Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Recommended DHCP and DNS Settings for Unifi Cloud Key integration

    DHCP and DNS
    2
    2
    2.9k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      boojum
      last edited by

      Guys
      I got a new SG-3100 and want to replace my slow USG firewall, but keep the several Unifi APs with the Cloud Key.
      I know there should be no problem, but there are a few issues:

      • What is the recommended DHCP setup? Should the Cloud Key be the DHCP server and just set the gateway address manually or should the SG-3100 be the DHCP server?
      • Concerning DNS: The Cloud Key advertises the gateway to be the home network DNS server, which is what I want. How can I make sure my SG-3100 remains the DNS server for the LAN at home, while itself getting DNS service from some public service (8.8.8.8, etc...)?

      Thanks a lot!

      bmeeksB 1 Reply Last reply Reply Quote 0
      • bmeeksB
        bmeeks @boojum
        last edited by bmeeks

        @boojum said in Recommended DHCP and DNS Settings for Unifi Cloud Key integration:

        Guys
        I got a new SG-3100 and want to replace my slow USG firewall, but keep the several Unifi APs with the Cloud Key.
        I know there should be no problem, but there are a few issues:

        • What is the recommended DHCP setup? Should the Cloud Key be the DHCP server and just set the gateway address manually or should the SG-3100 be the DHCP server?

        DIsable the DHCP Server in the Cloud Key and let your pfSense box be the DHCP server for both your wired and wireless networks.

        • Concerning DNS: The Cloud Key advertises the gateway to be the home network DNS server, which is what I want. How can I make sure my SG-3100 remains the DNS server for the LAN at home, while itself getting DNS service from some public service (8.8.8.8, etc...)?

        Do NOT change anything relative to DNS with a pfSense default installation. It is ready to go right out of the box. It contains a DNS resolver (unbound) that will ask the DNS Roots for IP information. Again, DO NOT make any DNS changes in pfSense! Do not change its defaults. Many do that and wind up totally breaking DNS and have to come back here for help.

        When you enable the DHCP server in pfSense, it will assign your pfSense box as the DNS server for all wired and wireless clients using DHCP. If you have any static IP assigned clients, you will want to point them to the pfSense box for DNS.

        To understand what I mean about not changing the DNS settings in pfSense, go to Google and research what a DNS resolver is and how it works. pfSense now comes with a fully configured DNS resolver right out of the box. No need to change a single thing for successful DNS lookups.

        1 Reply Last reply Reply Quote 1
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.