Help Center Help Articles Professional Support Professional Integrators Community RMA & Warranty Downloads Tech Specs

UniFi CyberSecure by Proofpoint

CyberSecure is a service that significantly enhances UniFi’s Intrusion Detection and Prevention system (IDS/IPS). It introduces a comprehensive library of new threat signatures, updated in real time with 30 to 50+ additions weekly, offering immediate defense against emerging vulnerabilities. CyberSecure leverages Proofpoint’s threat research team and Microsoft Active Protections Program (MAPP) to deliver real-time updates and early access to vulnerability insights, providing cutting-edge protection for your network. This service strengthens your network’s frontline defense, identifying and mitigating threats before they can cause harm.

How Do I Subscribe?

CyberSecure is a per-site service available in the US, Canada, Europe, and the UK. It can be activated directly through Site Manager by clicking the shield icon for the desired site. The subscription plan varies based on the gateway model used.

  • CyberSecure Enterprise by Proofpoint - Available on the EFG and UXG-Enterprise.
  • CyberSecure by Proofpoint - Available on other UniFi Cloud Gateways (or independent UniFi Gateways).

Note: It may take up to 15 minutes after subscribing before registering all new signatures and configuration options.

Minimum Version Requirements

  • UniFi Cloud Gateway: Version 4.1.8 or newer
  • UniFi Gateway: Version 4.1.3 or newer

Important: Users running older versions may not see the option to enable CyberSecure. Please ensure your gateway firmware is updated to the minimum version to access this feature.

Benefits of New Threat Signatures

Intrusion Detection and Prevention works by scanning network traffic for patterns, known as signatures, that indicate known threats. A signature’s matching characteristic may consist of various elements such as IP addresses, ports, and other meta data. The threat signature database stored on UniFi Gateways holds thousands of signatures, each grouped into distinct threat categories so you can flexibly configure your network to best meet your organizational goals. 

When subscribed to CyberSecure, the threat signature library is enhanced by:

  • Using more effective signatures to better mitigate threats
  • Significantly increasing the amount of signatures stored in the database
  • Reducing false positives by using signatures that have undergone extensive analysis
  • Increasing the amount of signature categories

Supported Models and Signature Capacity

The tables below display the number of Signatures and Signature Categories available for UniFi Gateways with CyberSecure service support.

CyberSecure Enterprise

Model Signatures Categories
EFG 95,000+ 53
UXG-Enterprise 95,000+ 53

CyberSecure

Model

Signatures

(Memory Optimized Mode)

Categories

(Memory Optimized Mode)

UDM-Pro-Max

55,000+

(30,000+)

53

(36)

UDM-SE

55,000+

(30,000+)

53

(36)

UDM-Pro

55,000+

(30,000+)

53

(36)

UDW

55,000+

(30,000+)

53

(36)

UCG-Max

55,000+

(30,000+)

53

(36)

UCG-Ultra

55,000+

(30,000+)

53

(36)

UXG-Max

55,000+

(30,000+)

53

(36)

UXG-Pro

55,000+

(30,000+)

53

(36)

UXG-Lite

-

-

UDM 20,000+ 13
UDR 20,000+ 13
UX - -

Memory Optimized Mode

Gateways have limited resources like memory and CPU to handle tasks. Intrusion Prevention uses more memory as the number of enabled signatures increases. A full signature list may strain your gateway, especially in networks with many connected clients, high traffic volumes, or memory-intensive features like BGP Routing, Content Filtering, or Ad Blocking.

Memory Optimized Mode provides a curated list of signatures, balancing robust security with lower memory usage, making it ideal for resource-constrained environments. 

Was this article helpful?