User Manual

ManualsBrandsUbiquiti Networks ManualsComputers & AccessoriesUbiquiti UniFi Switch 48 Managed Gigabit Switch with SFP+ (US-48)

UniFi Controller User Guide

Ubiquiti Networks, Inc.

Chapter 3: Using the UniFi Controller Software

Actions Click a button to perform the desired action:

• Edit Click

EDIT

to make changes to the network

settings. Go to “Create or Edit a Network” on page

26.

• Delete (Not available for the default network.) Click

to remove the network.

Create New Network Click

to add a network.

Go to “Create or Edit a Network” on page 26.

Create or Edit a Network

• Name Enter or edit the network name.

• Purpose Select the most appropriate description:

- Corporate Corporate networks are appropriate

for networks containing trusted systems. Corporate

networks have no restrictions between them, or from

them to the Internet, by default.

- Guest Guest networks are often used in combination

with the Guest Control feature (refer to “Settings >

Guest Control” on page 32) for limiting access. The

default Guest Control restrictions block authenticated

guests from reaching any private IP subnet (RFC 1918).

- VLAN Only Deploys the configured VLAN ID and

associated configuration to USW.

- Remote User VPN Allows configuring a UniFi

Security Gateway as a remote access PPTP VPN server,

to connect mobile VPN clients. Controller version 5.5

adds L2TP as a second Remote User VPN option.

- Site-to-Site VPN Site-to-site VPNs connect different

networks with an always-on connection and routing

between. Auto, IPsec and OpenVPN options are

available.

- VPN Client Configures a VPN client on the UniFi

Security Gateway to connect to a remote PPTP VPN

server, acting like a mobile client would. Traffic

leaving VPN client interfaces is source NATed to the IP

assigned to the VPN client, so return routing from the

server side isn’t needed.

Note: The Corporate, Guest, Remote User VPN,

Site-to-Site VPN, and VPNClient settings apply to

the UniFi Security Gateway only. The VLAN Only

setting applies only to UniFi Switch products.

After making your selection, follow the instructions for

your selection:

Corporate or Guest Network

• Network Group (Beta) Select the physical interface of

the USG that this network will be associated with: LAN

or LAN2.

• Gateway/Subnet Enter the IP address and prefix size.

• VLAN (Not available for the default Corporate network,

LAN.) Enter the VLAN ID.

• IGMP Snooping Select this option to monitor IGMP

(Internet Group Management Protocol) traffic and

thereby manage multicast traffic.

• DHCP Server Enabled by default. The local DHCP server

assigns IP addresses to DHCP clients on the network.

• DHCP Range Enter the starting and ending IP

addresses of the range in the fields provided.

• DHCP Name Server Configure the name or DNS

(Domain Name System) server setting:

- Auto Enabled by default. When this option is

selected, all clients on the network are assigned the

UniFi Security Gateway’s IP address as their DNS

server. The clients will then use the UniFi Security

Gateway’s caching DNS resolver as their DNS server.

- Manual Select this option to manually select name

servers.

• Name Server 1/2 Enter the IP address of the name

server in each field.

• DHCP WINS Server Select this option to designate

WINS (Windows Internet Naming Service) server(s).

- WINS Server 1/2 Enter the IP address of the WINS

server in each field.