Hi guys! I’m new to the community and new to Ubiquiti’s networking gear. I have switched to the EdgeMAX and UniFi platforms for my home network. I currently use the EdgeRouter Lite as my firewall/border router connected to fiber on eth0. DPI is enabled on the EdgeRouter Lite with hardware offloading. I use eth2 on the EdgeRouter for the DMZ network (172.16.x.x/24). The DMZ network is uplinked from an EdgeSwitch which has my servers connected (Have to run the cable from my office to the EdgeRouter still). I have a UniFi USG that connects to eth1 of the EdgeRouter on a 10.x.x.x/30 from the WAN port. The USG has the NAT rules removed and is routing my private networks to the EdgeRouter. DPI and firewall rules are in-place with hardware offloading on the USG. On the LAN side of the USG, I have a UniFi switch with five VLAN’s (192.168.x.x/24 networks), UniFi Cloud Key, and one UniFi AP AC Pro. I love this setup and the Ubiquiti gear.
I would like to see the Unifi USG be usable as a router on any interface without NAT. I current use an EdgeRouter Lite as my main firewall with the USG on the LAN side of the EdgeRouter Lite with Unifi Switch and AP's behind the USG. Love the DPI on both the EdgeRouter Lite and USG but do not like the double NAT. I would love a way to control this from the Unifi controller CloudKey and use the USG as a router. I know there are work arounds but with changes made and provisioning this is overwritten.