Greetings. I've been an XG user for some time and have run into a bit of a quandary and looking for some options.
- Right now I have my XG firewall at the perimeter with the XG handling firewall, routing, DHCP, and Wi-Fi duties. I do not have any remote access or VPN services enabled.
- We have purchased a Ubiquiti Dream Machine Pro and are looking to integrate the Dream Machine Pro into our network to provide us with a single pane of glass on the Ubiquiti mobile app for:
- Remote monitoring of the LAN
- Accessing and monitoring Ubiquiti security cameras
- LAN network usage by client
- Types of traffic, apps, and users.
- We already use a Ubiquiti PoE switch in the environment.
I'm trying to figure out the best way to integrate the Ubiquiti Dream Machine Pro given that:
- I've been told that the Dream Machine has no bridge mode and therefore cannot exist behind the XG Firewall without creating a double-NAT scenario.
- I want to keep the superior security and scanning capabilities of the XG firewall.
All that being the case, what are some options/recommendations?
- Is there any networking scenario where I can keep the XG at the perimeter without creating a double NAT scenario and therefore keep all my security rules, blacklist/whitelist, and scanning of web traffic in place? I would think this is the preferred method.
- Does the XG have a type of bridge mode where I can put the Ubiquiti at the perimeter and then connect the XG firewall so that any and all traffic still goes through the XG?
- Is there another alternative networking scenario?
Thanks for your suggestions and insights.
This thread was automatically locked due to age.