[Network|UniFi] Review “My dream system with Underwhelming Specs”

★★★★★Features★★★★★

Five star features of UniFi setup covers the most important part of network system: stability, speed, security, scalability, flexibility/features and support in form of highly active community.

Stability

Amongst of all, lack of stability was the fundamental cause of moving away from over a year used Asus AiMesh network setup, which was the exact reason I departed from Netgear Orbi to Eero Pro couple years ago. Even though I have been using UniFi system a little over a week, its network stability has already been proven to be superior and rock solid. No more sudden internet disconnect.

Stable Connection to NAS

The most notable and surprise to me was how it can hold a persistent connection to my Network Storage System (NAS). Previously, after some amount of inactivity my client devices wirelessly connected to my NAS lost their connection. The annoyance was that client device like MacBook Pro showed NAS was still mounted but as soon as I started to navigate the mounted folder in the Finder, it disconnected. Since switching to UniFi, NAS connection persists.

Long term stability (Update 5/28/2020)

Almost a full month of UniFi experience has been pasted. I have had several reboot of the system but all related to my personal set up tweaking/changing/playing. The system can run days without any issue. At one point I saw some error messages on my controller but by turning off extra features that I turned on myself, all of those have now completely resolved. In another word, this is exactly what I wanted Asus AiMesh to do. Make the default system setting, the most stable well optimized performance then let user play at our own risk.

Speed Performance

The real world performance of UniFi system are top in the class despite lack of WiFi 6 support. As discussed on theoretical max speed article, most efficient 2×2 MIMO WiFi 5 device can reach to inefficient WiFi 6 speed. UniFi HD and nanoHD are efficient WiFi 5 Access Points; whereas, most WiFi 6 routers including Asus Ax11000 are currently inefficient (SNB article). As a result, on my test between Asus Ax11000 AiMesh node against UniFi HD access point, UniFi outperformed every case including WiFi 6 connected iPhone 11 Pro at its peak performance.

The only time when the Ax11000 outperformed UniFi HD was when Ax11000 was in router mode and client being WiFi 6 capable iPhone 11 Pro. However, even with this extreme condition, the difference was under 5%.

Now these numbers look fantastic. It satisfies my “spec” oriented (bad/incorrect) mindset. But in reality, we don’t really need these numbers. Technically speaking, even 50 Mbps vs. 800 Mbps not matter unless large file transfer on a single client. Even 4K video streaming only requires 25 Mbps according to Netflix.

Below are the internet download speed recommendations per stream for playing TV shows and movies through Netflix.

0.5 Megabits per second – Required broadband connection speed

1.5 Megabits per second – Recommended broadband connection speed

3.0 Megabits per second – Recommended for SD quality

5.0 Megabits per second – Recommended for HD quality

25 Megabits per second – Recommended for Ultra HD quality

Netflix Internet Connection Speed Recommendation

So all these numbers could mean nothing if it does not translate into the real world experience i.e. daily network using tasks. Although there shouldn’t be any difference for low bandwidth tasks like net surfing, I definitely notice faster i.e. instant page loading and smooth music and video streaming throughout my home with 2 access points UniFi network that was not possible even with 4 node AiMesh system. I believe the key is 2.4 GHz band, that I had thought useless band.

2.4 GHz is a usable band!

I thought 2.4 GHz was a useless band because with my AiMesh system even the speed of 50 Mbps webpage loading became slow with hit and miss loading. So I thought this band should be avoided and make my home network fully covered with 5 GHz band. However now with UniFi, if I am just surfing internet, streaming video or music, I can’t tell which band I am connected to unless I check the number officially either via speed test or UniFi controller. Practically, 2.4 GHz band acts as equally good as 5 GHz for day to day activity with UniFi network.

Flexibility and Feature

Flexibility and feature refer to ability to customize network setting. Simple flexibility features include such as an option to use either wired or wireless backhaul for connecting access points, latter is called mesh network, ability to separate 5 GHz and 2.4 GHz band networks, creation of guest network, use of IPv4 vs. IPv6, traffic analyzer (deep packet inspection), speed testing at router level and so on. Even though many of these may sound basic features to some, surprisingly simple easy to use and setup mesh network systems or even feature rich advertised Asus AiMesh system could lack some of these features.

Advanced options include features such as threshold setting for access point when to hang on/disconnect client hosts. Typical consumer mesh network system do not have this degree of freedom. There are many features/options in UniFi controller. Some of the eye catching features especially for non-network experts like myself include Network coverage map and WiFi AI.

Network Coverage Map

After importing my home floor plan, I can put my owned UniFi devices over the floor plan map. Then select it to show 5 GHz or 2.4 GHz band coverage. What I like here is that I can even select a virtual i.e. not yet owned devices and place them to identify optimal placement for my home. They even have a setting for various wall thickness to give better estimate. This is not just a visual gimmick but I find it useful and fun. How accurate the heat map remains to be seen but for my home I feel their map seem to have some degree of credibility over those just giving additional 2000 sqft for a satellite node. This is just one example where UniFi goes steps beyond any consumer mesh network system or even many dedicated routers.

Wi-Fi AI

Another feature conceptually sounding cool is called Wi-Fi AI. At specified time and frequency, I can specify access points to scan wireless environment and choose/switch to optimal Wi-Fi channel.

Multiple Wireless Network using same APs

One feature I’ve just recently discovered and truly grateful they had implemented is ability to create multiple SSID wireless networks using the same APs . There are advocates of separating 2.4 GHz and 5 GHz bands into two different SSID and use 2.4 band dedicated for IoT and 5 GHz for more speedy connection. On the contrary, there are the other groups advocating single band for both (smart connect) and let AP to decide which band to connect for simplicity and load balancing. I personally always wanted to have a mixture of both. I want to use smart connect approach at base but occasionally I want to force the connection to 5GHz band even at lower signal strength spot to get better speed performance. This gives that option for me. With UniFi’s WLAN feature, I can finally have Smart Connect network and 5GHz Network on the same Access Points.

With UniFi’s WLAN feature, I can finally have Smart Connect network and 5GHz Network on the same Access Points.

Scalability

UniFi has many products including completely enterprise geared devices like encrypted AP, 1000+ client supporting AP etc. Below are list of APs that I believe fit in a 99% of home or small office network environement using the latest technology UniFi offering, which is WiFi 5 Wave 2.

UniFi is now network ecosystem rather than just router/mesh/AP. They have switches, smart plug and those interested home security cameras etc.

Update 5/27/2020

As of today, Wi-Fi 6 access points have not yet been officially released but three APs are confirmed with one already in the early access stage. This is a great illustration of scalability in UniFi system. UniFi separates controller unit from access points so adding these new technology incorporating Wi-Fi 6 AP will be no different than adding Wi-Fi 5 AP to the system except for of course firmware update on controller unit. In contrast, consumer mesh system like Orbi AC would have required me to buy whole new system for Wi-Fi 6, and those won’t interact with Orbi Wi-Fi 5 version.

Security

UniFi Controller (my case UDM Pro) has a built in internet security system without a monthly subscription fee. At router level, different from firewall, intrusion detection (IDS) and intrusion prevention (IPS) sounds like a feature to look for nowadays if you are security enthusiast.

Adjustable IDS & IPS

Although they both [Firewall & IDS] relate to network security, an IDS differs from a firewall in that a traditional network firewall (distinct from a Next-Generation Firewall ) uses a static set of rules to permit or deny network connections. It implicitly prevents intrusions, assuming an appropriate set of rules have been defined. Essentially, firewalls limit access between networks to prevent intrusion and do not signal an attack from inside the network. An IDS describes a suspected intrusion once it has taken place and signals an alarm. An IDS also watches for attacks that originate from within a system. This is traditionally achieved by examining network communications, identifying heuristics and patterns (often known as signatures) of common computer attacks, and taking action to alert operators. A system that terminates connections is called an intrusion prevention system, and performs access control like an application layer firewall.^[5]

Wikipedia Intrusion detection System

• 

• 

When IDS or IPS are turned on, UniFi network throughput i.e. performance will be reduced. Although some may see this as a disadvantage, one must really look what they are doing. We get to choose the balance between performance payment and amount of security. In fact, UniFi allows level of IDS/IDP with higher the security level more the throughput you must give up.

We get to choose the balance between performance payment and amount of security.

Other security features

While these features are still in beta or even labeled as alpha including threat management, DNS Filtering, GeoIP filtering, Network scanner and Firewall setting are all options.

User Community

Active, dedicated user community forum in tech world is the best resource for help. I trust and use them over official tech support. Users who answer those forums are most of time tech savvy and more knowledgable than majority of reps though some can be a jerk. When it comes to UniFi, the community forum is extremely active. Multiple posts every hour and responses.