Beambox

Beambox requires your UniFi controller to be remotely accessible. This cannot be a local-only controller or a cloud-access account. This is important, as our integrator has to be able to reach your controller at all times to authorise your guests.

For most of our customers, the easiest way to do this is by port forwarding your existing Cloud Key or UDM hardware.

If you don't have a hardware controller, our <a href="https://help.beambox.com/en/articles/2922892-unifi-installation">main installation guide</a> shares some other controller options.

To get started, head to Settings &gt; Security &gt; Port forwarding &gt; on your UniFi controller. If you are using the old UI head to Settings &gt; Routing &amp; Firewall &gt; Port Forwarding:

- Name: Controller
- Enable Forward Rule: turn this on when ready to activate this rule
- Interface: Both
- From: Anywhere or Limited
- Port: 443
- Forward IP: 192.168.1.30 (This should be the local I.P you use to reach your controller interface)
- Forward Port: 8443
- Protocol: Both
- Logging: Optional

1. To get started, head to Settings &gt; Security &gt; Port forwarding &gt; on your UniFi controller. If you are using the old UI head to Settings &gt; Routing &amp; Firewall &gt; Port Forwarding:
2. Fill in these settings:
 - Name: Controller
 - Enable Forward Rule: turn this on when ready to activate this rule
 - Interface: Both
 - From: Anywhere or Limited
 - Port: 443
 - Forward IP: 192.168.1.30 (This should be the local I.P you use to reach your controller interface)
 - Forward Port: 8443
 - Protocol: Both
 - Logging: Optional

Once you have port forwarded successfully, you will be able to reach your controller using the format https://YOUR_PUBLIC_IP:8443.

Port forwarding your UDM or UDM Pro

1. To get started, head to Settings &gt; Security &gt; Port forwarding &gt; on your UniFi controller. If you are using the old UI head to Settings &gt; Routing &amp; Firewall &gt; Port Forwarding:
2. Fill in these settings:

Enable Forward Rule: turn this on when ready to activate this rule

Forward IP: 192.168.1.10 (This should be the local I.P you use to reach your controller interface)

- Name: Controller
- Enable Forward Rule: turn this on when ready to activate this rule
- Interface: Both (UDM Pro only)
- From: Anywhere or Limited
- Port: 443
- Forward IP: 192.168.1.10 (This should be the local I.P you use to reach your controller interface)
- Forward Port: 443
- Protocol: Both
- Logging: Optional

Once you have port forwarded successfully, you will be able to reach your controller using the format https://YOUR_PUBLIC_IP:443.

On UDM Pros, you must also create a 'WLAN Local' firewall rule to match.

On the new controller interface, navigate to Settings &gt; Security &gt; firewall rules

Firstly, in the 'Groups' navigate to settings &gt; profiles &gt; port groups section, create a new group with the following configuration.

- Type: Port Group
- Port: 443

Once created, head back to the Firewall page and create a new rule with the following configuration...

Rule Applied: Before Predefined Rules

- Type: Internet Local
- Rule Applied: Before Predefined Rules
- Action: Accept
- IPv4 Protocol: All

Before you save, scroll down to the 'Destination' tab and set the following configuration..

Destination Type: Address/Port Group

Port Group: Controller (The one we created earlier)

- Destination Type: Address/Port Group
- IPv4 Address Group: Any
- Port Group: Controller (The one we created earlier)

You can now save and test your controller URL. 

Note: For additional security, you can optionally set up the 'Source' tab in the Firewall rule settings to define specific IP addresses or MAC addresses that can access the controller remotely.

Port forwarding your Cloud Key

Port forwarding your UDM or UDM Pro

Setting your WAN Local rule