McCann Tech

View Original

UniFi Gateways Explained as Simply as Possible

Originally Posted: November 29th, 2023
Last Edited: August 31st, 2024


UniFi Gateways Explained as Simply as Possible

Categories

There are two categories: Gateways and Cloud Gateways.

Gateways are just routers and nothing else. These are managed by a Cloud Key or self-hosted UniFi Network application. They don't run any software, and don't do anything besides act as a firewall/gateway/router.

Cloud Gateways are routers that run software. At a minimum they run the UniFi Network application. They manage themselves and other UniFi switches and APs. They can't be managed by a Cloud Key or self-hosted controller*.

  • These have been called "UniFi OS Consoles" or "Gateway Consoles" and other terms, but Cloud Gateway is the current branding.

  • Some of these run other UniFi software like Protect, Talk, Access, or Identity.

  • *Besides the new UniFi Express (UX), which can be used as an access point. There is always an asterisk on everything.

Controller is a general term for a device that runs the UniFi Network application. It can be self-hosted on your own hardware, a Cloud Key, a cloud server, or a UniFi Cloud Gateway™ like the Dream Machine Pro or UniFi Express.

UniFi Gateways

Security Gateway (USG) = Legacy. Discontinued, old and slow

  • Released: 2014

  • Three gigabit RJ45 and remappable, so you can have a 2nd LAN or a 2nd WAN.

  • Missing most new security, routing, and VPN features

  • Under 100 Mbps for VPN or IDS/IPS

Security Gateway Pro (USG-Pro) = Legacy. Discontinued, rackmount USG

  • Released: 2016

  • Rackmount, dual WAN, dual LAN.

  • Two gigabit SFP/RJ45, two gigabit RJ45.

  • Missing most new security, routing, and VPN features

  • A bit more speed, but still old and slow.

Gateway Lite (UXG-Lite) = New USG

  • Released: 2023

  • One gigabit WAN and one gigabit LAN ports, no dual-WAN support

  • Much faster than USG, supports most of the latest security, routing, and VPN features.

  • Up to 1 Gbps IDS/IPS

Gateway Max (UXG-Max) = A more powerful new USG

  • Released: 2024

  • One 2.5 Gbps WAN and four 2.5 Gbps LAN ports, one remappable as 2nd WAN

  • A larger, faster, more capable UXG-Lite for multi-gig networks

  • Up to 1.5 Gbps IDS/IPS

Gateway Pro (UXG-Pro) = New USG-Pro

  • Released: 2022

  • Rackmount, dual WAN, dual LAN.

  • Two gigabit RJ45, and two 10 Gbps SFP+

  • Up to 3.5 Gbps IDS/IPS

Gateway Enterprise (UXG-Enterprise) = Enterprise Fortress Gateway without a built-in controller

  • Released: 2024

  • Rackmount, dual WAN, dual LAN.

  • Two 2.5 Gbps RJ45, two 10 Gbps SFP+, two 25 Gbps SFP28

  • Up to 23.5 Gbps throughput, or 12.5 Gbps with IDS/IPS enabled

Image credit: ui.com

UniFi Cloud Gateways

Small Cloud Gateways

Express (UX) = Controller + Gateway + Wi-Fi

  • Released: 2023

  • One gigabit WAN and one gigabit LAN ports

  • Does not support IPS/IDS, and some security features aren't in current firmware

  • Multiple UX can join together for a wired or wireless mesh network

  • It has two modes. The UX can be:

    • A gateway and controller for a normal UniFi network with up to 5 other switches and APs

    • An access point in an existing UniFi network

Dream Router (UDR) = Controller + Gateway + 4-port switch (2 PoE out) + Wi-Fi

  • Released: 2022

  • One gigabit WAN, four gigabit LAN ports with two PoE out

  • Can also run Protect, Talk, Access, and Connect -- but only two at a time

  • Manages up to 15 or so UniFi Network devices, less if you’re using Protect or another application

  • Throughput limited with IPS/IDS enabled to around 700 Mbps

  • Protect video storage = internal 128 GB SSD and SD card slot

Dream Machine (UDM) = Controller + Gateway + 4-port switch + Wi-Fi

  • Released: 2019

  • One gigabit WAN, four gigabit LAN ports

  • No PoE. No other UniFi applications

  • Manages up to 40 or so UniFi Network devices

  • Not listed in the Cloud Gateway category of Ubiquiti's store. Still for sale and supported, but may be discontinued soon

Cloud Gateway Ultra (UCG-Ultra) = Controller + Gateway + 4-port switch

  • Released: 2024

  • One 2.5 Gbps WAN, four gigabit LAN ports

  • No PoE. No other UniFi applications

  • Manages 30 or more UniFi Network devices

  • Throughput limited by backplane to 1 Gbps - with or without IDS/IPS

Cloud Gateway Max (UCG-Max) = Controller + Gateway + 4-port switch

  • Released: 2024

  • One 2.5 Gbps RJ45 WAN, four 2.5 Gbps RJ45 LAN ports

  • Runs all UniFi applications, comes with no, 512 GB, 1 TB, or 2 TB of storage

  • Manages 30 or more UniFi Network devices, cameras, phones, etc

  • Full 2.5 Gbps of throughput, up to 1.5 Gbps with IDS/IPS enabled

Rackmount and Large Cloud Gateways

Dream Machine Pro (UDM-Pro) = Controller + Gateway + 8-port switch

  • Released: 2019

  • Dual-WAN, rackmount, with two 10 Gbps SFP+, one gigabit RJ45 WAN, and eight gigabit RJ45 LAN. Ports 8-11 are remappable to WAN/LAN.

  • Runs all UniFi applications and can be NVR for UniFi Protect

  • Manages up to 100 or so UniFi Network devices, and 1000+ clients

  • Protect video storage = single 3.5" HDD bay

Dream Machine SE (UDM-SE) = Controller + Gateway + 8-port PoE switch

  • Released: 2022

  • Adds PoE, 128 GB SSD, and one RJ45 upgraded to 2.5 Gbps compared to UDM-Pro

  • Dual-WAN, rackmount, with two 10 Gbps SFP+, one 2.5 Gbps RJ45, and eight gigabit RJ45. Ports 8-11 are remappable to WAN/LAN.

  • Runs all UniFi applications and can be NVR for UniFi Protect

  • Manages up to 100 or so UniFi Network devices, and 1000+ clients

  • Protect video storage = single 3.5" HDD bay + internal 128 GB SSD

Dream Machine Pro Max (UDM-Pro-Max) = A more powerful UDM-Pro/UDM-SE

  • Released: 2024

  • Adds 128 GB SSD, one RJ45 upgraded to 2.5 Gbps, 2nd HDD bay, double the RAM, and higher CPU performance compared to UDM-Pro

  • Dual-WAN, rackmount, with two 10 Gbps SFP+, one 2.5 Gbps RJ45, and eight gigabit RJ45. Ports 8-11 are remappable to WAN/LAN.

  • Runs all UniFi applications and can be NVR for UniFi Protect

  • Manages up to 200 or so UniFi Network devices, and 2000+ clients. A faster CPU and double the RAM allow for up to 5 Gbps of IDS/IPS throughput, and double the management and client limits of the UDM-Pro/SE.

  • Protect video storage = two 3.5" HDD bays with RAID mirroring + internal 128 GB SSD

Dream Wall (UDW) = Controller + Gateway + 16-port PoE switch + Wi-Fi

  • Released: 2023

  • Dual-WAN, with two 10 Gbps SFP+ and unique wallmount enclosure with touchscreen for status/management

  • Lots of PoE (4 PoE, 4 PoE+, 4 PoE++, 420W budget) and dual power supplies

  • Manages up to 100 or so UniFi Network devices, and 1000+ clients

  • Protect video storage = internal 128 GB SSD + SD card slot with 512 GB card pre-installed

Enterprise Fortress Gateway (EFG) = Network Controller + High-Throughput Gateway

  • Released: 2024

  • Dual-WAN, rackmount, with two 2.5 Gbps RJ45, two 10 Gbps SFP+, and two 10 Gbps SFP28

  • Runs UniFi Network, but no other UniFi applications

  • Manages up to 500 or so UniFi Network devices, and 5000+ clients. An 18-core ARM CPU and 16 GB of RAM allow for up to 23.5 Gbps of throughput, or 12.5 Gbps with IDS/IPS enabled.

  • Supports “NeXT AI” SSL/TLS interception

UniFi Gateway Comparison Charts

For those that prefer more detail, I’ve made some more in-depth comparisons. See the rest of my latest UniFi Network Comparison Charts, and my UniFi Gateway Comparison for more details.

Standalone just-a-router Gateways

UniFi USG and UXG Comparison

All Cloud Gateways

UniFi Cloud Gateway (UniFi OS Console) Comparison

All Current Gateways

Comparison of all current UniFi Gateways — doesn’t include the UDM, USG, or USG-Pro.

Unlisted Gateways — USG, USG-Pro, and UDM

Comparison of the unlisted UDM, USG, and USG-Pro.