When using the WAN1/WAN2 failover advance configuration, it would be helpful to allow alerts for when WAN1 fails over to WAN2 and back again so that you administrators can know when this failover occurs.
We use a full UniFi network with USG, switches and WAP's accessed remotely via the Cloud Key. The deployments are located in West Africa 3,000 miles away from the Head Office in the UK.
We have DPI enabled on the USG and can see any network misuse when it occurs, which unfortunately is frequently. This functionality is great, but I have 2 requests to expand on the capability.
1. I'd like to be able to export DPI stats so I can create a usage report over time to show usage pattern
2. I have been informed of the ability to block Categories in the DPI settings on the controller, however I'd like to block certain types of content within the category. For example in Streaming Media, Netflix will not be work related, whereas YouTube might be. At the moment I believe I can only block the category.
I have a UniFi AP Pro AC. I want to be able to setup guest networks where guest cannot see each other or talk to each other when connected to my UniFi access point. If I enable "Guest Policy", they cannot talk to each other (most Layer 3 and above traffic is disabled), however, ARP broadcast traffic is still allowed so you can still see other guests on the wifi network. This is not sufficient in my opinion. As I explained in this forum post (https://community.ubnt.com/t5/UniFi-Wireless/AP-Isolation/m-p/2205370/highlight/true#M272527), it is possible to get full isolation, temporarily, by manually modifing the hostapd configs on the UniFi AP to contain the line "ap_isolate=1". This solution is hacky to do manually as it is tedious if you are deploying a bunch of APs and it is unlikely to survive configuration updates or firmware upgrades. The biggest issue is that there appears to be an ACL that prevents devices upstream from the AP (like the router) from accessing any devices connected to a wifi network that has "Guest Policy" enabled.
So in short, my feature request is:
Whenever "Guest Policy" is checked, please automatically add the "ap_isolate=1" line to the corresponding hostapd configuration so that guests on the network will have absoluately no ability to see or interact directly with each other on that wifi network.
Alternatively, if the above solution won't work for some reason (that I don't see), please add an option into the UniFi controller that allows users to turn on this full AP isolation.
As an update, I'd also like to see the current ACL's go away. In particular, the Deny ALL inbound ACL is problematic, as there are lots of cases where a user may want to be able to access devices on the guest network from a trusted network. That should be left to the router. The hostapd config is enough to prevent devices on the wifi network from seeing or talking to each other.
Please consider adding (in relation with timebased DPI for kids) an extra category for adult related stuff.
In edgerouter Lite is see more DPI categories like adult which i use for office and kids routers so they are protected a little bit more.
Categrory is allready available in edgerouter i guess it won't be to hard to implement here.
Since updating to 5.6.22 our database has been growing several GBs to the point the insights tab will crash the portal when clicked on. I'd like to request the ability to disable "Neighboring Access Points" as our facility is right next to a major highway and we get thousands of car hotspots an hour. I've attached the original post below. Thank you.
can we get a feature for Controller Redundancy? Meaning if we have a failover site (Which I have) that if the primary controller stops responding, that it will failover to the specified controller either via hostname/domain or ip address?
If possible in the future could the option to run Guest Control on only certain guest networks be added.
For example in my situation I have two guest networks one for staff personal devices which does not need guest control. I also have one for visitors which I would like to use Guest Control for.
It seems often enough that s2s VPN stops routing and needs either a restart of the remote end, or going into the command line and refreshing the vpn that it would be nice to have a button to allow it... Or better yet just make it so it does it automatically if the controller loses contact with a device on the far end.
I'd like to be able to do traffic shaping per VLAN, specificly bandwidth limits.
For instance the guest VLAN wired and wireless only gets X amount of bandwidth no matter how many clients are connected.
Other layer 3 or layer 7 traffic shaping would also be great.
Please connect and adopt a UniFi Security Gateway to enable the dynamic DNS configuration. REALLY ...?
Well i have a better idea... lets do it like this ... as i made the example below. Lets embed the ddns inside.
** for those having only a cloud key and not a usg, and ofcourse user friendly DynDNS Client be added to the Controller
Request for a USG feature, where i can control access to websites/URLs (e.g. youtube) in DPI groups and assign restrictions to clients and not just networks.
it would also be very nice to control access through timeslots or better through client usage.
Often improper shutdowns on a Unifi controller can lead t oa dirty mongo database...thus preventing the Unifi controller service from starting. For local servers cloud hosted servers we can SSH in and run the --repair command.
Since Cloud Keys seem to suffer from improper shutdowns at a much higher rate, there are a lot of issues with them failing to start the Unifi controller. However the local Cloud Key web admin is still available.
We can SSH in and run the --repair command...but it sure would be nice to have a button in the GUI to repair it. Or perhaps an auto-repair function after the CK detects it just had a dirty shutdown.
Having most of my remote cloud keys going offline since 0.8.2 and asking customer to mains reset only works half of the time, then they go offline again after a few days.
Having travelled to some sites, I have been able to logint o the controller via local LAN and tell it to restart. Then it comes back up on Unifi server.
So, whilst there are CKs going offline that need proper restart rather than mains power cycle, it would be very useful to program in a regular restart function. Hour/Day/Week/Month etc.
Also some kind of Ping Watchdog so that if it loses comms with the Unifi Server, it automatically restarts.
As the entire point of using the cloud key is for remote access and maintainance of APs, it's become entirely useless since Dec 2017 when this started happening with most of my CKs.
0.8.9 has not resolved it so we need these auto-restart functions ASAP PLEASE!!
- mbello on: Request - A gui button to restart s2s VPN
- THZ on: UAP-AC-PRO LED light
- lightingman117 on: Request - UniFi Controller Software - Heatmap with fake/ghost AP's in MAPS tab
- hcc_union on: REQUEST: UniFi AP Management VLAN
- JayVee on: HTTP Request option alongside Email
- AADIP on: Request: Ability to Edit a Map
- Hsd1965 on: Add ability to change ntp server in gui
- jvleonar on: Aircube AC UniFi Version
- waterside on: usg and edgerouter pro
- Dubz on: Request
- Default sorting of controllers at Unifi website
- Wifi time schedule issue
- Per Client Download Throughput graphs
- Dashboard: WAN green/red circle should be about WAN connection, not WAN device
- Create limited hotspot operators
- Unifi Hotspot manager bulk delete vouchers
- Bandwidth limitation over 100 Mbit/s
- Certify more than just three devices with Wi-Fi.org Wi-Fi Alliance and increase transparency.
- Schdule update
- Request - A gui button to restart s2s VPN