Cloud Gateways Switching WiFi Camera Security Door Access Integrations Accessory Tech Identity
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
User
Sign Up UniFi Site Manager
Help Center Help Articles Professional Phone Support Professional Integrators Community RMA & Warranty Downloads Tech Specs
Cloud Gateways Switching WiFi Camera Security Door Access Integrations Accessory Tech Identity

Social

Facebook Twitter Youtube Instagram

Company

Careers Contact Us Investors

Training

Courses Calendar Trainers Become a Trainer

Tools

WiFiman UISP Design Center
  1. Ubiquiti Help Center
  2. UniFi
  3. Gateway & Routing
  4. Features & Configuration

Hairpin NAT in UniFi

Hairpin NAT is a feature of NAT that is implemented in UniFi. It allows devices on the internal network to access a local server using the network's public IP address. This is particularly useful for environments where a service is hosted internally but needs to be accessed using the same domain name from both inside and outside the network.

How Hairpin NAT Works in UniFi

By default, UniFi's gateway configuration enables Hairpin NAT. When a device on the local network attempts to connect to the public IP address of the UniFi gateway, the traffic is redirected internally, ensuring that port forwarding rules apply as they would for external requests. This makes it seamless for users to access internal services without requiring separate configurations for internal and external access.

Use Cases for Hairpin NAT

  • Hosting a local web or application server that must be accessible via a public domain name.
  • Enabling internal devices to connect to externally accessible services without modifying DNS settings.
  • Simplifying configurations for remote access to internal resources.
Was this article helpful?