UniFi CyberSecure by Proofpoint
CyberSecure is a service that significantly enhances UniFi’s Intrusion Detection and Prevention system (IDS/IPS). It introduces a comprehensive library of new threat signatures, updated in real time with 30 to 50+ additions weekly, offering immediate defense against emerging vulnerabilities. CyberSecure leverages Proofpoint’s threat research team and Microsoft Active Protections Program (MAPP) to deliver real-time updates and early access to vulnerability insights, providing cutting-edge protection for your network. This service strengthens your network’s frontline defense, identifying and mitigating threats before they can cause harm.
How Do I Subscribe?
CyberSecure is a per-site service available in the US, Canada, Europe, and the UK. It can be activated directly through Site Manager by clicking the shield icon for the desired site. The subscription plan varies based on the gateway model used.
- CyberSecure Enterprise by Proofpoint - Available on the EFG and UXG-Enterprise.
- CyberSecure by Proofpoint - Available on other UniFi Cloud Gateways (or independent UniFi Gateways).
Note: It may take up to 15 minutes after subscribing before registering all new signatures and configuration options.
Minimum Version Requirements
- UniFi Cloud Gateway: Version 4.1.8 or newer
- UniFi Gateway: Version 4.1.3 or newer
Important: Users running older versions may not see the option to enable CyberSecure. Please ensure your gateway firmware is updated to the minimum version to access this feature.
Benefits of New Threat Signatures
Intrusion Detection and Prevention works by scanning network traffic for patterns, known as signatures, that indicate known threats. A signature’s matching characteristic may consist of various elements such as IP addresses, ports, and other meta data. The threat signature database stored on UniFi Gateways holds thousands of signatures, each grouped into distinct threat categories so you can flexibly configure your network to best meet your organizational goals.
When subscribed to CyberSecure, the threat signature library is enhanced by:
- Using more effective signatures to better mitigate threats
- Significantly increasing the amount of signatures stored in the database
- Reducing false positives by using signatures that have undergone extensive analysis
- Increasing the amount of signature categories
Supported Models and Signature Capacity
The tables below display the number of Signatures and Signature Categories available for UniFi Gateways with CyberSecure service support.
CyberSecure Enterprise
Model | Signatures | Categories |
EFG | 95,000+ | 53 |
UXG-Enterprise | 95,000+ | 53 |
CyberSecure
Model |
Signatures (Memory Optimized Mode) |
Categories (Memory Optimized Mode) |
UDM-Pro-Max |
55,000+ (30,000+) |
53 (36) |
UDM-SE |
55,000+ (30,000+) |
53 (36) |
UDM-Pro |
55,000+ (30,000+) |
53 (36) |
UDW |
55,000+ (30,000+) |
53 (36) |
UCG-Max |
55,000+ (30,000+) |
53 (36) |
UCG-Ultra |
55,000+ (30,000+) |
53 (36) |
UXG-Max |
55,000+ (30,000+) |
53 (36) |
UXG-Pro |
55,000+ (30,000+) |
53 (36) |
UXG-Lite |
- |
- |
UDM | 20,000+ | 13 |
UDR | 20,000+ | 13 |
UX | - | - |
Memory Optimized Mode
Gateways have limited resources like memory and CPU to handle tasks. Intrusion Prevention uses more memory as the number of enabled signatures increases. A full signature list may strain your gateway, especially in networks with many connected clients, high traffic volumes, or memory-intensive features like BGP Routing, Content Filtering, or Ad Blocking.
Memory Optimized Mode provides a curated list of signatures, balancing robust security with lower memory usage, making it ideal for resource-constrained environments.