New Idea

Ban endpoints that use Proxies/Tunnels/Torrents

Submitted by - yesterday
Status: New Idea

It would be great if we could ban users for an X amount of time when DPI detects an attempt to use a Proxie, Tunnel or download torrents rather then trying to filter traffic to block it.

Daily Schedule AP on / off

Submitted by - Thursday
Status: New Idea

I would like to purpose a new function, to be able to schedule AP to switch off / on. It would be very helpfull, power saving, and less radiation for everybody if we were able to schedule the time to turn off the AP at night as they are unnecessarily broadcasting and turn on again in the morning.

Display IPV6 adress in Gateway WAN properties

Submitted by - yesterday
Status: New Idea

Quite a simple request imho:

It would be alot more convenient to find the USG's WAN IPV6 adress as part of the properties displayed in the GUI than having to SSH into it and then enter "show interfaces" or something alike.

Maybe even any other device and/or client IPV6 adresses could be displayed where there are only IPV4 adresses available (referring to controller version 5.8.24).

Disney Circle like features in USG/Unifi

Submitted by - Thursday
Status: New Idea

Would be nice to be able to turn on/off all kids devices by schedule, on demand, or after a number of hours used. Blocking of content (open-DNS) for kids... Possibly limit some sites but allow others (turn off facebook, allow learning channel)

 

Disney's Circle is pretty good.. But would be nice to be integrated into Unifi.. 

USG disable Port forwarding instead of Delete

Submitted by - 2 weeks ago
Status: New Idea

It would be handy sometime to Disable a Port forwarding rule (for later use), instead of Deleting it.

Disable_rule.jpg

IPS Dashboard should call out Geo-IP Blocked Countries

Submitted by - a week ago
Status: New Idea

Right now the countries on the map are uniform, but it would be great if the map called out Geo-IP Blocked countries.

 

Something like this...

Geo-IP.png

REQUEST: Restrict Clients of WLAN by own schedule

Submitted by - Friday
Status: New Idea

Within the controller there is an option to restrict the usage of the WLAN bby utilising the schedule option. This is great for an SME enterprise etc but as a home user is a little too high level.

 

I'd like to request the ability that in addition to the higher level WLAN restriction, that you can also limit individual clients by schedule; which my £30 router from my ISP can do. My scenario is that on one of the WLAN's I have two kids of varying ages with multiple devices and rather than restrict the WLAN @ 7pm for example, I would like to allow another client to access the WLAN until 9pm etc.

 

Request for Separate Guest Portal for different Wireless Networks

Submitted by - 2 weeks ago
Status: New Idea

Currently, We have only one Guest Portal corresponding to Wireless Networks with Guest Policy turned on.

 

I'd like to set my Wireless Networks(within a wireless AP):

SSID1(Guest Policy on) to use GUEST POLICIES with Authentication method: Hotspot

SSID2(Guest Policy on) to use GUEST POLICIES with Authentication method:  Facebook Wi-Fi

SSID3(Guest Policy on) to use GUEST POLICIES with Authentication method: Simple password

SSID4(Guest Policy on) to use GUEST POLICIES with Authentication method: No authentication

 

Is that possible?

 

This is my idea: Request for Separate Guest Portal for different Wireless Networks

 

best regards,

 

 

SSL Certificate change in UI

Submitted by - Monday
Status: New Idea

I think now when google have some restrictions for un protected sites and prices of ssl you should think about how to change SSL certificate easy way from UI.

 

Please deliver ASAP.  For me it is MUST. When i had windows controller i replaced keystore file but for CloudKey this is very big pain.

Support DNS-over-TLS

Submitted by -
Status: New Idea

Cloudflare recently published their DNS resolver openly under 1.1.1.1:

https://blog.cloudflare.com/announcing-1111/

https://blog.cloudflare.com/dns-resolver-1-1-1-1/

 

For fully preventing plaintext DNS queries over the public internet, one would require a DNS resolver to support DNS-over-TLS or DNS-over-HTTPS. As such, it would be great if USG could support DNS-over-TLS: https://developers.cloudflare.com/1.1.1.1/dns-over-tls/

Allow us to create own DPI Filters

Submitted by - 2 weeks ago
Status: New Idea

I would love to edit the DPI filters, so we can create costum categories like log traffic for Website x or log traffic for specified IPs/ports. This would allow us to create more meaningful categories and bring out its full potential for data logging Man Happy

 

Support DNS-over-HTTPS

Submitted by -
Status: New Idea

Cloudflare recently published their DNS resolver openly under 1.1.1.1:

https://blog.cloudflare.com/announcing-1111/

https://blog.cloudflare.com/dns-resolver-1-1-1-1/

 

For fully preventing plaintext DNS queries over the public internet, one would require a DNS resolver to support DNS-over-TLS or DNS-over-HTTPS. As such, it would be great if USG could support DNS-over-HTTPS: https://developers.cloudflare.com/1.1.1.1/dns-over-https/

Dual WAN speed tests

Submitted by - Thursday
Status: New Idea

I have two similar high-speed ISPs connected a USG. I would like to see the speed test do both WAN ports. 

And better metrics to show what load balancing is doing.. How much traffic is actually going to WAN 1 vs. WAN2.

 

Hardware and Software - Lifecycle Information

Submitted by - Thursday
Status: New Idea

Hello everyone!

I love ubnt products, I really do, but the provided information about lifetime cycles are really "meh".

On the hardware side like end-of-sale with replacement suggestions, end-of-life dates, a (maintained) legacy section on the website... and not less important the software side.

For example: How long is the current LTS branch of the UniFi controller supported and thus receives updates?
It would be really helpful if such information would be published.

What is your opinion about that?

Thank you,
regards
Martin

Downlink arrow in UI

Submitted by - 2 weeks ago
Status: New Idea

UI shows uplink ports with a little fine arrow. I would like to have a similar arrow pointed downwards for downlink ports Smiley Happy

SSL key & cert upload through controller GUI / Lets Encrypt integration

Submitted by -
Status: New Idea

It would be nice to be able to upload SSL keys & certificates to the controller through the GUI so that the warnings caused by using the default self-signed certificate don't show when connecting to the controller without having to muddle around in the CLI. It would also be nice if the Lets Encrypt CA was directly intergrated into the controler so that the controler could automaticly request new certificates when needed.

Timestamps in alert emails

Submitted by -
Status: New Idea

I regularly get alert emails that show me several events. Usually these are failover-related events. It is currently not clear which of these events is the latest one (bottom or top?). Some indication regarding *when* these events happened would be useful.

Auto start Controller

Submitted by - Wednesday
Status: New Idea

Hello,

 

I would really like the option, either during installation or afterwards, to configure the Controller to auto-start on Windows startup - before user login.

 

I realize there are instructions online for installing the Windows service component of the controller but this becomes a PITA when it's time to upgrade the controller software. You have to remember to go in and disable the service before upgrading and then issue the commands to reinstall the service each time the Controller is upgraded.

 

I've also found that some people had success scheduling the Controller to auto-start using Windows Task Scheduler, however I've had mixed results with that. Right now it's working by running the command: "java -jar "C:\Users\*username*\Ubiquiti UniFi\lib\ace.jar" ui" but I have no idea if running it like that is supported and will cause issues down the road.

 

There really should be an easy and officially supported way to either enable or disable the controller from starting with Windows, and this should be compatible with Windows, Java, and Controller upgrades.

Detailed Firewall Inbound and Outbound Connection Logs

Submitted by -
Status: New Idea

It would be nice to see firewall logs that display all active and historical connections/states to the USG.

There could be a filterable list including active and previous connections/states, broken down by inbound and outbound IP, port, protocol, action (blocked or allowed by firewall rule), etc. and some additional statistics based on each connection?

It could tie into the IPS and IDS section to allow more detailed admininstration and analysis to easily see what is going on with your network. I previously used pfSense and loved the reporting that it provided. I also integrated Squid and Snort and it downloaded their set of pre-defined rules and allowed you to customize them as well.

Here is a screenshot I found online of a sample of pfSense firewall logs since I haven't used pfSense in over a year now.

pfsense-connections.jpg

Thank you!

WAN 2 Link in Dashboard

Submitted by -
Status: New Idea

I'm using dual ISPs - one primary at 25M down/5M up and a secondary at 5M down/2M up.

 

 

The dashboard offers no indication of link status for the other WAN link. You can't see if it's up nor can you execute a speed test on it.

 

Would like the ability to be able to see the link status for both WAN links, as well as the ability to execute a speed test on both WAN links as well.

 

This is what it looks like even with a 2nd WAN link enabled for load balancing:

 

Screenshot 2018-04-28 14.20.46.png

 

Should look something more like this when you have 2nd WAN connected:

 

Screenshot 2018-04-28 14.20.46 2.jpg

 

That way I know there's a 2nd WAN interface that's electrically active plus I can actually perform latency and throughput tests on it.

 

Ideally I should be able to do this regardless if WAN 2 is set to failover or load balanced.

 

 

Dave