The zone based firewall is actually very, very good and intuitive once you get to the grips with it. Crystal clear now what traffic can go where this way preventing unnoticed gaps
I just migrated a decently large site (~30 VLAN’s) to the new firewall architecture. It’s interesting, and almost certainly more intuitive for new users, though it does require you to rethink quite a bit. It’s a learning curve for sure, can’t wait until I am proficient with it.
@@CanadaHasFallen as someone else said, make sure you’re UniFi OS console is also up to date in control centre. Also it’s not super obvious, but there’s a banner at the top of the Security & Firewall settings that has a link to migrate your rules to the new architecture. Once you click that you’ll see the new UI.
my 3 injectors are still cheaper, ubiquiti please release a cheaper 100 euro 2.5poe+ instead of poe++, or 2 port 2.5gbe poe+ with 2 port 1gbe poe+ and 1 poer 2.5gbe non poe wan. i only have ai pro , U7 pro max and i will be adding lpr camera next month, maybe npt because ai pro has same specs i only need special filter i hope you guys release it for ai pro
yah the non poe version is 160$ but needs a poe input to power it or the included usb c 5w 3a adapter. the poe version is $200 and needs another $100 for the power brick to power the poe or just run poe input to run as a switch.
1:02 WTF Ubiquiti, these signatures are included in ET OPEN (Which you ship), why are you charging for something that's free? Spamhaus Drop is included with ET OPEN but for some reason you've chosen to not include those rules.
Thanks, to clarify, what users receive with Cybersecure is based on ET PRO that is a paid signature database and it includes ET PRO and ET OPEN optimized to each device .
@@UbiquitiInc This doesn't answer my question. Spamhaus DROP is included in ET open, NOT ET PRO. You even included some of these supposed paid rules in /usr/share/ubios-udapi-server/ips/rules/ for all users but you chose to not activate these rules purely so CyberSecure can seem like a better deal then it actually is. I don't mind you charging for rules, but this is an extremely dishonest way of doing it, and this response is also dishonest.
Ubiquiti honest? Maybe in the past. I was huge fan of ubnt. Now not so much. Support is tragic, tickets open for months without any fix and time frame. Overpriced equipment, a lot. And now subscription. Is ubiquiti a new cisco 😀 soon we will pay for every new interesting functions. CyberSecure need to be free, we paid for equipment, or at minimum CS basic for free with limited signatures, but with ability to add own signatures. Then SC paid if you want ready solution. We need to say STOP and we need to say it now, otherwise soon we will be flooded with subscription.
It's much better perhaps you should build a wizard that you can select if you want a home network or a zero trust network and close all ports. That is what i'm missing but i think that new schema solve a lot of them.
$100 for the power supply for the 8 port Poe and $200 for the switch. I was excited for this product for my handful of 2.5G stuff but at this point it seems you are aiming for maximum profit instead of being price competitive. I’ll just buy a $50 2.5G switch and skip upgrading the speeds on my wifi.
Flex 2.5G switches are designed to be flexibly powered via PoE: (1) 10 GbE PoE+++ input port for power / SFP+ port combo - 57W PoE availability with PoE+++ input - 37W PoE availability with PoE++ input - 12W PoE availability with PoE+ input For deployments that require higher power, you can purchase the optional 210W AC Adapter for 196W power availability.
@@trevorwoerner8211 210W is nothing to scoff at, though, and is over x5.5 as much power as what PoE++ would give you. A 54V 210W power supply for $100 is reasonable.
I've spent so much money on Unifi stuff & I'm just a home lab user. I built a whole server full of Unifi gear. I need to stop I think I'm addicted. LOL
Any word on wireguard s2s to non-unifi devices? I really need this feature. ( i know it can be done via ssh, but i would rather have it in the interface so i know it won't break with an update)
Regarding the new flex switches, do they support vlans tagging? I have one of the old flex minis and made the mistake of assuming it fully handled vlans but turns out it doesn't handle vlan tags so can't really trunk on it and whenever I see "flex" it make me hesitant due to this. Besides that they look like a nice switch.
I can't think of a reason not to integrate Omni capability into the body of the U7 Outdoor/Pro. Do you still get six spatial streams with those two omnis?
@@maquereautin I truly don't know what made it show up, I wish I could help. It seemed like maybe it was a cache thing, but seriously I clicked on and off the security tab multiple times and eventually got it. I have to do it on another console so if I glean anything useful I'll report back.
It's nice to see some more improvements on the firewall side, defiitely a welcome addition but I really hope Ubiquiti expand the NGFW capabilities to compete even with the free Sophos Firewall Home Edition offerings, as opposed to having to find ways or merging these ecosystems.
What about adding UDP Relay to UniFi Network so we can finally have SSDP discovery across vlans? I’m sitting here keeping a pfSense server alive just for UDP Relay so we can cast to devices on different vlans. Anything other than Apple needs SSDP.
@ wrong. mDNS in UniFi is a mDNS Repeater. It only works with apple bonjour. In order to get Sonos, google cast, or anything SSDP like control4 etc working, you need a mDNS Relay. In pfSense you have both (mDNS Repeater) Avahi and UDP Relay which is what is missing in UniFi. I can turn on mDNS and all the Apple boxes work fine, but for Sonos to work (they use SSDP Discovery), you need UDP relay which is still missing.
@@antikommunistischaktionunfortunately you are wrong. mDNS is a repeater that works for services like Apple bonjour. But as soon as you use SSDP Discovery for Sonos, Google Cast, Control4, DLNA, you require a Relay. PfSense has Avahi (mDNS repeater) and UDP Relay which is what is still missing from UniFi. Try streaming to a Sonos on a different vlans and let me know if it works
I will never use anything else again. I just updated to OS 9 and got the new protection subscription. This is game changing for our home network, no viruses, no more!
Hell yeah!! Some impressive updates here! Thanks for not charging for the securepoint service! That’s awesome to have live security threat updates to improve network security! Cheers!!
So infuriating, I just installed two U7 Outdoor AP’s. One for front and one for back. They weren’t quite what I wanted, but it didn’t seem like there was going to be any other option. And here we go, the coverage area I wanted for 5ghz and it now includes 6ghz. 😢
The Flex 2.5 PoE is exactly the device I was looking for recently. However, I still need to wait before diving into the UniFi ecosystem until the U7 Pro issues are resolved (significant problems with IoT devices on the 2.4 GHz band).
$99 a year for Pro, $499 for Enterprise. Most of us already pay several THOUSAND dollars a year for security upgrades/subscriptions for our Enterprise and Business security devices. $499 is an absolute steal.
This is what i have been waiting for. I have been holding off because everything has fallen short of the worth upgrading mark, or shot way past it. Thank you.
and i just bought the enterprise 8 poe one for them to release this new flex 8 port damn youuuuuu :)) jokes aside that flex 8 port will be one of the first purchases to avoid dual 4 port flex 2.5 and have a better line upstream with 10gb
Stop with the naming schemes, where does this even fit in the line up? - HD, Professional, Pro HD, Pro Max, Enterprise, Flex, Ultra. Can we have anymore names?
Very pleased about more 2.5G switching, I’m all onboard to keep adding more Unifi switching into my home lab if its going 2.5G as a minimum speed, however I still prefer pfSense as my gateway, please please never go down the path of trying to force the use of Unifi gateways with any kind limitations, that could also work with 3'rd party gaways such as pfsense
POE++ !!! With 20 of your newest AI outdoor dome cameras? That shtt will melt. That’s a fire begging to be ignited. It’ll be so hot you can’t touch it. Those tiny little fans can’t remove that much heat. People will not be comfortable with that in a closet. When will you guys get serious about cooling and create a mini compressor AC unit for the rack? Our data demands with AI and soon 8K streaming, are growing exponentially faster than we can keep up. I’m really impressed with how quickly you guys are doing it but that heat is not being managed properly. I know server components are built for heat. So is my Lexus, I still don’t push those limits.
End of 2024: I need to stop buying Ubiquiti products
January 7 2025: Take my money 🤑
💯
Accurate
So true
Don't you mean, more of your money! ... lol
I was about to sell everting because lack of 2.5Gbps support.
whoever is making these videos...... Well done! that was an excellent demonstration.
Ubiquiti has been killing it with these releases.
The zone based firewall is actually very, very good and intuitive once you get to the grips with it. Crystal clear now what traffic can go where this way preventing unnoticed gaps
And euh.... is someone willing to sponsor me? My shopping list suddenly exploded
The video shows 9.0, but 9.0.108 is live....AND in 9.0.108 the firewall security page DOES NOT have this? Does it need to be enabled?
@@CanadaHasFallenyou also have to upgrade to the latest Unifi OS for your device. Try that to see if that helps. That was my problem.
I just migrated a decently large site (~30 VLAN’s) to the new firewall architecture. It’s interesting, and almost certainly more intuitive for new users, though it does require you to rethink quite a bit. It’s a learning curve for sure, can’t wait until I am proficient with it.
@@CanadaHasFallen as someone else said, make sure you’re UniFi OS console is also up to date in control centre. Also it’s not super obvious, but there’s a banner at the top of the Security & Firewall settings that has a link to migrate your rules to the new architecture. Once you click that you’ll see the new UI.
8 port 2.5GbE++? Nice!
my 3 injectors are still cheaper, ubiquiti please release a cheaper 100 euro 2.5poe+ instead of poe++, or 2 port 2.5gbe poe+ with 2 port 1gbe poe+ and 1 poer 2.5gbe non poe wan. i only have ai pro , U7 pro max and i will be adding lpr camera next month, maybe npt because ai pro has same specs i only need special filter i hope you guys release it for ai pro
yah the non poe version is 160$ but needs a poe input to power it or the included usb c 5w 3a adapter.
the poe version is $200 and needs another $100 for the power brick to power the poe or just run poe input to run as a switch.
Need!
The Flex 2.5G is the exact switch I need! I was hoping there would be an announcement about this at CES, but this is even better!
1:02 WTF Ubiquiti, these signatures are included in ET OPEN (Which you ship), why are you charging for something that's free? Spamhaus Drop is included with ET OPEN but for some reason you've chosen to not include those rules.
Thanks, to clarify, what users receive with Cybersecure is based on ET PRO that is a paid signature database and it includes ET PRO and ET OPEN optimized to each device .
@@UbiquitiInc This doesn't answer my question. Spamhaus DROP is included in ET open, NOT ET PRO. You even included some of these supposed paid rules in /usr/share/ubios-udapi-server/ips/rules/ for all users but you chose to not activate these rules purely so CyberSecure can seem like a better deal then it actually is.
I don't mind you charging for rules, but this is an extremely dishonest way of doing it, and this response is also dishonest.
Ubiquiti honest? Maybe in the past. I was huge fan of ubnt. Now not so much. Support is tragic, tickets open for months without any fix and time frame. Overpriced equipment, a lot. And now subscription. Is ubiquiti a new cisco 😀 soon we will pay for every new interesting functions. CyberSecure need to be free, we paid for equipment, or at minimum CS basic for free with limited signatures, but with ability to add own signatures. Then SC paid if you want ready solution. We need to say STOP and we need to say it now, otherwise soon we will be flooded with subscription.
@@jacksoncremean1664 nah you are dumb
Really thought I was done with my network setup. Then Ubiquiti said "hold my beer"
“Need more 2.5Gb?”
No, I need 10Gb.
They already have you covered there with their aggregation switches.
@@matthewbradley8971 Not for SFP
i need 100g. Well ok, I don't NEED it, but it would be nice.
It's much better perhaps you should build a wizard that you can select if you want a home network or a zero trust network and close all ports. That is what i'm missing but i think that new schema solve a lot of them.
That's Awesome! Any updates on when the Wifi 7 Wall Ap (with ethernet ports) will launch?
$100 for the power supply for the 8 port Poe and $200 for the switch. I was excited for this product for my handful of 2.5G stuff but at this point it seems you are aiming for maximum profit instead of being price competitive. I’ll just buy a $50 2.5G switch and skip upgrading the speeds on my wifi.
Flex 2.5G switches are designed to be flexibly powered via PoE:
(1) 10 GbE PoE+++ input port for power / SFP+ port combo
- 57W PoE availability with PoE+++ input
- 37W PoE availability with PoE++ input
- 12W PoE availability with PoE+ input
For deployments that require higher power, you can purchase the optional 210W AC Adapter for 196W power availability.
@ a U6 Enterprise uses 13, hook up another comparable AP and you’re down to 11w of power off ++. $100 for a 210w power brick is just obscene.
@@trevorwoerner8211 210W is nothing to scoff at, though, and is over x5.5 as much power as what PoE++ would give you. A 54V 210W power supply for $100 is reasonable.
How does it work with usb c PD, can I use a lower wattage charger if I only have 1 AP that requires POE?
Man, I wish I hadn't just bought a pro max 24 poe, the HD version looks like exactly what I need
Where is my U7 Mesh Pro 🥲 Or did I miss something and directional antennas are a new meta for outdoors?
This announcement was so good, I had to watch it twice! Well done.
You had my curiosity but now you have my attention.
Yeesss. Finally small switches with SFP+ !! Well done.
I've spent so much money on Unifi stuff & I'm just a home lab user. I built a whole server full of Unifi gear. I need to stop I think I'm addicted. LOL
All those new features but we still can't get a GUI based SSL instalation.
Do you support IPv6 in... really anything yet? Site Magic, VPNs, etc
Does anyone know about skinning or painting (spray?) over the outdoor 7 APs?
they will be fine as long as the paint doesn't mess with plastics.
When is Suricata getting an update? Is that in this update for the ET Pro and Open Ruleset with Cybersecure?
Any word on wireguard s2s to non-unifi devices? I really need this feature. ( i know it can be done via ssh, but i would rather have it in the interface so i know it won't break with an update)
Where are the 10Gbps switches 5-8 ports in your lineup ?
i need to hear more about this local API... engage the home assistant community and watch the sales follow!!!
Just when you think UniFi Network is fantastic, UniFi comes out with something more amazing.
Regarding the new flex switches, do they support vlans tagging? I have one of the old flex minis and made the mistake of assuming it fully handled vlans but turns out it doesn't handle vlan tags so can't really trunk on it and whenever I see "flex" it make me hesitant due to this. Besides that they look like a nice switch.
I can't think of a reason not to integrate Omni capability into the body of the U7 Outdoor/Pro. Do you still get six spatial streams with those two omnis?
Are there any requirements for the new zone firewall? I dont get the option to migrate on my UDM Pro
I had to click around a few times in the unifi portal, the app wasn't giving me the option to "upgrade to zone firewall" but found it there.
You just clicked around? Ive done that, logged out and back in. Still not showing up. v9.0.108@Obtuse94
@@maquereautin I truly don't know what made it show up, I wish I could help. It seemed like maybe it was a cache thing, but seriously I clicked on and off the security tab multiple times and eventually got it. I have to do it on another console so if I glean anything useful I'll report back.
@@maquereautin my network version is right already. maybe it depends on UI os version as well. will update that now.
@@Obtuse94 UPDATE: it was the unify OS version for me. You need to be on Network v9.0.108 AND Unify OS 4.1.13. For me that worked.
It's nice to see some more improvements on the firewall side, defiitely a welcome addition but I really hope Ubiquiti expand the NGFW capabilities to compete even with the free Sophos Firewall Home Edition offerings, as opposed to having to find ways or merging these ecosystems.
Can we release the U7 regular please!!!!
Is it finally possible to delete offline controllers from Unifi portal?
when a unifi controller was 24h offline you can delete it. the option is very well hidden.
@@705marc i would love to hear more about this. I searched and searched for it.
@@705marcIts not that hidden right? It's in the site manager?
Still no VLAN support for 2.5 Flex :(
I wish the multi-WAN worked properly :/
Will Network 9 come to the Express?
I'm not seeing it on any of the release channels
Is the gen1 US-8-150 watt switch still in production? There's been no stock of it in the UK for months.
CyberSecurity feature is available only in the US, Canada, EU and UK!!!???
When is going to be available for other countries?
Can "zones" be de-abstracted to VLANs?
What about adding UDP Relay to UniFi Network so we can finally have SSDP discovery across vlans?
I’m sitting here keeping a pfSense server alive just for UDP Relay so we can cast to devices on different vlans.
Anything other than Apple needs SSDP.
I can cast between VLANs just fine. Simply enable mDNS on your "home" VLAN and your "IOT/cast/smarthome/whatever" VLAN and bam.
@ wrong. mDNS in UniFi is a mDNS Repeater. It only works with apple bonjour. In order to get Sonos, google cast, or anything SSDP like control4 etc working, you need a mDNS Relay.
In pfSense you have both (mDNS Repeater) Avahi and UDP Relay which is what is missing in UniFi. I can turn on mDNS and all the Apple boxes work fine, but for Sonos to work (they use SSDP Discovery), you need UDP relay which is still missing.
@@antikommunistischaktionunfortunately you are wrong. mDNS is a repeater that works for services like Apple bonjour. But as soon as you use SSDP Discovery for Sonos, Google Cast, Control4, DLNA, you require a Relay. PfSense has Avahi (mDNS repeater) and UDP Relay which is what is still missing from UniFi. Try streaming to a Sonos on a different vlans and let me know if it works
@@antikommunistischaktionWhat this guy said!
I will never use anything else again. I just updated to OS 9 and got the new protection subscription. This is game changing for our home network, no viruses, no more!
What would be the expected launch of CyberSecure for Brazil?
please fix the U7 Pro Max
Not seeing the option for CyberSecure here in Aus on my Dream Machine Pro Max, and I'm on network 9.0.108. Is it available worldwide yet?
Hell yeah!! Some impressive updates here! Thanks for not charging for the securepoint service! That’s awesome to have live security threat updates to improve network security! Cheers!!
It's 99 dollars a year
Are WiFi 7 in-wall access points with a built-in switch expected? And when?
I hope ipv6 dpi is supported with network version 9.0
What is the cost of Cyber Secure?
We offer Cyber Secure and Cyber Secure Enterprise. Learn more here > blog.ui.com/article/unifi-network-9-0-built-to-scale
pretty good release here, gj team!
So infuriating, I just installed two U7 Outdoor AP’s. One for front and one for back. They weren’t quite what I wanted, but it didn’t seem like there was going to be any other option. And here we go, the coverage area I wanted for 5ghz and it now includes 6ghz. 😢
The Flex 2.5 PoE is exactly the device I was looking for recently. However, I still need to wait before diving into the UniFi ecosystem until the U7 Pro issues are resolved (significant problems with IoT devices on the 2.4 GHz band).
Guest portal “payment” feature is broken.
Please share more info and any existing support tickets from account.ui.com/requests to social@ui.com so we can prioritize and review. Thanks
Site Magic coming to self hosted controllers when???
Good update Ubiquiti team 💪🏻
now subscription based security yay
its an add on. Any live threat feed costs money, they have for years.
$99 a year for Pro, $499 for Enterprise. Most of us already pay several THOUSAND dollars a year for security upgrades/subscriptions for our Enterprise and Business security devices. $499 is an absolute steal.
PoE+++ at 1:48 and PoE+ at 1:53 🤔🤔
1:48 PoE Switch
1:53 non PoE Switch
@@frfotografie Makes sense, thank you! 🙏
FLEX 2.5GB SWITCHES!!! LFGOOOO!!!!!
Nice upgrades UI!
Nice! Thank you.
This is what i have been waiting for.
I have been holding off because everything has fallen short of the worth upgrading mark, or shot way past it.
Thank you.
Give me more of that etherlighting… it’s like crack.
and i just bought the enterprise 8 poe one for them to release this new flex 8 port damn youuuuuu :)) jokes aside that flex 8 port will be one of the first purchases to avoid dual 4 port flex 2.5 and have a better line upstream with 10gb
Longer cables for theta plz 😁
Oh my god, switch from my dreams.
8x 2.5, 1x 10gb, Poe++ powered, and Poe++ enabled ports.
And 4month old switch ultra needs replacing....
And yet your customers still cannot configure IPv6 settings in your network software. It feels like not much "rethinking" is going on here.
👏👏👏👏
Awesome! 👍🏻
New wireless cameras please!
Crazzzzyyy updates love it
This is some serious good stuff
Stop with the naming schemes, where does this even fit in the line up? - HD, Professional, Pro HD, Pro Max, Enterprise, Flex, Ultra. Can we have anymore names?
like opnsense does exactly the same with lables, but it is open source.
🔥🔥🔥
Awesome lineup - but can you produce thats more energy saving?
When 4port 2.5 Gbe++ 4 port 10gbe and 2 stp 25gbe will be nice and 2 100gbe😊 switch
Please make a virtual appliance for deployment in cloud platforms like Azure.
Very pleased about more 2.5G switching, I’m all onboard to keep adding more Unifi switching into my home lab if its going 2.5G as a minimum speed, however I still prefer pfSense as my gateway, please please never go down the path of trying to force the use of Unifi gateways with any kind limitations, that could also work with 3'rd party gaways such as pfsense
No new g5 wifi camera 😔
Man oh man I thought I loved my enterprise PoE switch... Anyone want to trade that for a Pro HD? 🤪
at this rate.... i might just ask my rich neighbours to share their wifi , 10gbe fiber, with u7 enterprise out door -_-
bros, that 8 port is what I have been wanting that is less than 10 inches wide for years for 10 inch racks! I need one for review!
No more HP or Netgear shir try this lineup out....
awesome!!
Good update. Please French version interface
Inexpensive 10GbE switches with PoE++ please.
Great, but as there's never any stock it's a bit pointless!
I’m gonna go broke because of them 🎉.
Nooo! Please make it stop-this is too much for me to handle all at once!
POE++ !!! With 20 of your newest AI outdoor dome cameras? That shtt will melt. That’s a fire begging to be ignited. It’ll be so hot you can’t touch it. Those tiny little fans can’t remove that much heat. People will not be comfortable with that in a closet. When will you guys get serious about cooling and create a mini compressor AC unit for the rack? Our data demands with AI and soon 8K streaming, are growing exponentially faster than we can keep up. I’m really impressed with how quickly you guys are doing it but that heat is not being managed properly. I know server components are built for heat. So is my Lexus, I still don’t push those limits.
Sigh....and right after I bought the Switch Pro Max 16 PoE.
How come my network 9.something looks different? Is this still in beta?
❤🫶