Ubiquiti UniFi Enterprise Fortress Gateway (EFG)
The Ubiquiti EFG is a 25G Cloud Gateway with 500+ UniFi device / 5,000+ client support, 12.5 Gbps IPS routing, and complete high availability.
Ubiquiti now offer premium site support packages from world-class UniFi professionals for 1 or 3 years for either within business hours or full 24 hour support.
Ubiquiti EFG Key Features:
- Shadow Mode High Availability with automatic failover provides uninterrupted connectivity (VRRP)*
- Runs UniFi Network for full-stack network management
- 12.5 Gbps routing with IDS/IPS
- License-free, real-time inspection of encrypted packets with NeXT AI Inspection (SSL/TLS decryption)
- (2) 25G SFP28**, (2) 10G SFP+**, and (2) 2.5 GbE RJ45 ports (all LAN/WAN remappable)
- (2) included hot-swap PSUs for power redundancy
- 1.3" touchscreen
The Ubiquiti EFG is a powerhouse in network management, highlighted by its integration with UniFi Network for comprehensive control across the network stack. It features Shadow Mode High Availability with automatic failover, ensuring seamless connectivity through Virtual Router Redundancy Protocol (VRRP). With impressive 12.5 Gbps routing capability and built-in IDS/IPS, it prioritises security without compromising speed. Unique to the EFG is its NeXT AI Inspection, offering license-free, real-time inspection of encrypted packets via SSL/TLS decryption. The hardware boasts versatile port options including (2) 25G SFP28, (2) 10G SFP+, and (2) 2.5 GbE RJ45 ports, all LAN/WAN remappable for flexible deployment. Redundancy is assured with (2) hot-swap PSUs and management is intuitive with a 1.3" touchscreen interface. Furthermore, it includes 90 days of Professional Phone Support, underscoring its commitment to customer satisfaction and reliable performance.
Ubiquiti EFG Technical Specifications
Mechanical
- Dimensions: 442.4 x 43.7 x 325 mm (17.4 x 1.7 x 12.8")
- Weight: 6.5 kg (14.3 lb)
- Enclosure material: Aluminium CNC, SGCC steel
Hardware
- Processor: 18-core ARM® v8.2 at 2 GHz
- System memory: 16 GB DDR4 DIMM
- Management interface: Ethernet, Bluetooth
- Networking interface:
- LAN:
- (1) 25G SFP28 port
- (2) 10G SFP+ ports
- (1) 2.5G RJ45 port
- WAN:
- (1) 25G SFP28 port
- (1) 2.5G RJ45 port
- Power method: (1) Universal AC input, 100—240V AC, 7A Max., 50/60 Hz
- Power supply: (2) Hot-swappable 150W CRPS
- Supported voltage range: 100–240V AC
- Max. power consumption: 82W
- ESD/EMP protection: Air: ± 8kV, contact: ± 4kV
- LCM display: (1) 1.3" touchscreen
- Button: Factory reset
- Ambient operating temperature: 0 to 40° C (22 to 104° F)
- Ambient operating humidity: 5 to 95% noncondensing
- Certifications: CE, FCC, IC
Gateway Features
- Performance: Redundant WAN with failover and load balancing, WiFi QoS with UniFi APs, Application, domain, and country-based QoS, Application and device type identification, Additional internet failover with LTE Backup, Internet quality and outage reporting
- Next-generation security: Application-aware firewall rules, Signature-based IPS/IDS threat detection, Content, country, domain, and ad filtering, VLAN/subnet-based traffic segmentation, Full stateful firewall
- Advanced networking: License-free SD-WAN, WireGuard, L2TP and OpenVPN server, OpenVPN client, OpenVPN and IPsec site-to-site VPN, One-click Teleport and Identity VPN, Policy-based WAN and VPN routing, DHCP relay, Customisable DHCP server, IGMP proxy, IPv6 ISP support
Capacity
- UniFi devices: 500+
- Client devices: 5,000+
- Concurrent sessions: 1 million
- New sessions / sec: 71,000
- SSL/TLS inspection concurrent sessions: 10,000 (Limiting to 5,000 concurrent sessions is recommended if the gateway is passing significant traffic. This can be achieved by restricting which VLANs and domains pass through NeXT AI Inspection, such as only including search engine and LLM queries on employee devices. Learn more.)
- IDS/IPS signatures: 80,000+ (With Enhanced Threat Updates. Learn more.)
Routing Throughput
- Firewall: 23.5 Gbps
- IDS/IPS: 12.5 Gbps (Measured with iPerf3 on DHCP WAN. Performance may be reduced with PPPoE depending on ISP implementation.)
VPN Server Single User Throughput
- UniFi Identity: 1.2 Gbps
- Teleport: 1.2 Gbps
- WireGuard: 1.2 Gbps
- OpenVPN: 210 Mbps
- L2TP: 280 Mbps (Measured with iPerf3.)
Site-to-Site VPN Single Tunnel Throughput
- Site Magic: 1.1 Gbps
- OpenVPN: 120 Mbps
- IPsec: 580 Mbps (Measured with iPerf3.)
VPN Client Single Tunnel Throughput
- WireGuard: 980 Mbps
- OpenVPN: 180 Mbps (Measured with iPerf3.)
LEDs
- Ethernet: White: Link/activity
- SFP+: White: Link/activity
- CRPS:
- Off: No AC power present
- Steady white: AC power and DC output active
- Flashing white: AC power present
- Steady red: AC power lost/failure events
- Flashing red: Warning events
Software
- Mobile app: UniFi iOS™:Version 10.16.2 and later, UniFi Android™: Version 10.17.2 and later
