Overview
This article lists the ports used by the UniFi Network Controller. To learn how to change ports please see this article: UniFi - Change Default Ports for Controller and UAPs. By default, the UniFi Controller will operate on the ports listed in the following sections. This is applicable to a UniFi Network Controller installed on the UniFi Cloud Key as well as other hosts.
Table of Contents
- Local Ingress Ports
- Ingress Ports Required for L3 Management Over the Internet
- Egress Ports Required for UniFi Remote Access
- Related Articles
Local Ingress Ports
|
TCP or UDP |
Port Number |
Usage |
| UDP | 3478 | Port used for STUN. |
| TCP | 5514 | Port used for remote syslog capture. |
| TCP | 8080 | Port used for device and controller communication. |
| TCP | 8443 | Port used for controller GUI/API as seen in a web browser |
| TCP | 8880 | Port used for HTTP portal redirection. |
| TCP | 8843 | Port used for HTTPS portal redirection. |
| TCP | 6789 | Port used for UniFi mobile speed test. |
| TCP | 27117 | Port used for local-bound database communication. |
| UDP | 5656-5699 | Ports used by AP-EDU broadcasting. |
| UDP | 10001 | Port used for device discovery |
| UDP | 1900 | Port used for "Make controller discoverable on L2 network" in controller settings. |
NOTE:Although TCP 22 is not one of the ports the UniFi Network Controller operates on by default, it is worth mentioning in this article since it is the port used when UniFi devices or the controller is accessed via SSH.
Ingress Ports Required for L3 Management Over the Internet
|
TCP or UDP |
Port Number |
Usage |
| UDP | 3478 | Port used for STUN. |
| TCP | 8080 | Port used for device and controller communication. |
| TCP | 8443 | Port used for controller GUI/API as seen in a web browser |
| TCP | 8880 | Port used for HTTP portal redirection. |
| TCP | 8843 | Port used for HTTPS portal redirection. |
| TCP | 6789 | Port used for UniFi mobile speed test. |
NOTE:These ports need to be open at the gateway/firewall as well as on the controller host. This would be achieved by creating port forwards on the gateway/firewall where the controller host is located.
Egress Ports Required for UniFi Remote Access
|
TCP or UDP |
Port Number |
Usage |
| UDP | 3478 | Port used for STUN. |
| TCP/UDP | 443 | Port used for Remote Access service. |
| TCP | 8883 | Port used for Remote Access service. |
NOTE:In most cases, these ports will be open and unrestricted by default.