Overview
Readers will learn which UDP and TCP ports the UniFi Controller uses by default.
NOTES & REQUIREMENTS:
- Applicable to the latest UniFi Controller release versions available in the Ubiquiti Downloads section.
- The ports listed in this article are the default ports used by the UniFi Controller.
- See the UniFi - Advanced: Changing Default Ports article for more information on how to change the default ports.
- This article applies to both self-hosted UniFi Controllers and those running on the UniFi Cloud Key (UCK-G2, UCK-G2-PLUS and UC-CK) or Dream Machine (UDM or UDM-Pro).
Table of Contents
- Local Ingress Ports
- Ingress Ports Required for L3 Management Over the Internet
- Egress Ports Required for UniFi Remote Access
- Related Articles
Local Ingress Ports
Protocol |
Port Number |
Usage |
UDP | 3478 | Port used for STUN. |
UDP | 5514 | Port used for remote syslog capture. |
TCP | 8080 | Port used for device and controller communication. |
TCP | 8443 | Port used for controller GUI/API as seen in a web browser |
TCP | 8880 | Port used for HTTP portal redirection. |
TCP | 8843 | Port used for HTTPS portal redirection. |
TCP | 6789 | Port used for UniFi mobile speed test. |
TCP | 27117 | Port used for local-bound database communication. |
UDP | 5656-5699 | Ports used by AP-EDU broadcasting. |
UDP | 10001 | Port used for device discovery |
UDP | 1900 | Port used for "Make controller discoverable on L2 network" in controller settings. |
NOTE: Although TCP 22 is not one of the ports the UniFi Network Controller operates on by default, it is worth mentioning in this article since it is the port used when UniFi devices or the controller is accessed via SSH.
Ingress Ports Required for L3 Management Over the Internet
Protocol |
Port Number |
Usage |
UDP | 3478 | Port used for STUN. |
TCP | 8080 | Port used for device and controller communication. |
TCP | 8443 | Port used for controller GUI/API as seen in a web browser |
TCP | 8880 | Port used for HTTP portal redirection. |
TCP | 8843 | Port used for HTTPS portal redirection. |
TCP | 6789 | Port used for UniFi mobile speed test. |
NOTE: These ports need to be open at the gateway/firewall as well as on the controller host. This would be achieved by creating port forwards on the gateway/firewall where the controller host is located.
Egress Ports Required for UniFi Remote Access
Protocol |
Port Number |
Usage |
UDP | 3478 | Port used for STUN. |
TCP/UDP | 443 | Port used for Remote Access service. |
TCP | 8883 | Port used for Remote Access service. |
NOTE: In most cases, these ports will be open and unrestricted by default.