UniFi USG
This guide will show you how to connect your UniFi device to the GoodAccess Gateway via a site-to-site connection using the IPsec protocol.
Step 1 - Creating a new branch connection
Log in to the GoodAccess Control Panel, and go to Network > Clouds & Branches.
Click + Add new, enter the Branch name and subnet, and select Gateway.
Choose IPSec Protocol, fill out the Settings configuration form, and click Save.
Step 2 - Creating a new site-to-site connection
Log in to the UniFi management interface, and go to Settings > VPN > Site-to-Site VPN.
Give the VPN a name and set the configuration as follows:
VPN Type - IPsec
Pre-Shared Key - Shared Secret (Step 1)
Remote IP / Host - IP of your GoodAccess Gateway
Network Configuration
VPN Type - Route Based
Remote Network(s) - Static + Subnet of your GoodAccess Gateway
Advanced
Switch to Manual, and set the configuration as follows:
Key Exchange Version - IKEv2
IKE (Phase 1)
Encryption - AES-256
Hash - SHA256
DH Group - 16
Lifetime - 28800
ESP (Phase 2)
Encryption - AES-256
Hash - SHA256
DH Group - 16
Lifetime - 3600
Perfect Forward Secrecy (PFS) - Enabled
Click Add.
You have now successfully connected your device to GoodAccess.
Last updated
Was this helpful?