UniFi Gateway - Introduction to VPNs

A virtual private network (VPN) is a secure, private means of communicating across the internet. UniFi Gateway support three types of VPNs: VPN Server, VPN Client, and Site-to-Site VPN.

UniFi's VPN Types

VPN Servers

A VPN Server runs on the UniFi gateway and allows clients to connect to it from a remote location. A common example is remote employees connecting to their office network's VPN so they have access to internal resources. UniFi currently supports the following protocols:


Teleport is UniFi's solution for instantly creating a VPN Server and adding users with the click of a button. It leverages the WiFiman mobile app (iOS / Android) and is powered by WireGuard technology to deliver high-speed and reliable connectivity.

VPN Client

A VPN Client allows you to route traffic through an externally-hosted VPN server. Internet traffic sent through this VPN will appear to originate from the remote VPN, thus allowing you to mask your actual public IP address and geographical location. UniFi currently supports up to 8 clients using the following protocols:

Site-to-Site VPN

A Site-to-Site VPN allows you to connect multiple remote networks and share resources between them as if they were together in a single site. This is particularly common for businesses that have multiple office locations. UniFi currently supports the following protocols:

Site Magic

Site Magic SD-WAN is UniFi's solution for creating a high-performance and scalable Site-to-Site VPN between any of your UniFi gateways. Unlike traditional Site-to-Site VPNs that require tedious configuration and oversight, Site Magic leverages the UniFi Site Manager to instantly establish connectivity without concern for subnet overlap or NAT traversal.

To get started with Site Magic, learn more here.

Was this article helpful?
439 out of 642 found this helpful