Configure UDM/UCG to allow Wifi Sync API access
If you are using a Unifi Gateway that is configured to work with a ui.com account, by default your controller is blocked to the internet.
The below process will open up your UDM/UCG to allow the Wifi Sync platform to interact with your controller over the internet.
Note: By exposing your controller login to the internet you should ensure that you have set a secure, complex password for all your users.
Step 1: Log in to UniFi Network
Open your UniFi Controller Web UI (local or remote).
Go to Settings → Internet → Port Forwarding (or Firewall & Security → Port Forwarding in some UI versions).
Step 2: Create Port Forwarding Rule
Click Create New Port Forwarding.
Configure the rule:
| Field | Value |
|---|---|
| Name | UniFi_API_Custom_Port |
| From Port (External) | 51443 |
| To Port (Internal) | 443 |
| Protocol | TCP |
| Forward To | 192.168.1.1(UDM LAN IP - This may be different if you are using a different IP range ) |
| Enabled | Yes |
Save / Apply.
Step 3: Restrict Access by Source IP
Note: The IP address below is the authorised Wifi-Sync IP address servers.
Go to Settings → Firewall & Security → WAN IN.
Click Create New Rule:
| Field | Value |
|---|---|
| Name | Allow_API_from_WifiSync |
| Action | Accept |
| Protocol | TCP |
| Source | 13.54.236.37 |
| Source Port | Any |
| Destination | 192.168.1.1 |
| Destination Port | 51443 |
| Enabled | Yes |
Place this rule above any default drop rules to ensure it takes priority.
Step 4: Block All Other WAN Access to the Port
Create a second rule below the above rule:
| Field | Value |
|---|---|
| Name | Block_Other_API_Access |
| Action | Drop / Reject |
| Protocol | TCP |
| Source | Any |
| Destination | 192.168.1.1 |
| Destination Port | 51443 |
| Enabled | Yes |
Save / Apply.
Update WiFi Sync URL
Navigate to the WiFi Sync Dashboard Portal
Where it asks for Unifi Controller URL enter the Public IP address of your controller and the Port as configured above
You can find the Public IP address on your Gateway Dashboard, use this to update your Unifi Controller URL.
Related Articles
WiFi Sync Setup for Open Mesh / Datto
Log in to the CloudTrax portal at https://ct4.cloudtrax.com Or Use the Datto Networking Status Page On the left, click on an SSID of your choice and configure with the following: SSID name: Guest WiFi (or whatever you wish) Enable: Enabled Visible: ...WiFi Sync setup for Meraki
Click Configure > Access Control on the left menu. From the SSID dropdown, choose the one you wish to use, then configure with the below settings: Association Requirements Open (no encryption) Splash page Sign-on with my RADIUS server click Add a ...Setting Up Unifi Admin Account for Wifi Sync
1. Open your Unifi Controller 2. Navigate to the Admins/User Section. Note: For users connecting via the UI.com Site manager, this setting is found under "OS Settings" 3. Click on 'Add New Admin.' 4. Make sure remote access or UI account is switched ...Guest WiFi v2 - Unifi Controller
Setting Up a Guest WiFi Network with External Portal on a Unifi Controller 1. Navigate to your Unifi Controller. Note, it must be always online and reachable via the internet. 2. Go to the Settings Page 3. Click "WiFi" 4. Click Wi-Fi. Then create a ...Ubiquiti Unifi (Controller 5.7+)
Cloudkey/Unifi Controller Instructions Log in to your UniFi controller and click the Setting icon (bottom left). On the left menu, under Wireless Networks click Create New Wireless Network and configure with: Name/SSID: Guest WiFi (or whatever you ...