S2S VPN for UMR

Whether you're looking for a quick solution or aiming for a more comprehensive long-term setup, establishing a Site-to-Site (S2S) VPN between your UniFi OS console and UMR is a straightforward process. We offer two methods to achieve this goal: two short-term fixes and one long-term solution.

UniFi Cloud Gateway Selection

Prerequisites: UniFi Cloud Gateway with a public IP and NET Application version 8.1 or above.

  1. Log in to Mobility Manager and navigate to Mobile Routing > Settings > VPN > Site-to-Site VPN.
  2. Under Setup, choose UniFi Cloud Gateway, and select the cloud gateway you wish to connect to.
  3. Under Network Configuration, select the Remote Network(s) you would like to connect to and then click Add.
  4. Click Save.
  5. Navigate to Devices and select the UMR. Navigate to Settings in the device panel.
  6. Select VPN Connect, and select the Site-to-Site VPN profile.
  7. Click Apply Changes to establish a Site-2-Site VPN connection to an UniFi cloud gateway.

Additional Routes Configuration

Prerequisites: UniFi Cloud Gateway with a public IP and NET Application version 8.1 or above.

  1. Log in to Site Manager, open UniFi Network.
  2. Navigate to Settings > VPN > VPN Server and create a new server.
  3. Select WireGuard and enter the required information.
  4. Click Add Client, select Manual Authorization, and download the VPN configuration file.
  5. Enable Additional Routes and enter 192.168.105.0/24.
  6. Click Add.
  7. Log in to Mobility Manager and ensure your UMR is online and connected.
  8. Navigate to Settings > VPN and click Create New.
  9. Select WireGuard and upload the previously downloaded configuration file.
  10. Navigate to Devices, select your UMR, and open its Settings panel.
  11. Enable VPN Connect, and choose the imported WireGuard VPN profile.
  12. Click Apply Changes to establish a secure VPN connection to your UniFi cloud gateway.
Was this article helpful?
1 out of 4 found this helpful