Ubiquiti UniFi Switch Port Security

Nothing in the logs seems like it would be a nightmare to troubleshoot 6 months down the road when you forget you restricted the port. As another commenter posted curious what 802.1X looks like - mind you I don't want that at home as I fight with ISE all day at work!

Hi Willie what about the Unifi's 802.1X control have you played with that yet. Would love to know more about that

Thanks Willie, sounds like you'd have to document it elsewhere or it could become tricky to diagnose later.

Hi Willie, regarding the lack of anything in the Logs showing when you connected the GrandStream Phone to that Port - maybe there is something in Notifications you need to enable for it then to show up?

Hi Willie, going forward can you use dark mode? The white mode is blinding ly bright.

That’s silly that PoE and DHCP still works on the port. This could put your switch over PoE budget causing other devices not to get correct power. If you had a laptop in that port can it still sniff traffic? I feel like they made a generic ACL that gets applied when the port isn’t on the MAC list. Who knows what all traffic that port can see!

I suspect that you have the Logging Levels (UniFi Network > Settings > Support > Logging Levels) set to Auto. Unchecking the Auto check box displays drop down lists to change the Device, Management, Remote Access, and System log levels to Normal, Verbose, and Debug. Setting the log level to verbose may give you log entries with more information on switch port. The Debug log level should only be used for short duration troubleshooting sessions due to the high number of log event entries generated.

That seems kinda goofy - if the mac address is wrong - why wouldn't it also stop power going to that device - great video thanks!

Any plans to cover Edge-products? I hear you mentioning EdgeSwitch (3:15).

Hey Willie thanks for this! Slightly related, I missed your Synology Directory course Apr 28th. Will you be making any of it available for purchase in another way? Will be running a Synology with Directory Services with a few of these Unifi Switches.

Me first, I win a PA220 !!

Look on that blocked port with old unifi interface ;)

My USW-Lite-16 port settings look quite different. Bad luck they've changed it in an upgrade just after you made the video.

Hi Willie, I saw a Unifi Flex switch in you controller overview. Can you confirm that this switch is or is not capable to do MAC restrictions? Since I didn't found any information on that, I would like to verify this function before purchase it. Thanks in advance!

How can you possibly use tictok. Do you know anything about security?

Arp table

Ssh to logs

NAT