on GitHub with details about the service. Q: Can I run multiple daemons? A: Yes! This is designed for multi-VLAN environments. Each daemon gets its own name and reports to the same server. ChangelogVersion 1.3.0 Update variables to match new update Add new Push/Pull mechanism for daemon Version 1.2.0 Project renamed from Netvisor to Scanopy Version 1.1.0 Logo update Support thread link update Version 1.0.0 (Initial Release) Scanopy Server template Scanopy Daemon template Automatic network discovery Interactive topology visualization Support for 50+ service types Multi-daemon/Multi-VLAN support LinksGitHub: https://github.com/mayanayza/netvisor Template Repository: https://github.com/stefan-matic/unraid-templates Service Definitions: https://github.com/scanopy/scanopy/tree/main/backend/src/server/services/definitions
  7. The problem for me was `DASHDOT_GPU_LABEL_LIST = brand,model,memory` without spaces like in the example. The GPU worked after that. Also make sure you're using the nvidia tag `mauricenino/dashdot:nvidia`
  8. xdotool lets you simulate keyboard input and mouse activity, move and resize windows, etc. It's not installed on Unraid, it's on your own computer to simulate clicks and keyboard input. You should run it in your linux terminal. If you use MacOS xdotool should work natively, if you're on Windows then maybe WSL or some other hack to get it working. xdotool-demo.mp4
  9. Since adding a bunch of Traefik labels to every container is a pain I created a simple script with xdotool to automate the process The script is available HERE You need to install xdotool to run it. There is currently a bug so for now mouse clicks must be used. Therefore you need to find the right coordinates yourself like explained in the script header. Not sure if it works on Windows natively yet, but I guess you can just use WSL to run it. Have fun with all the time you saved adding labels manually. xdotool-demo.mp4
  10. I'm trying to automate the creation of Traefik labels for my containers using the `xdotool` When the `Add another Path, Port, Variable, Label or Device` is opened and the keyboard arrow down is used to select the Config Type: Label it breaks the Key and Value fields where they only accepts numbers but not any other letters: The issue is present in both Chrome and Firefox.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.