UniFi - Network Types


Overview


This article provides information to help users choose between the different types of networks that are available for configuration within the Settings > Network section of the UniFi Network Controller. This article is meant as a starting point, please see the related articles linked for more information.


UniFi Network Types


Back to Top

At Layer-2, enterprise networks rely on VLANs to logically isolate user traffic into the desired network areas, like with users with different network resource access. In UniFi there are seven different network types available: Corporate, Guest, WAN, VLAN-Only, Remote User VPN, Site-to-Site VPN, and VPN Client. The following table shows what devices will be affected with each different network type, as well as a brief description of each. Please see the related articles suggested below for more in-depth information, as well as the UniFi User Guide (Chapter 3: Using the UniFi Controller Software, the Settings > Network section). 

Network Type

Device(s) Provisioned

Brief Description

Corporate

USG Right AngleUS-8 front angle

USG and USW

By default, UniFi places no restrictions on Corporate network traffic. These networks are assumed to belong to a trusted network group. For example, the Admin users in the MGMT VLAN would still be placed into a 'Corporate' network type, albeit a separate VLAN.

 

NOTE: Despite not having default restrictions for Corporate Users, the Ubiquiti Deep Packet Inspection engine provides administrative insight into all user traffic that traverses networks whether the traffic is inter-VLAN or passed to the internet. 
Guest

USG Right AngleUS-8 front angle

USG and USW

Guest networks place more restriction on where client devices are able to navigate. By default, clients in Guest networks are not able to make contact with devices on Corporate networks or other Guest networks. This type of network is best utilized when client traffic only needs to reach the internet, and not other internal networks. For more information on Guest networks please see: UniFi - Guest Network, Guest Portal and Hotspot System.
WAN

USG Right Angle

USG only

The WAN network type is used for configuring up to two separate ISP (WAN) connections. These network types can be used in two varieties of failover only or weighted load balancing.
VLAN-Only

US-8 front angle

USW only

VLAN-Only networks can be used in a full-stack UniFi network for layer 2 isolation. These are networks that do not need routing for the host devices. This network type is also best used when operating a gateway that is not managed by the UniFi Network Controller. For more information on VLAN-Only networks please see: 

Remote User VPN

USG Right Angle

USG only

Remote User VPN type networks are best utilized when a single user or device needs access to the network behind the USG. This option is great for contractors or having resources while on-the-go. For a more scalable option look into site-to-site VPN. For more information on Remote User VPN networks please see: UniFi - USG: Configuring L2TP Remote Access VPN.

Site-to-Site VPN

USG Right Angle

USG only

Site-to-Site VPN network types are best suited for networks that may need to share resources with each other. This network type allows many devices to access resources on either side of the VPN tunnel if an administrator chooses to allow access. This network type also does not need username and password authentication for each device that may want to traverse the VPN tunnel.

For more information on Site to Site VPN networks please see the following article: UniFi - USG VPN: How to Configure Site-to-Site VPN 

VPN Client

USG Right Angle

USG only

The VPN Client network type is suitable for connecting to a PPTP VPN service or PPTP server. While utilizing this type of network, the USG will make a connection to the remote PPTP server. The traffic that will be routed through this tunnel will depend on the "remote subnets" and "default route" settings.


Related Articles


Back to Top

UniFi - Guest Network, Guest Portal and Hotspot System

Intro to Networking - Introduction to Virtual LANs (VLANs) and Tagging

UniFi - Using VLANs with UniFi Wireless, Routing & Switching Hardware

UniFi - VLAN Traffic Tagging

UniFi - USG: Configuring L2TP Remote Access VPN

UniFi - USG VPN: How to Configure Site-to-Site VPN


We're sorry to hear that!