[jscholes]

I use a Ubiquiti Dream Machine as the main router, connected to my ISP modem which is in bridge mode. I then have a couple of UniFi access points in key places around the house, wired with ethernet back to the Dream Machine, using PoE injectors because I haven't yet needed a switch.

Honestly, it works great. Getting IPv6 functional was a case of checking one box in the UI, I can monitor and control tons of stuff in the iOS app (although an account is needed for that AFAIK), and I have zero complaints about LAN or WAN performance. I very rarely have to do anything with it, sans logging in to update the firmware on the devices.

Having said that, I used to be stuck with an ISP router that forced its own NAT (no bridge mode), and that itself was behind carrier-grade NAT. With that setup, the Dream Machine didn't work so well... although in fairness, nor did other devices and protocols relying on LAN discovery like Sonos or AirPlay. But the Dream Machine setup process specifically was really bad; It performed an Internet connection check that clearly couldn't work its way through the multiple NAT layers. I had to connect it to someone else's DSL just to get past the Internet setup screen, which I don't expect from a device that costs hundreds of dollars.

So, pros and cons. Overall, the consensus online seemed to be that the Security Gateways are better devices software-wise, but that they also just can't keep up with modern Internet speeds. So I'm happy.