Can anyone explain why my Unifi Network Server is missing the VPN Client tab in the middle? Is it the USG-3P not being capable, a setting that I need to enable, or did Unifi get rid of that option completely? I’ve gone through several tutorials, most show a way input the credentials and config but I don’t see a way on ours. USG, switch and AP are all up to date, I have the newest version of the network server installed as well.
I have PIA VPN setup on pfsense currently so every device on our network goes through the one server I choose. I would like to get rid of the old PC running pfsense and just use the USG. I don’t want to install the PIA client on each device if I can help it. Any help/advice would be appreciated.
The usg-3p only supports legacy vpn protocols, eg L2TP. I just recently upgraded to a UDMP for a better VPN solution. Depending on your budget and network needs, a UDR will also give you what you desire.
USG can support piavpn via the site config.json file. I have two ssids/vans routing to two piavpn tunnels. It is using openvpn protocol, but works fine. There are many sites with instructions on how to setup a vpn via the config.json file. It is a bit of a hack, but it does work.
Also, pay attention to PBR - policy based routing. Its what you want if you want some rules/conditions to route to the tunnel.
Hi there! This sounds like what I need. I have a USG-3P and ultimately I want to be able to route traffic to specific sites from my lan out using the VPNs connection (additional I will also have a 2nd wan device so will want do to the same policy based routing for that)
Do you know where I can find the links to the instructions you mention to do this on the USG-3P specifically?
I’m looking for the article atm. Searching for policy based routing is a good start. If I can’t find the article, I’ll send my config.json. you need to use a config.json to makes this stick. Try this. It also shows how to setup the openvpn config. One caveat. After saving the config files onto your host that hosts the controller, ensure the files are owned by the correct user. Otherwise, the automated backups of the config will stop working.
