UniFi Guest Network Explanation

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hi I'm Willie welcome to my channel thank you for being here I appreciate each and every one of you and what we're going to take a look at in this video is this is 2023 we're going to take a look at what the guest check box is checked box is because there's a couple places to do it due in unify so what we're going to do is we're going to hop over here to my UDR this is true what I'm going to show you is true no matter which version of unify you are on so first let's start with the networks and what I'm going to do is I'm going to take a look at this guest Network right here and when I open it up now in this version this is called isolation right in some of the versions it's called guest but it does the exact same thing so your guest hotspot profile will automatically be applied to this guest Network connected clients will be isolated from all other internal networks these restrictions can be modified in your guest hotspot profile now here's the thing so what does that mean that means that VLAN 4 these 192 168 two IP addresses cannot talk to anything in the 192 168 66 Network the 192 168 4 Network or any of the other networks it means it sets up a default set of firewall rules that separate that traffic and do not allow it to mingle so that's the first place and and we always use these together when we can if we are using a different Gateway and unify we still do this same thing right we put firewall rules in place to keep those things from from mingling then on the Wi-Fi now I don't uh think I have one here that is I haven't gotten that far right so under Advanced now on an older version of unify it's going to say guest Network this one says hotspot portal and what it does when you put the hotspot portal on the Wi-Fi side of the house is the access points themselves actually have firewalls built in and so now those rules are not only operating on the layer 3 device the unify router that's routing between the vlans it's also on the access points so it's really from end to end that this network separation is happening so I can apply this and it it tells you right there we have applied your hotspot portal of this wi-fi Name by default portal guests will be isolated from other guests and network resources so if I click on the hotspot portal it's going to take me over to the landing page and it'll show me the guests that are connected and all that all that stuff so I don't have the landing page enabled so where it gets kind of confusing for some folks is that the hotspot portal and those guest rules all kind of bleed together now if we come back into our settings and we go into firewall and security we're going to scroll down we're going to take a look at the firewall rules you will see that there are guests firewall rules and this is what that networks tagging that as a guest does the Wi-Fi guest does it at the access point but it you can see that it allows DNS it allows packets to the captive portal and then it drops packets to the restricted subnets which would be you know anything that we specify by default at your RFC addresses right so your 10.0.0.08 which is a ginormous Network your 172.16 through 172.31 slash uh is that slash six I know slash 12 and then you've got uh your 192 168.0.0 16. I think I got those numbers right double check me on that but that's what it does so it's a set of firewall rules and things like that and then if you want to use the landing pages and things like that charge for Wi-Fi make them you know put in a a voucher number right my kids if you've been following me for a long time you know that the kids had the vouchers and they hated that but you can really start controlling some of that guest network with this right if you've got questions about this if you want to see a full-blown setup let me know down in the comments and make sure you give this video a thumbs up make sure you subscribe follow me on all of my social media down below we do have affiliate links if you'd like to support the channel and if you need it Consulting to set up proper firewall rules network security all these things we do more than we can't but if we run into something you want and we can't do it we'll get you to someone who can that's our promise you reach out at willyhowe.com click hire us contact us and someone will be in touch with you as soon as possible once again I'm Willie I want to thank you for being here and as always I'll see you in the next video

Info

Channel: Willie Howe

Views: 17,727

Rating: undefined out of 5

Keywords: unifi, unifi dream machine pro, unifi dream router, udm pro, ubiquiti networks, ubiquiti unifi, unifi guest network, unifi guest wifi, unifi dream machine, dream router, unifi network setup, ubiquiti dream router, cloud key gen2 plus, udm se, unifi controller, unifi dream machine pro se, udm pro se, unifi os 3.0, unifi firewall rules, willie howe, willie howe unifi, willie howe technology

Id: C5hruynnURY

Channel Id: undefined

Length: 5min 19sec (319 seconds)

Published: Wed May 17 2023