Most companies will listen then as the product matures they just dont and ruin the product. Its called "enshittification" dont fall into the brand loyalty trap.
Nice review Tom, just to note that IPv6 support on all Unifi devices is currently BETA and for some features they don't even support IPv6, for example Management interfaces, IDS/IPS, country blocker and VPN do not yet currently support IPv6. So beware when using IPv6 guys :)
You gonna 3D print that out of aluminum so the shell and thermal pad can help dissipate heat to the rest of the UCG or are you going to print that in heat insulating PLA so your drive thermal throttles or dies sooner than it should?
@@JimKahana-driftin Good point. ABS with some metal embedded as a heat spreader should work. Anyway, this being locked down eco system and working only with their cameras, I'm out.
@@woodcat7180 UniFi are pushing out support for ONVIF cameras soon, I believe it is currently available in beta, but I think its great that they are opening up their ecosystem.
Bought the No Storage version the day it came out. I helped update my church to a full Unifi setup and I was very happy with how it came together. This gives me much more capability and control on my home network than my old ASUS routers. Was happy to get the No Storage version now as I don't have any current need for Protect, but glad to have the option to buy the sled and drive in case I want to add it later.
Same with me. The implementation to VPN into any site I manage with every device I have available and managing their stuff is great. Maybe other vendors could do that, too, but as the name says: I'm unifying what I manage, and I had already started using unifi at my place =)
@scootutube3 Unifi equipment cost is almost the same as a high-end personal router. Also, Unifi's update path is much better than any personal router that I had ever personally used. Since I am the one that handles all troubleshooting anyway, it makes sense to move them to something I use myself. I don't get any kickbacks from Unifi.
i really wish this had come out earlier, i set up a sibling with a Gateway Express and CKG2+ and this would have simplified the setup a lot. It'll definitely be the Unifi device i suggest to anyone in the future, its exactly what a lot of people need to run 1 or 2 cameras and a doorbell alongside their router. The flexibility of using APs instead of built in Wifi while more expensive is a lot more practical. Unifi is on the right track here.
I bought the Unifi Express, but found that it didn't have enough performance to run most of the features. So I got the UCG-Max and have been very impressed with it. I'll be buying the UGC-Ultra for a family member soon, it'll be good to run VPNs between our two networks for backup replications. Excellent video 👍
I currently have a Netgate SG-4100 MAX, Grandstream GWN-7813 switch, and 3 GWN-7660 access points. After seeing your video on the unifi cloud gateway Max, I decided to take the plunge, as it looks intriguing. The features are impressive! I especially like the support for VLANs, WireGuard and IDS/IPS. Who knows, I might even keep it in place after a test period? If nothing else, it looks like it'll be fun to play with!
@@maxherman11 I wasn't aware it was already available, thanks for that. The early access (from what I've seen this morning anyway) is only able to record. Any word on notifications or zones? I'm preparing to clean up and unify my home and home office networks, the ability to eliminate a Blue Iris NVR in the process would make UniFi the obvious choice.
I have an Unifi CGU for my home setup and it's working mega so far. I used to have Unifi USG but since it was "out of everything" I swaped it to CGU and I'm not regreting it at all.
I would buy it if I didn't have a UDM. Much more convincing than the first cloud key with HDD I first bought. Unfi has come a long way in just a few years. The software they have today and the cloud gateway max would have been a fantastic start for me in 2020~2021 or even 2022.
So I just installed the max with 3 mesh 6 AP’s. Replaced nest WiFi and needed 8 qty of those AP’s to get marginal coverage in my 3000 sqft house. Ubiquiti is the real deal. I paid $600 and have amazing WiFi coverage with extreme reliability. I can’t recommend this setup enough. They could make a ton of $$ if they market against google and really everyone else.
I do wonder why the Max is rated for an extra 500Mbit IDS/IPS throughput over the Ultra despite using the same 1.5GHz A53 SOC. I also wonder why my UDM is only rated for 850Mbit IDS/IPS despite having using a faster, more powerful A57 @ 1.7GHz.
@@martyfarrell392 Good point. This is way outside my zone though. I am curious as too why they do make some of their choices though. All in all I really like my Gateway Max. It runs my home network and the business I run out of the house really well. The addition of POE ports would have cleaned up the rats nest of wires though. I will add a POR switch later to help that though.
I had just put in an order for the Gateway Ultra when Synology announced they would yank h265 support from their non-surveillance NASes in the latest update. I promptly returned it and got the Gateway Max instead. As soon as the drive tray is in stock I will migrate my cameras to UniFi. It’s been very easy to set up UniFi for me as a first time user, and the performance has been great. I have some third party mesh routers and they are now performing better in AP-only mode too, as they were quite underpowered
Got this on the day of release the NS version. So far so good! Needed a 2.5g switch for my server and main gaming PC and needed all the VLAN, DHCP and Firewall features the ISP router doesnt provide. So do not need a separate mini tiny pc for my own router or pi-hole or a separate 2.5g switch - this little powerhouse fits the bill perfectly.
A53 is a really old Core from 2012. They must get them for pennies. I guess if it fits their purpose that’s fine. It’s probably why IDS can’t run at full speed.
I think it's important to note that you are also paying for their software when you buy their hardware. They don't have any subscriptions for using it right now which is refreshing in this day and age.
putting a modern cell phone processor in a product like this is just not practical for many reasons; including cost, manufacturability, unit sales per year, and peripheral IO. My guess is this is using an NXP IMx8 or similar industrial IOT processor not a cellphone processor and they're likely paying ~$10 a processor. Heck ARM charges a dollar just to use their architecture. Source: I do this for a living in a similar space.
I have this UCG-Max connected with my Arris G36 Gateway, the WIFI works great so I saved the cost of a Unifi AP for the time being. I have my 4K Samsung TV and Chromecast w Google TV connected through this, as well as my personal MacBook Pro, and the Dell Laptop I use for remote work, which are each separately connected to a Thunderbolt dock. Everything is working great and I highly recommend the UCG-Max, but it would be great to set this up with a media server, although Kodi and Stremio both work fine with the CCwGTV.
I purchased this and im loving it. Its so good for the money. got rid of the headaches of my pfsense firewall. the ONLY thing i wish i knew how to do and i hope your channel does a video on, is to get the bufferbloat situation improved. I used your videos to setup fqcodel on the pfsense firewall i made and i hope i can do the same in this little box of wonders. If i can get rid of bufferbloat this would be a 10/10 appliance for me. Please make a video on how (if its possible) to use FQCodel or other similar things to cut down the bufferbloat on this Ubiquiti gateway! thx
It seems i wasnt aware of how Unifi already contains this feature! under the WAN settings i just toggled "Smart Queues" and the the appropiate bandwidth restrictions. My bufferbloat testing on waveform went from B to A+! this little box truly is amazing.
This would be the device I would recommend for most people interested in Unifi. I will say that Ubiquiti does seem to be struggling on their hardware as of late though. This one is good in that it is at least using 2.5Gbps ports but a lot of their other devices feel like they are stuck in the past. I don't think we should be seeing Gigabit ports on devices that cost this much anymore but besides this one a lot of unifi's devices seem to not get that.
Yes, the highest I have seen is 85 (only Unifi Network, without IPS/IDS, without VPN). Now I see 70-ish, although it is colder now in the place I have the device
I got the Ultra "days" before Unify announced Max. And I was considering the upgrade to get the Protect and a Doorbel, mostly just to play with, and not to spend too much money on dedicated NVR. My only concern is that some comments mention that Max is running very hot. And my Ultra is at most warm.
I have been searching for a 2.5 capable router. I had the qotom q20332G9-s10 in mind after a servethehome video. But I want cameras, I can do all I want and more with this unifi box. I am ordering it next pay period. I can't wait. It'll be my first unifi equipment. I plan on a poe switch and 3 cameras for my apt. Can't wait to tinker and slap tailscale on that bad boy. If I could, I would get the unifi doorbell.
Hi Tom, great content. One of the things im keenly interested in (which i imagine) is more difficult to test is the site to site vpn performance. Do you expect it to be closer to the openvpn performance or the wireguard performance? Or somewhere in the moddle?
In the process of redesigning my home network. My needs are minimal, but there are things on the “want” list. I have an nvr system already (not Unifi) but have narrowed my decision down to the USW-MAX. I will be adding some other minor Unifi devices later. Some ap, both indoor and outdoor.
I got one of these for my parents. Can't really say how good it is since I'm not knowledgeable enough to evaluate its features and performance deeply, but I can say that the user experience is really good aside from the exactly zero documentation in the box. They should make it clear you shouldn't install the NVMe in it while it's on somewhere besides in the interface, after you popped in it while it's on. Not so much as a note card with installation and setup steps in the box.
This is great, but I would also like to see a more detailed review of the Gateway Max and maybe compared to other gateways. Some users will already have either cloud hosted controllers or some may even have the Cloud Key Gen 2 and just want the Gateway and not a full cloud controller and gateway combined. Given the USG's are now moved to legacy, there may be few people that need to upgrade. or some using third party gateways that may like to revisit Unifi now they have better gateways
I bought one on the launch day of the no storage option. I was already using an 8 port Ubiquiti PoE switch and two Wi-Fi 6 APs along with a generic i5 based mini PC Firewall running PfSense CE. I had 4 existing VLANs. Setup was SO easy in comparison to PfSense. I have noticed no change in my internet performance, and now everything is in one convenient web GUI. My only complaint is Ubiquiti's availability from other vendors sucks and they charge $12 shipping. Not a big deal when you are spending $200 on the unit. Silly expensive for the $19 drive sled that isn't shipping yet or the $29 wall mount that was out of stock when I ordered.
I bought the no storage version and it has been rock solid. The only gripe is that none of the switch port is POE as you have to add AP for wifi access and most wifi 7 version AP are only POE+ powered which means either you have to buy their overpriced POE+ switch or buy injector. You can buy the injector for $20 at Unifi though.
I have a small job that I quoted as a UDM but I'm really thinking of switching to the CGM just a nicer package for a small network and camera deployment.
Any concerns with the limited local storage for the controller? I currently use a VM for controller but looking to switch from an old enterprise firewall to this for a full unifi stack at home. I've had issues with storage on the old cloud key after about a year.
The ultra is half the price and almost as fast but the max has the ability for internal storage so it's a good option. Certainly either are fantastic compared to running the network app on a NUC or a VM.
I'll need to consider this for upgrading my in-laws' older CloudKey Gen2 setup, although I'm not certain their internet is actually fast enough to justify it. I'm curious, though: I have a UXG. Could this function has a failover for that? Performance might be a little lower, I understand (with internet speeds high enough to matter), but otherwise, is that possible?
I have the older model, the unifi cloud thing. IT works great but i do kinda want to upgrade to either a max or a UDM pro SE setup. For the VPN part, anything over 50 mbps is fine for me when i only need to connect to the vpn to save my docs or check something on my home network
I have one and was downloading some large files at over 1gb per second, and it overheated and throttled within seconds, slowing speeds to a crawl. The web UI also became unresponsive. Added a cheap usb fan to the bottom side, it was able to download at 1gbps without thermal throttling no problem. Note, I did have IPS/IDS on high. I know it has a fan, but clearly not doing much.
Great review. Can you point me to an 'stepbystep' manual how to migrate from an old USG with unify os installed on separate server to this device? No cloud access available on old USG. I do not want to reconfigure from the ground up.
I already have it and am waiting for the m.2 tray to become available to install my 2tb ssd. Planning on getting two G5 Turret ultra cams to replace my Hikvision system.
Maybe someone can answer this because I'm not super clear on it: so this has a Unifi Controller built in for local management, but does that automatically allow for cloud management? Or do I still need a Cloud Key for that, making the controller UCG somewhat redundant?
I am waiting for just a gateway in rack mount. None of the NVR or anything. Basically a lower end version of the enterprise gateway. That is overkill for my needs.
Hi Tom! Have you tried site to site ipsec with ikev2, aes 256 and aha256 encryption with phase 1/2 on the new unifi gateways? It took me some time to figure it out via cli on my USG4 but I can’t have it directly connected to my controller or else it deletes my config. I want to upgrade to the new dream machines but unsure if we will encounter the same issues with the site to site and auto controller provision.
The device is nice, but there is no suitable switch to match its capabilities. The 16 pro max Poe comes close but is overkill for home use and still is not great. I would like to see a 8 or 12 port switch without touch screen that has all 2.5Gbe with PoE++ to power downstream 5 port flex switches that also are having PoE+ and 2.5Gbe able to power an AP and cameras. At least 2.5 Gbe as backhaul and perhaps 1Gbe for the cameras and access points.
Actually the 16 pro max is also designed in a dumb way with PoE++ on its 2.5 gbe ports. There is no PoE++ powered switch with 2.5Gbe ports. It only works if you plan to connect everything with a direct connection and no switch in between.
I had to wait to order one without the storage - for whatever reason, the ones with built-in storage were available before the ones without. Either way, I like it and am happy with it, and I'm finally able to take advantage of my 1Gbps+ Internet, though it seems to run pretty hot (temperature-wise). Price is pretty aggressive too, compared to other brands out there.
4 วันที่ผ่านมา
It's getting hard keeping up with all their new stuff.
The UniFi Express is such a complete failure of a product, I don't think I could bring myself buy anything in the Ubiquiti compact form factor. I know that is a bit irrational, but the two Express units I bought are in fact garbage, and I have disposed of them. One of the two I even sent back to the factory upon receipt because even the default boot up didn't work right. It too was junk even with the replacement unit they sent.
Please do a deep dive into their privacy policy. Everyone should be aware that using unifi means completely surrendering your information to not just Ubiquiti but also to many third parties.
@@PS-pr5ch We may collect certain information about your devices, your network, your system and third party devices connected to your network or system when you use the Services ("Usage Data"), including but not limited to device data, performance data, sensor data, motion data, temperature data, power usage data, device signals, device parameters, device identifiers that may uniquely identify the devices, including mobile devices, web request, Internet Protocol address, location information (including latitude and longitude), browser type, browser language, referring/exit pages and URLs, platform type, the date and time of your request, and one or more cookies, web beacons and JavaScript that may uniquely identify your devices or browser.
@@PS-pr5ch We may provide Usage Data to our customers in connection with the Services which those customers use. For example, our customers may include your network providers or operators and we may disclose Usage Data to these customers in connection with the products and devices that are deployed over these customers’ networks. The treatment of Usage Data by these third-parties is subject to their own privacy policies, and not this one. We are not responsible for the content or privacy and security practices and policies of those third parties.
The "problem" with all Ubiquiti hardware is not that its bad at all, it isnt, its pretty good. But its way overpriced, trying to be the Apple of network equipment, and they manage to be that. But this also attracts so many very casual users who have absolutely no idea how to actually use equipment like that, so many barely know what a IP and subnet mask is ffs, but they have the money and spend it on hw like this, then come to Reddit, Discord etc and ask other users for very very basic support. ffs i hate that. If someone has more money than knowledge, go pay someone to teach. But dont expect others to teach you for free just because "you" paid a premium on hw that you dont understand to use, let alone that anyone today reads a manual. But add to that of course the data leaks Ubiquiti had in the past, and especially how bad they handled them, oh god. And then still pay these premiums?! /rant
Dude you look way too salty for people asking questions on forum. I am casual user and have no formal IT training but some guidance here and there is enough for me to setup my own home network. But I would say their hardware is expensive but you make it up with software support with no subscription bullshit. I was running Opensense on AliExpress mini PC hardware that died after 4 months and became a dead weight and the Zenarmour for IPS/IDS functionality was subscription based and free version with highly limited customization.
Why for the love of god are we still using 2.5G and 5G ports? I can’t get over how hardware companies are holding back data! My house is all wired Cat6A 10G AT&T fiber offers 5G fiber but can’t use it because a 24port 10G switch is over $1500… Love the content but to see 2.5G is an immediate turn-off!
You just explained why devices are still using 2.5 GbE and 5 GbE in your own comment by mentioning that a 24-port 10 GbE switch is over $1500. The simple answer is cost. The second simple answer is that not everyone, most people, or even many people really need 10-gigabit networking. Remember that most of the Unifi devices are supposed to be mainstream prosumer devices. Their market simply doesn't have a big enough demand for 10 GbE or really much past 2.5 GbE. I have an 8-port 10 GbE switch and it's fun to say I have one because I'm a nerd who had slightly more money than sense, but I only have two NAS devices running at 10 GbE and the rest of the devices connected to it are at 2.5 GbE. If you're not making money with your expensive networking equipment and/or don't have the extra money to blow, it's better to just save your money and stick with 2.5 GbE. Most people don't benefit from the extra bandwidth unless they're frequently transferring large files across the network.
@@ultimatemaverick Mac Studio, 2020 iMac 27”, X1 Carbon & T14 have WiFi 6E cards, my home Linux File server has SFP+ 10G and RJ-45 10G, and my Proxmox box has 2.5G and 10G rj45 ports
@@TWO515TY I agree if you’re not making money it’s not worth the price of admission, I also agree the price is a staple causing the consumer not to convert. However, I make a living as a Network Engineer in my home lab and my wife and kids are the beneficiaries/test dummies. I have a Meraki switch with 10G sfp I test with and my router has one as well, so I can get 10G there. I just refuse to spend $1500 on a switch. It’s not a matter of affordability so much as it is principle. Make the hardware that supports the data bandwidth available. Every coin has three sides I get it!! I just wanted to point out a frustration I have with switch/route/firewall etc vendors.
I watched this video yesterday and it didn't hit me until now. I know of EA, but how does one get invited to that "Alpha" channel. That sounds neat. 🙏😉
I have a Unifi AP. I only update it once a year now, if that. Mine doesn't update automatically because I don't have a Unifi controller running at all times, and the AP's "set-inform" address isn't default due to VLAN segregation. Updating always requires a factory reset, SSHing and change to set-inform because I keep its SSH daemon disabled otherwise for security's sake. :/ 6:49 Gah glitch in the matrix. Edit: Why is your Let's Encrypt bandwidth usage so high‽
Is there a monthly charge for the services included in this. I see the cloudkey+ and Unifi hosting cost money but not sure if they are required to run this.
The nice thing is they are actually listening and responding which not all companies do these days
Most companies will listen then as the product matures they just dont and ruin the product. Its called "enshittification" dont fall into the brand loyalty trap.
@@zahirkhan778 Sadly true and its up to us to make it know that we well go elsewhere if they decide not to listen.
Nice review Tom, just to note that IPv6 support on all Unifi devices is currently BETA and for some features they don't even support IPv6, for example Management interfaces, IDS/IPS, country blocker and VPN do not yet currently support IPv6. So beware when using IPv6 guys :)
For anyone, there's 3D printed versions of the tray so if you opt getting the cheaper one, there's an option for that!
Thanks. I would feel stupid to pay $20 for a $5 item.
You gonna 3D print that out of aluminum so the shell and thermal pad can help dissipate heat to the rest of the UCG or are you going to print that in heat insulating PLA so your drive thermal throttles or dies sooner than it should?
@@JimKahana-driftin Good point. ABS with some metal embedded as a heat spreader should work. Anyway, this being locked down eco system and working only with their cameras, I'm out.
@@woodcat7180 UniFi are pushing out support for ONVIF cameras soon, I believe it is currently available in beta, but I think its great that they are opening up their ecosystem.
@@woodcat7180they enabled 3rd party cameras recently
Bought the No Storage version the day it came out. I helped update my church to a full Unifi setup and I was very happy with how it came together. This gives me much more capability and control on my home network than my old ASUS routers. Was happy to get the No Storage version now as I don't have any current need for Protect, but glad to have the option to buy the sled and drive in case I want to add it later.
I am moving all of my family and friends to unifi. The management is easy, and updates have been stable.
Same with me. The implementation to VPN into any site I manage with every device I have available and managing their stuff is great. Maybe other vendors could do that, too, but as the name says: I'm unifying what I manage, and I had already started using unifi at my place =)
@scootutube3 Unifi equipment cost is almost the same as a high-end personal router. Also, Unifi's update path is much better than any personal router that I had ever personally used. Since I am the one that handles all troubleshooting anyway, it makes sense to move them to something I use myself. I don't get any kickbacks from Unifi.
I have done exactly this. 👍
Already bought the device, thanks for confirming it's a good choice. It's my first step into the Unifi world.
i really wish this had come out earlier, i set up a sibling with a Gateway Express and CKG2+ and this would have simplified the setup a lot. It'll definitely be the Unifi device i suggest to anyone in the future, its exactly what a lot of people need to run 1 or 2 cameras and a doorbell alongside their router. The flexibility of using APs instead of built in Wifi while more expensive is a lot more practical. Unifi is on the right track here.
It's very impressive and the price point makes it exceptionally easy to recommend to any home user
I bought the Unifi Express, but found that it didn't have enough performance to run most of the features. So I got the UCG-Max and have been very impressed with it. I'll be buying the UGC-Ultra for a family member soon, it'll be good to run VPNs between our two networks for backup replications. Excellent video 👍
I currently have a Netgate SG-4100 MAX, Grandstream GWN-7813 switch, and 3 GWN-7660 access points. After seeing your video on the unifi cloud gateway Max, I decided to take the plunge, as it looks intriguing. The features are impressive! I especially like the support for VLANs, WireGuard and IDS/IPS. Who knows, I might even keep it in place after a test period? If nothing else, it looks like it'll be fun to play with!
I'm just waiting to see what happens with their ONVIF announcement next month. If I can move my installed cameras over I'm moving to UniFi.
it has already been announced.
Already announced and implemented in Protect 5.0 EA
@@maxherman11 I wasn't aware it was already available, thanks for that. The early access (from what I've seen this morning anyway) is only able to record. Any word on notifications or zones? I'm preparing to clean up and unify my home and home office networks, the ability to eliminate a Blue Iris NVR in the process would make UniFi the obvious choice.
@@cameronfrye5514from what I understand, it's only recording, and does not do motion or anything
I have an Unifi CGU for my home setup and it's working mega so far. I used to have Unifi USG but since it was "out of everything" I swaped it to CGU and I'm not regreting it at all.
I would buy it if I didn't have a UDM. Much more convincing than the first cloud key with HDD I first bought.
Unfi has come a long way in just a few years. The software they have today and the cloud gateway max would have been a fantastic start for me in 2020~2021 or even 2022.
I'm excited to get this on my network as soon as I get the keys to my new house
Great review as always!
So I just installed the max with 3 mesh 6 AP’s. Replaced nest WiFi and needed 8 qty of those AP’s to get marginal coverage in my 3000 sqft house. Ubiquiti is the real deal. I paid $600 and have amazing WiFi coverage with extreme reliability. I can’t recommend this setup enough. They could make a ton of $$ if they market against google and really everyone else.
I do wonder why the Max is rated for an extra 500Mbit IDS/IPS throughput over the Ultra despite using the same 1.5GHz A53 SOC. I also wonder why my UDM is only rated for 850Mbit IDS/IPS despite having using a faster, more powerful A57 @ 1.7GHz.
That’s super interesting. Maybe just for sales? Creating artificial boundaries between products?
@@hong_kong_phooey Could it be the memory ?
It might be because the UCG Ultra only has 1Gb LAN ports
@@martyfarrell392 Good point. This is way outside my zone though. I am curious as too why they do make some of their choices though. All in all I really like my Gateway Max. It runs my home network and the business I run out of the house really well. The addition of POE ports would have cleaned up the rats nest of wires though. I will add a POR switch later to help that though.
I had just put in an order for the Gateway Ultra when Synology announced they would yank h265 support from their non-surveillance NASes in the latest update. I promptly returned it and got the Gateway Max instead. As soon as the drive tray is in stock I will migrate my cameras to UniFi.
It’s been very easy to set up UniFi for me as a first time user, and the performance has been great. I have some third party mesh routers and they are now performing better in AP-only mode too, as they were quite underpowered
I really like this device, I’m just using it for network, perfect for when a UDM Pro is overkill
Got this on the day of release the NS version. So far so good! Needed a 2.5g switch for my server and main gaming PC and needed all the VLAN, DHCP and Firewall features the ISP router doesnt provide. So do not need a separate mini tiny pc for my own router or pi-hole or a separate 2.5g switch - this little powerhouse fits the bill perfectly.
A53 is a really old Core from 2012. They must get them for pennies. I guess if it fits their purpose that’s fine. It’s probably why IDS can’t run at full speed.
I think it's important to note that you are also paying for their software when you buy their hardware. They don't have any subscriptions for using it right now which is refreshing in this day and age.
putting a modern cell phone processor in a product like this is just not practical for many reasons; including cost, manufacturability, unit sales per year, and peripheral IO. My guess is this is using an NXP IMx8 or similar industrial IOT processor not a cellphone processor and they're likely paying ~$10 a processor. Heck ARM charges a dollar just to use their architecture. Source: I do this for a living in a similar space.
Will be getting this for Network and Protect.
I have the ultra and will be updating to the max
I have this UCG-Max connected with my Arris G36 Gateway, the WIFI works great so I saved the cost of a Unifi AP for the time being. I have my 4K Samsung TV and Chromecast w Google TV connected through this, as well as my personal MacBook Pro, and the Dell Laptop I use for remote work, which are each separately connected to a Thunderbolt dock. Everything is working great and I highly recommend the UCG-Max, but it would be great to set this up with a media server, although Kodi and Stremio both work fine with the CCwGTV.
I purchased this and im loving it. Its so good for the money. got rid of the headaches of my pfsense firewall. the ONLY thing i wish i knew how to do and i hope your channel does a video on, is to get the bufferbloat situation improved. I used your videos to setup fqcodel on the pfsense firewall i made and i hope i can do the same in this little box of wonders. If i can get rid of bufferbloat this would be a 10/10 appliance for me. Please make a video on how (if its possible) to use FQCodel or other similar things to cut down the bufferbloat on this Ubiquiti gateway! thx
It seems i wasnt aware of how Unifi already contains this feature! under the WAN settings i just toggled "Smart Queues" and the the appropiate bandwidth restrictions. My bufferbloat testing on waveform went from B to A+! this little box truly is amazing.
Not only would I buy it, I did buy it. It is a fantastic device.
This would be the device I would recommend for most people interested in Unifi. I will say that Ubiquiti does seem to be struggling on their hardware as of late though. This one is good in that it is at least using 2.5Gbps ports but a lot of their other devices feel like they are stuck in the past. I don't think we should be seeing Gigabit ports on devices that cost this much anymore but besides this one a lot of unifi's devices seem to not get that.
Apparently this runs at crazy hot temps. Like 80 to 90 degrees.
Yes, the highest I have seen is 85 (only Unifi Network, without IPS/IDS, without VPN). Now I see 70-ish, although it is colder now in the place I have the device
And? It's not a 14th gen Intel, those temps don't mean a damn thing.
At least there’s an internal fan. It doesn’t quite spin up. Yet.
Just bought this device a few hours ago and then seen your video. I’m switching over from Omada
how does this compare to a netgate pfsense box
I got the Ultra "days" before Unify announced Max. And I was considering the upgrade to get the Protect and a Doorbel, mostly just to play with, and not to spend too much money on dedicated NVR. My only concern is that some comments mention that Max is running very hot. And my Ultra is at most warm.
i've been loving mine!
Ordered mine today.
Need a heat test for both the exterior and internal components
I have been searching for a 2.5 capable router. I had the qotom q20332G9-s10 in mind after a servethehome video. But I want cameras, I can do all I want and more with this unifi box. I am ordering it next pay period. I can't wait. It'll be my first unifi equipment. I plan on a poe switch and 3 cameras for my apt. Can't wait to tinker and slap tailscale on that bad boy. If I could, I would get the unifi doorbell.
Hi Tom - looking for the video you mentioned at 3:13 about IDS/IPS efficacy. The video linked doesn’t cover this. Thanks! 😊
I am looking for it as well
Awesome video Tom !
I did and it works well.
Hi Tom, great content.
One of the things im keenly interested in (which i imagine) is more difficult to test is the site to site vpn performance.
Do you expect it to be closer to the openvpn performance or the wireguard performance? Or somewhere in the moddle?
In the process of redesigning my home network. My needs are minimal, but there are things on the “want” list. I have an nvr system already (not Unifi) but have narrowed my decision down to the USW-MAX. I will be adding some other minor Unifi devices later. Some ap, both indoor and outdoor.
I got one of these for my parents. Can't really say how good it is since I'm not knowledgeable enough to evaluate its features and performance deeply, but I can say that the user experience is really good aside from the exactly zero documentation in the box. They should make it clear you shouldn't install the NVMe in it while it's on somewhere besides in the interface, after you popped in it while it's on. Not so much as a note card with installation and setup steps in the box.
This is great, but I would also like to see a more detailed review of the Gateway Max and maybe compared to other gateways. Some users will already have either cloud hosted controllers or some may even have the Cloud Key Gen 2 and just want the Gateway and not a full cloud controller and gateway combined. Given the USG's are now moved to legacy, there may be few people that need to upgrade. or some using third party gateways that may like to revisit Unifi now they have better gateways
I bought one on the launch day of the no storage option. I was already using an 8 port Ubiquiti PoE switch and two Wi-Fi 6 APs along with a generic i5 based mini PC Firewall running PfSense CE. I had 4 existing VLANs. Setup was SO easy in comparison to PfSense. I have noticed no change in my internet performance, and now everything is in one convenient web GUI. My only complaint is Ubiquiti's availability from other vendors sucks and they charge $12 shipping. Not a big deal when you are spending $200 on the unit. Silly expensive for the $19 drive sled that isn't shipping yet or the $29 wall mount that was out of stock when I ordered.
I bought the no storage version and it has been rock solid. The only gripe is that none of the switch port is POE as you have to add AP for wifi access and most wifi 7 version AP are only POE+ powered which means either you have to buy their overpriced POE+ switch or buy injector. You can buy the injector for $20 at Unifi though.
For the price, simple the best gateway on the market right now, finally affordable 2.5GB is here.
I have a small job that I quoted as a UDM but I'm really thinking of switching to the CGM just a nicer package for a small network and camera deployment.
After my OG UDM died I got myself UCG Ultra, too bad this was not out then.
Any concerns with the limited local storage for the controller? I currently use a VM for controller but looking to switch from an old enterprise firewall to this for a full unifi stack at home. I've had issues with storage on the old cloud key after about a year.
Will there soon be an in depth review of the Enterprise Fortress Gateway?
The ultra is half the price and almost as fast but the max has the ability for internal storage so it's a good option. Certainly either are fantastic compared to running the network app on a NUC or a VM.
I replaced my UDM with this and love it.
I was thinking the same thing although the UDM has a much more powerful processor. A57 vs A53. The 2.5ghz is nice finally.
I am thinking of that too
I'll need to consider this for upgrading my in-laws' older CloudKey Gen2 setup, although I'm not certain their internet is actually fast enough to justify it.
I'm curious, though: I have a UXG. Could this function has a failover for that? Performance might be a little lower, I understand (with internet speeds high enough to matter), but otherwise, is that possible?
I have the older model, the unifi cloud thing. IT works great but i do kinda want to upgrade to either a max or a UDM pro SE setup. For the VPN part, anything over 50 mbps is fine for me when i only need to connect to the vpn to save my docs or check something on my home network
I am curious how good the firewall is. Would it bee good enough for a small business or Doctors office?
Firewall good, VPN is just ok
My MAX came a couple of days ago. After setup, my testing turned into full-on migration from a pfSense SG-4100. I think I love this thing! 😊
Looks like a good replacement for mi cloud key gen 1 hahaha
I have one and was downloading some large files at over 1gb per second, and it overheated and throttled within seconds, slowing speeds to a crawl. The web UI also became unresponsive. Added a cheap usb fan to the bottom side, it was able to download at 1gbps without thermal throttling no problem. Note, I did have IPS/IDS on high. I know it has a fan, but clearly not doing much.
I want one of those, to play with it in my lab..
Yes, I''m an adult that like to play with these shiny new devices in my labplayground :P
Great review. Can you point me to an 'stepbystep' manual how to migrate from an old USG with unify os installed on separate server to this device?
No cloud access available on old USG.
I do not want to reconfigure from the ground up.
I don't think they have a path for that, you can migrate devices but I don't think you can migrate the firewall rules.
@@LAWRENCESYSTEMS Fw is not important, devices are, but not sure how to do that without losing all ipadresses
Yet there is still no support for portforwarding to vpn interfaces :CCCC
I already have it and am waiting for the m.2 tray to become available to install my 2tb ssd. Planning on getting two G5 Turret ultra cams to replace my Hikvision system.
apparently, they're adding ONVIF support. so your hikvision cameras may work.
@@RobertoCarlos-tn1iq ONVIF sounds awesome, but I still have to replace my system as it is DVR based with analog cams. Thanks for the info!
Maybe someone can answer this because I'm not super clear on it: so this has a Unifi Controller built in for local management, but does that automatically allow for cloud management? Or do I still need a Cloud Key for that, making the controller UCG somewhat redundant?
I am waiting for just a gateway in rack mount. None of the NVR or anything. Basically a lower end version of the enterprise gateway. That is overkill for my needs.
Hi Tom! Have you tried site to site ipsec with ikev2, aes 256 and aha256 encryption with phase 1/2 on the new unifi gateways?
It took me some time to figure it out via cli on my USG4 but I can’t have it directly connected to my controller or else it deletes my config.
I want to upgrade to the new dream machines but unsure if we will encounter the same issues with the site to site and auto controller provision.
That is a software issue, not hardware.
The device is nice, but there is no suitable switch to match its capabilities. The 16 pro max Poe comes close but is overkill for home use and still is not great. I would like to see a 8 or 12 port switch without touch screen that has all 2.5Gbe with PoE++ to power downstream 5 port flex switches that also are having PoE+ and 2.5Gbe able to power an AP and cameras. At least 2.5 Gbe as backhaul and perhaps 1Gbe for the cameras and access points.
Actually the 16 pro max is also designed in a dumb way with PoE++ on its 2.5 gbe ports. There is no PoE++ powered switch with 2.5Gbe ports. It only works if you plan to connect everything with a direct connection and no switch in between.
Any chance you can test the failover/fallback performance on it? That’s the part I needed the most.
All I want is the equivalent of an EdgeRouter 4 that has 2.5 GbE ports, but they won't make one.
Not sure I want to update my UDM Pro
I had to wait to order one without the storage - for whatever reason, the ones with built-in storage were available before the ones without. Either way, I like it and am happy with it, and I'm finally able to take advantage of my 1Gbps+ Internet, though it seems to run pretty hot (temperature-wise). Price is pretty aggressive too, compared to other brands out there.
It's getting hard keeping up with all their new stuff.
Is it able to route at 2.5gbs?
Is this powerful enough to max out a 1gbps or even 2gbps download speed fiber internet connection, without using the VPN?
Yes
@@LAWRENCESYSTEMS even when the WAN works over PPPoe?
I don't have any way to test that
The UniFi Express is such a complete failure of a product, I don't think I could bring myself buy anything in the Ubiquiti compact form factor. I know that is a bit irrational, but the two Express units I bought are in fact garbage, and I have disposed of them. One of the two I even sent back to the factory upon receipt because even the default boot up didn't work right. It too was junk even with the replacement unit they sent.
Please do a deep dive into their privacy policy. Everyone should be aware that using unifi means completely surrendering your information to not just Ubiquiti but also to many third parties.
Source?
@@PS-pr5ch We may collect certain information about your devices, your network, your system and third party devices connected to your network or system when you use the Services ("Usage Data"), including but not limited to device data, performance data, sensor data, motion data, temperature data, power usage data, device signals, device parameters, device identifiers that may uniquely identify the devices, including mobile devices, web request, Internet Protocol address, location information (including latitude and longitude), browser type, browser language, referring/exit pages and URLs, platform type, the date and time of your request, and one or more cookies, web beacons and JavaScript that may uniquely identify your devices or browser.
@@PS-pr5ch We may provide Usage Data to our customers in connection with the Services which those customers use. For example, our customers may include your network providers or operators and we may disclose Usage Data to these customers in connection with the products and devices that are deployed over these customers’ networks. The treatment of Usage Data by these third-parties is subject to their own privacy policies, and not this one. We are not responsible for the content or privacy and security practices and policies of those third parties.
If your using the internet then you've already surrendered your privacy
Ubiquiti privacy policy
What is the Netgate equivalent?
2100
Unifi needs to have better IPSEC and or Wireguard support....
What's wrong with the Wireguard support that's in it right now?
@@gavin7285 I am needing Site to Site, from UniFi to pfSense... I have been fighting with it to no avail....
So your saying this thing can actual be an equivalent to a couldkey gen2 plus ?
no wifi and no POE? lol
Question, does it have POE or not?
Nice device but seems underpowered hence overpriced.
It should either be cheaper or come with a beefier CPU.
No POE. I’m using it with two POE injectors for my network right now. It would be darn near perfect if it had POE on even one port.
@@hong_kong_phooey thanks for the info.
Its always the same story with them, always with the upsell.
3 gigs of RAM? Who does that anymore?
It's 200 bucks. I think they did a great job of balancing power performance and features
They added what was needed. No need to waste money on 4 or 8 if it can't be utilized.
no wifi?
The "problem" with all Ubiquiti hardware is not that its bad at all, it isnt, its pretty good. But its way overpriced, trying to be the Apple of network equipment, and they manage to be that. But this also attracts so many very casual users who have absolutely no idea how to actually use equipment like that, so many barely know what a IP and subnet mask is ffs, but they have the money and spend it on hw like this, then come to Reddit, Discord etc and ask other users for very very basic support. ffs i hate that. If someone has more money than knowledge, go pay someone to teach. But dont expect others to teach you for free just because "you" paid a premium on hw that you dont understand to use, let alone that anyone today reads a manual. But add to that of course the data leaks Ubiquiti had in the past, and especially how bad they handled them, oh god. And then still pay these premiums?! /rant
It’s not overpriced, it’s really cheap and limited compared to anything good. Palo Alto, Juniper, Fortinet, Meraki etc.
Dude you look way too salty for people asking questions on forum. I am casual user and have no formal IT training but some guidance here and there is enough for me to setup my own home network. But I would say their hardware is expensive but you make it up with software support with no subscription bullshit. I was running Opensense on AliExpress mini PC hardware that died after 4 months and became a dead weight and the Zenarmour for IPS/IDS functionality was subscription based and free version with highly limited customization.
splitting hairs here but it's suDO not suDOO
half the linux community says it one way, the other half says it the other way.
First
For the record NOTHING “cloud” is worth any hype. Unless its self-hosting!!
Did you even watch the video
Why for the love of god are we still using 2.5G and 5G ports? I can’t get over how hardware companies are holding back data! My house is all wired Cat6A 10G AT&T fiber offers 5G fiber but can’t use it because a 24port 10G switch is over $1500… Love the content but to see 2.5G is an immediate turn-off!
Please tell us which laptops, phones, pcs, printers, smart home devices, etc that are using 10G........
You just explained why devices are still using 2.5 GbE and 5 GbE in your own comment by mentioning that a 24-port 10 GbE switch is over $1500. The simple answer is cost. The second simple answer is that not everyone, most people, or even many people really need 10-gigabit networking.
Remember that most of the Unifi devices are supposed to be mainstream prosumer devices. Their market simply doesn't have a big enough demand for 10 GbE or really much past 2.5 GbE.
I have an 8-port 10 GbE switch and it's fun to say I have one because I'm a nerd who had slightly more money than sense, but I only have two NAS devices running at 10 GbE and the rest of the devices connected to it are at 2.5 GbE.
If you're not making money with your expensive networking equipment and/or don't have the extra money to blow, it's better to just save your money and stick with 2.5 GbE. Most people don't benefit from the extra bandwidth unless they're frequently transferring large files across the network.
@@ultimatemaverick Mac Studio, 2020 iMac 27”, X1 Carbon & T14 have WiFi 6E cards, my home Linux File server has SFP+ 10G and RJ-45 10G, and my Proxmox box has 2.5G and 10G rj45 ports
@@TWO515TY I agree if you’re not making money it’s not worth the price of admission, I also agree the price is a staple causing the consumer not to convert. However, I make a living as a Network Engineer in my home lab and my wife and kids are the beneficiaries/test dummies.
I have a Meraki switch with 10G sfp I test with and my router has one as well, so I can get 10G there. I just refuse to spend $1500 on a switch. It’s not a matter of affordability so much as it is principle. Make the hardware that supports the data bandwidth available.
Every coin has three sides I get it!! I just wanted to point out a frustration I have with switch/route/firewall etc vendors.
You're a 1%er. Companies don't make decision for people like you.
I watched this video yesterday and it didn't hit me until now. I know of EA, but how does one get invited to that "Alpha" channel. That sounds neat. 🙏😉
I have a Unifi AP. I only update it once a year now, if that. Mine doesn't update automatically because I don't have a Unifi controller running at all times, and the AP's "set-inform" address isn't default due to VLAN segregation. Updating always requires a factory reset, SSHing and change to set-inform because I keep its SSH daemon disabled otherwise for security's sake. :/
6:49 Gah glitch in the matrix.
Edit: Why is your Let's Encrypt bandwidth usage so high‽
Your affiliate link for unifi isn't hyperlinking properly just fyi
Thank you, I will check that
Is there a monthly charge for the services included in this. I see the cloudkey+ and Unifi hosting cost money but not sure if they are required to run this.
The speed difference between Wireguard and OpenVPN is huge 😶