UniFi Network Application 8.5.6 (RC)

UniFi Network Application 8.5.6 Update: New Features and Improvements

UniFi Network Application 8.5.6 introduces a host of new features, enhancements, and bug fixes aimed at improving user experience, security, and network management. Key updates include the addition of NetFlow and Packet Capture on Gateways, alongside an enhanced Dashboard with customizable widgets, and extended logging and VPN support. Below is an in-depth overview of these updates:


Improved Dashboard Experience

The Dashboard has been enhanced to provide more immediate insight into critical network issues, allowing users to customize widgets and time ranges for a more personalized experience. This flexibility lets network administrators focus on the most important data for their specific environments. Key widgets include:

  • Active Channels
  • AP Radio Overview
  • Deployment Density
  • Most Active APs, Clients, and Apps

These improvements make it easier to monitor network health at a glance. Expect more widgets in upcoming releases, further extending the Dashboard’s capabilities.


NetFlow Support

NetFlow support is now available, allowing administrators to capture and export traffic information to external collectors. This helps in analyzing traffic patterns and enhancing security. Important details include:

  • NetFlow versions 10, 9, and 5 are supported.
  • Users can customize the collector address, port, and rates.
  • UniFi (Cloud) Gateway firmware version 4.1 or newer is required.
  • Not supported on UniFi Express and UXG-Lite models.

NetFlow provides valuable data on bandwidth usage, helping organizations optimize performance and security.


SIEM Activity Logging

The new SIEM (Security Information and Event Management) Activity Logging feature allows exporting system logs to SIEM servers, such as Splunk, Microsoft Sentinel, and IBM QRadar. Administrators can now send all or specific logs from the UniFi Network Application to a SIEM server, improving security monitoring and response times.


Packet Capture Feature

Administrators can now perform packet captures on Gateways, enabling the download of capture files for deeper analysis. The feature offers:

  • Capture on specific networks and for a defined duration.
  • Requires UniFi (Cloud) Gateway firmware version 4.1 or newer.
  • Not supported on UniFi Express and UXG-Lite models.

This is especially useful for troubleshooting network issues and identifying traffic anomalies.


VPN and Security Enhancements

UniFi Network Application 8.5.6 adds support for both IPsec and OpenVPN Site-to-Site VPNs within Policy-Based Routing. This update strengthens connectivity between different network locations. Key points include:

  • IPsec requires UniFi (Cloud) Gateway firmware version 4.1 or newer.
  • Added the ability to configure multiple CA certificates for RADIUS TLS Profiles, improving secure authentication.

Additional Improvements

Several other enhancements have been introduced to streamline network management and improve security:

  • SNMP location and contact details are now configurable in Gateway side panels.
  • System Logs now include information for ports dropping large amounts of traffic, allowing for better troubleshooting.
  • WiFi Settings now support WPA2/WPA3 Enterprise Mode.
  • Egress Rate Limit options have been added for better control over bandwidth usage.

Bug Fixes

A range of bug fixes have been applied to ensure smooth operation:

  • Fixed issues with channels not being properly marked as DFS.
  • Resolved problems where VLAN Magic was not available on EFGs.
  • Fixed issues with Port Forwarding interfaces and Masquerade/SNAT/DNAT rules on several devices.
  • Fixed false system logs related to duplicated leases for IP 0.0.0.0.
  • Resolved problems with the Topology page and Client settings.

The UniFi Network Application 8.5.6 update is a significant step forward in providing network administrators with more control, deeper insights, and enhanced security. Whether through the improved Dashboard, comprehensive NetFlow and SIEM support, or advanced VPN features, this update helps to streamline network management and troubleshooting.

With ongoing improvements and more features on the horizon, UniFi continues to evolve as a robust solution for network management.