User Manual

ManualsBrandsUbiquiti Networks ManualsNetworkingUS-24-250W

UniFi Controller User Guide

Ubiquiti Networks, Inc.

Chapter 3: Using the UniFi Controller Software

• DHCP Lease Time Enter the DHCP lease time in

seconds. The IP addresses assigned by the DHCP server

are valid only for the duration specified by the lease

time. Increasing the lease time will extend the time

clients retain their IP address in absence of the DHCP

server. However, any network changes will take just over

half the lease length to apply to all clients. In networks

with high rates of device churn, much shorter lease

lengths should be used to prevent exhausting the DHCP

IP address pool.

• DHCP Guarding Disabled by default. Select this option

to detect and block unauthorized DHCP servers.

- Trusted DHCP Server IP Enter the IP address of the

trusted DHCP server.

• Save Click

to apply changes.

• Cancel Click to discard changes.

VLAN Only

The UniFi Switch is required for this option.

• VLAN Enter the ID number of the VLAN. Devices

belonging to the same VLAN communicate as if

they were attached to the same wire. Every VLAN ID

represents a different VLAN. The VLAN ID range is 2 to

4009.

• IGMP Snooping Select this option to monitor IGMP

(Internet Group Management Protocol) traffic and

thereby manage multicast traffic.

• DHCP Guarding Select this option to detect and block

unauthorized DHCP servers.

- Trusted DHCP Server IP Enter the IP address of the

trusted DHCP server.

• Save Click

to apply changes.

• Cancel Click to discard changes.

Remote User VPN

The UniFi Security Gateway is required for this option.

• IP/Subnet Enter the IP address and prefix size.

• IP Pool The starting and ending IP addresses of the

pool automatically appear after you complete the

IP/Subnet field. These are the IP addresses assigned to

connected VPN clients.

• Name Server Configure the name or DNS (Domain

Name System) server setting.

- Auto Enabled by default. Name servers are

automatically assigned by the DHCP server.

- Manual Select this option to manually select name

servers.

• Name Server 1/2 Enter the IP address of the name

server in each field.

• WINS Server Select this option to designate WINS

(Windows Internet Naming Service) server(s).

- WINS Server 1/2 Enter the IP address of the WINS

server in each field.

• RADIUS IP Enter the IP address of the RADIUS server,

which is used for authentication.

• RADIUS Password Enter the password of the RADIUS

server.

• Site-to-Site VPN Enabled by default. The remote user

can access the site’s resources as well as the resources of

any other VPNs connected to the site. If you disable this

option, then the remote user can only access the site’s

resources.

• Save Click

to apply changes.

• Cancel Click to discard changes.