Does the content filtering work separately to the dns ? For example, nextdns offers filtering to adult websites. Does that mean thete are two features working to block the website?
@@Scullzyywhen you do the parental controls you can't use your own DNS so the only way to use that other DNS would be to create a regular network and point its DNS to that DNS instead of using the built-in parental controls on unifi
In the IPv4 configuration of the “kids” network, you can click the “isolate” check box. This will create all the rules needed to block access to the other VLANS automatically, correct?
I have another question. I'm switching over from a TP Link AXE300 provided by my fiber company. I already have a Proxmox server, nginx proxy, and Adguard running, with DHCP handing out reserved IPs for a bunch of my devices. How do I make sure that everything stays the same when I switch to a UDM Pro? I don't want to have to re-do all the IPs in nginx etc and have everything break... Is there a way to set all this stuff up on the UDM before making it go live so the switch over goes smoothly?
@@area51xi just a heads up too remember when you plug in the UDM to the old router you'll want to plug in the UDM by the wan port of the UDM to any port that's not the way I'm port on your old router when setting up the udm. You'll also have to plug your computer directly into the UDM when you're configuring it or your laptop
Hi. Thanks for the tutorial, which I followed. If I log onto the kids only WiFi network then RUclips is blocked. But if I then turn on a VPN I can get to RUclips. How do you stop them deploying a VPN?
To prevent guests from using VPNs to access inappropriate content on your guest Wi-Fi network, you can use the **Content Filtering** feature available in the UniFi Network application. Here’s how to set it up: 1. **Navigate to Network Settings:** - Open the **UniFi Network** application. - Go to **Settings** > **Networks**. 2. **Select the Guest Network:** - Choose the guest network you want to configure. 3. **Enable Content Filtering:** - Under the network settings, find the **Content Filtering** section. - Select the **Family** option. This setting blocks VPNs as well as explicit, adult, and malicious websites. Google will use **Safe Search** and RUclips is set to **Restricted Mode**. ### Example Configuration: - **Network:** Guest - **Content Filtering:** Family By enabling the **Family** content filtering option, you ensure that VPNs are blocked, along with other inappropriate content, providing a safer browsing experience for your guests. For more detailed information, you can refer to the [UniFi Gateway - Content Filtering](help.ui.com/hc/en-us/articles/16936895868823) guide. ### Related articles: 1. **[UniFi Gateway - Content Filtering](help.ui.com/hc/en-us/articles/12568927589143-UniFi-Gateway-Content-Filtering):** This article explains how UniFi's Content Filtering blocks explicit, adult, and malicious websites with "Work" and "Family" options. 2. **[UniFi Hotspot Portal and Guest WiFi](help.ui.com/hc/en-us/articles/115000166827-UniFi-Hotspot-Portal-and-Guest-WiFi):** This article explains setting up a UniFi Hotspot Portal, customizing branding, choosing authentication methods, ensuring security, and configuring guest networks. 3. **[How to Implement Network and Client Isolation](help.ui.com/hc/en-us/articles/18965560820247-How-to-Implement-Network-and-Client-Isolation):** This article explains how to use UniFi's network/VLAN and client device isolation features to enhance network security.
@@mcscapsuletech Many thanks for the very helpful reply, I shall give it a go on the weekend. One question though, can this block apps like RUclips being used via the VPN rather than just explicit content?
You should only set the DNS on a network level, if you have a local DNS Server and want to avoid using your gateway as a DNS forwarder. Set the DNS in your internet configuration and leave it on auto in your network. It'll configure your gateway as DNS and your gateway will cache and forward requests.
I set up custom blocks using NextDNS, and it works as an ad block and tracker block as well. Works great. Really easy to set up and implement. Even a non tech person can do it.
Nothing those are hard to do but their Xboxes their computers and any tablet that's Wi-Fi only you should be good. The only way that the phones would work or 4G devices as if you live in a bad area with bad 4G network and they only can use Wi-Fi for fast searching then you're in the rock and rolling
Unifi needs to implement specific client device features. I would live to set time limits, hours of internet for each of my kids devices, not whole network changes. This is way too much work
I'll make a video on that because this is just parental controls limiting internet really to me isn't parental controls of keeping your kids safe because they're still having internet time but I will make a video to show you it'll come out this week I'll even show you how to make it where you can select just certain devices of there since say no internet to a certain times so different devices can have internet and other ones won't you'll be able to select when what times and all that stuff and when it comes back on
It's just a double of assurance it's kind of like when you go to get your taxes done and you did it yourself you're like I'm good only just going to make another opinion I just want to make sure there's no possible way so it doesn't hurt anything to have it I just want to be safe then sorry
Did you ever do a comprehensive Pi-Hole VLAN setup with Unifi gear? Might be worth a look.
Can you PLEASE make a video of this please? ☝️
Does the content filtering work separately to the dns ? For example, nextdns offers filtering to adult websites. Does that mean thete are two features working to block the website?
@@Scullzyywhen you do the parental controls you can't use your own DNS so the only way to use that other DNS would be to create a regular network and point its DNS to that DNS instead of using the built-in parental controls on unifi
In the IPv4 configuration of the “kids” network, you can click the “isolate” check box. This will create all the rules needed to block access to the other VLANS automatically, correct?
@@CharcuterieDIY-ej8jf correct but if you want to allow certain stuff then for them to have access to then it's just better to do it manually
I have another question. I'm switching over from a TP Link AXE300 provided by my fiber company. I already have a Proxmox server, nginx proxy, and Adguard running, with DHCP handing out reserved IPs for a bunch of my devices. How do I make sure that everything stays the same when I switch to a UDM Pro? I don't want to have to re-do all the IPs in nginx etc and have everything break... Is there a way to set all this stuff up on the UDM before making it go live so the switch over goes smoothly?
just plug the udm pro int your old router first the set it all up the remove your old router and put the udm in its spot
let me know if that help
@@mcscapsuletech Thanks I'll try that.
@@area51xi just a heads up too remember when you plug in the UDM to the old router you'll want to plug in the UDM by the wan port of the UDM to any port that's not the way I'm port on your old router when setting up the udm. You'll also have to plug your computer directly into the UDM when you're configuring it or your laptop
How do you prevent someone from using a VPN on their phone to bypass restrictions?
Hi. Thanks for the tutorial, which I followed. If I log onto the kids only WiFi network then RUclips is blocked. But if I then turn on a VPN I can get to RUclips. How do you stop them deploying a VPN?
@@chrisdavies6175 you can just disable all the VPN apps and the VPN websites and you should be good
To prevent guests from using VPNs to access inappropriate content on your guest Wi-Fi network, you can use the **Content Filtering** feature available in the UniFi Network application. Here’s how to set it up:
1. **Navigate to Network Settings:**
- Open the **UniFi Network** application.
- Go to **Settings** > **Networks**.
2. **Select the Guest Network:**
- Choose the guest network you want to configure.
3. **Enable Content Filtering:**
- Under the network settings, find the **Content Filtering** section.
- Select the **Family** option. This setting blocks VPNs as well as explicit, adult, and malicious websites. Google will use **Safe Search** and RUclips is set to **Restricted Mode**.
### Example Configuration:
- **Network:** Guest
- **Content Filtering:** Family
By enabling the **Family** content filtering option, you ensure that VPNs are blocked, along with other inappropriate content, providing a safer browsing experience for your guests.
For more detailed information, you can refer to the [UniFi Gateway - Content Filtering](help.ui.com/hc/en-us/articles/16936895868823) guide.
### Related articles:
1. **[UniFi Gateway - Content Filtering](help.ui.com/hc/en-us/articles/12568927589143-UniFi-Gateway-Content-Filtering):** This article explains how UniFi's Content Filtering blocks explicit, adult, and malicious websites with "Work" and "Family" options.
2. **[UniFi Hotspot Portal and Guest WiFi](help.ui.com/hc/en-us/articles/115000166827-UniFi-Hotspot-Portal-and-Guest-WiFi):** This article explains setting up a UniFi Hotspot Portal, customizing branding, choosing authentication methods, ensuring security, and configuring guest networks.
3. **[How to Implement Network and Client Isolation](help.ui.com/hc/en-us/articles/18965560820247-How-to-Implement-Network-and-Client-Isolation):** This article explains how to use UniFi's network/VLAN and client device isolation features to enhance network security.
@@mcscapsuletech Many thanks for the very helpful reply, I shall give it a go on the weekend. One question though, can this block apps like RUclips being used via the VPN rather than just explicit content?
You should only set the DNS on a network level, if you have a local DNS Server and want to avoid using your gateway as a DNS forwarder.
Set the DNS in your internet configuration and leave it on auto in your network. It'll configure your gateway as DNS and your gateway will cache and forward requests.
Yeah but if you use a pie hole it's different I use a pie hole and on that network I did not want to use a pie hole
What's to stop the kid just using cellular 4G/5G. Assuming they have regular smart phone. Is there anything that can be done to limit cellular?
Parental controls on the actual phone device. Almost every popular app even has parental controls.
I set up custom blocks using NextDNS, and it works as an ad block and tracker block as well. Works great. Really easy to set up and implement. Even a non tech person can do it.
Nothing those are hard to do but their Xboxes their computers and any tablet that's Wi-Fi only you should be good. The only way that the phones would work or 4G devices as if you live in a bad area with bad 4G network and they only can use Wi-Fi for fast searching then you're in the rock and rolling
LOL..or use the neighbors that can’t afford or don’t care to protect anything!
Unifi needs to implement specific client device features. I would live to set time limits, hours of internet for each of my kids devices, not whole network changes. This is way too much work
You can do that
I'll make a video on that because this is just parental controls limiting internet really to me isn't parental controls of keeping your kids safe because they're still having internet time but I will make a video to show you it'll come out this week I'll even show you how to make it where you can select just certain devices of there since say no internet to a certain times so different devices can have internet and other ones won't you'll be able to select when what times and all that stuff and when it comes back on
Would you like me to do that
@@mcscapsuletech yes please, I had no idea that was possible. Cheers mate
@@michaelgeorge5436 I will release it in the next couple days
This guy is on beer two, maybe three! But that's fine, he's not driving heavy equipment! Go team!
I'm not on anything I barely even drink I'm just high in life I don't do drugs I don't do any of that stuff lol
What's the reasoning for having the "block iot/kids to all" rule when there is already the block inter vlan routing?
It's just a double of assurance it's kind of like when you go to get your taxes done and you did it yourself you're like I'm good only just going to make another opinion I just want to make sure there's no possible way so it doesn't hurt anything to have it I just want to be safe then sorry
Maybe start by telling me what Unifi is? router or something else?
Dude, are you stoned when making this video?
No I am not why lol