Basic Configuration
Ensure DNS/hosts are setup for Unifi controller. Read Example Unifi VLAN for a in-depth walkthrough.
Router Configuration
Forward traffic to Unifi Controller for AP to be managed - will be located slightly differently for each router.
Note
These are only needed if not using VLAN separation.
Allow AP management to controller.
Firewall/NAT › Firewall Policies › WIFI_IN › Actions › Edit Ruleset › Add New Rule
Description
AP Management
Source
IP
Destination
CONTROLLER
Destination Port
8443 8080
Protocol
TCP
Action
ACCEPT
Updated: None
Allow AP STUN to controller.
Firewall/NAT › Firewall Policies › WIFI_IN › Actions › Edit Ruleset › Add New Rule
Description
AP STUN
Source
IP
Destination
CONTROLLER
Destination
3478
Protocol
UDP
Action
ACCEPT
Updated: None
Enable Unifi Controller Assignment in EdgeOS or DHCP Option 43
This should be enabled for subnets in which the AP will reside. This will allow the AP to be auto-detected by the controller.
See Setup DHCP & DNS for VLANs for setting up the Unifi Controller
option for DHCP on EdgeOS.
For non-EdgeOS routers, this can be enabled in using option 43
.
option space ubnt;
option ubnt.unifi-address code 1 = ip-address;
class "ubnt" {
match if substring (option vendor-class-identifier, 0, 4) = "ubnt";
option vendor-class-identifier "ubnt";
vendor-option-space ubnt;
}
subnet 10.10.10.0 netmask 255.255.255.0 {
range 10.10.10.100 10.10.10.160;
option ubnt.unifi-address {UNIFI CONTROLLER IP};
option routers 10.10.10.2;
option broadcast-address 10.10.10.255;
option domain-name-servers 168.95.1.1, 8.8.8.8;
# ...
}