1 4

Ubiquiti UniFi

Ubiquiti EFG UniFi Enterprise Fortress Gateway Firewall Appliance

Ubiquiti EFG UniFi Enterprise Fortress Gateway Firewall Appliance

EFG

£2,034.14 incl. VAT | £1,695.12 excl. VAT
Tax included. Shipping calculated at checkout.

Out of stock

Ubiquiti EFG UniFi Enterprise Fortress Gateway Firewall Appliance

Attention: The item you are viewing is classified as a ‘special order’ commercial-only product. Please note, this item cannot be returned unless found to be faulty. We appreciate your understanding.

Ubiquiti UniFi EFG Enterprise Fortress Gateway Firewall Appliance is a 25G Cloud Gateway with 500+ UniFi device / 5,000+ client support, 12.5 Gbps IPS routing, and complete high availability.

Ubiquiti UniFi EFG Enterprise Fortress Gateway Firewall Appliance

Ubiquiti EFG UniFi Enterprise Fortress Gateway Firewall Appliance

Ubiquiti UniFi EFG Enterprise Fortress Gateway Firewall Appliance is a 25G Cloud Gateway with 500+ UniFi device / 5,000+ client support, 12.5 Gbps IPS routing, and complete high availability.

Ubiquiti UniFi Enterprise Fortress Gateway (EFG) offers complete full-stack network management through UniFi Network, featuring an 18-core ARM processor with 16GB DDR4 RAM for extremely high-speed data processing. The EFG's computing power allows support for over 500 UniFi devices and 5,000 clients, running up to one million concurrent sessions.

In addition to raw processing power the EFG maintains a specific emphasis on redundancy and failover, ranging from redundant WAN with failover and load-balancing, additional internet failover with LTE backup and a redundant, hot-swappable PSU. The EFG also supports Shadow Mode High Availability, meaning that another EFG can instantly and automatically take over the primary EFG's functionality in case of failure.

The Enterprise Fortress Gateway includes 2 x 25G SFP28 ports, 2 x 10G SFP+ ports, and 2 x 2.5GbE RJ45 ports, all of which can be remapped between LAN and WAN, for a firewall routing throughput of 23.5Gbps. In addition to the hardware specifications the EFG has a next-generation suite of software features like application-aware firewall rules, an OpenVPN client, IPS/IDS threat detection and a full stateful firewall.

Key Features

  • Runs UniFi Network for full-stack network management.
  • Shadow Mode High Availability with automatic failover provides uninterrupted connectivity (VRRP).*
  • 12.5 Gbps routing with IDS/IPS.
  • Licence-free, real-time inspection of encrypted packets with NeXT AI Inspection (SSL/TLS decryption).
  • Two (2) 25G SFP28, two (2) 10G SFP+, and two (2) 2.5 GbE RJ45 ports (all LAN/WAN remappable).**
  • Two (2) included hot-swap PSUs for power redundancy.
  • Features a 1.3" touchscreen.
  • Includes 90 days of Professional Phone Support (via Ubiquiti).

Specifications

Mechanical

Dimensions

  • 442.4 x 43.7 x 325 mm (17.4 x 1.7 x 12.8 in.)

Weight

  • 6.5 kg (14.3 lb)

Enclosure materials

  • Aluminium CNC, SGCC steel

Hardware

Processor

  • 18-core ARM v8.2 at 2 GHz

System memory

  • 16 GB DDR4 DIMM

Management interface

  • Ethernet
  • Bluetooth

Networking interface

  • LAN:
    • 1 x 25G SFP28 port
    • 2 x 10G SFP+ ports
    • 1 x 2.5G RJ45 port
  • WAN:
    • 1 x 25G SFP28 port
    • 1 x 2.5G RJ45 port

Power method

  • 1 x Universal AC input, 100—240V AC, 7A Max., 50/60 Hz

Power supply

  • 2 x Hot-swappable 150W CRPS

Supported voltage range

  • 100–240V AC

Max. power consumption

  • 82W

ESD/EMP protection

  • Air: ± 8kV, contact: ± 4kV

LCM display

  • 1 x 1.3-inch touchscreen

Button

  • Factory reset

Operating temperature

  • 0 to 40° C (22 to 104° F)

Operating humidity

  • 5% - 95% noncondensing

Certifications

  • CE, FCC, IC

Gateway Features

Performance

  • Redundant WAN with failover and load balancing
  • WiFi QoS with UniFi APs
  • Application, domain, and country-based QoS
  • Application and device type identification
  • Additional internet failover with LTE Backup
  • Internet quality and outage reporting

Next-generation security

  • Application-aware firewall rules
  • Signature-based IPS/IDS threat detection
  • Content, country, domain, and ad filtering
  • VLAN/subnet-based traffic segmentation
  • Full stateful firewall

Advanced networking

  • Licence-free SD-WAN
  • WireGuard, L2TP and OpenVPN server
  • OpenVPN client
  • OpenVPN and IPsec site-to-site VPN
  • One-click Teleport and Identity VPN
  • Policy-based WAN and VPN routing
  • DHCP relay
  • Customisable DHCP server
  • IGMP proxy
  • IPv6 ISP support

Capacity

UniFi devices

  • 500+

Client devices

  • 5,000+

Concurrent sessions

  • 1 million

New sessions / sec

  • 71,000

SSL/TLS inspection concurrent sessions

  • 10,000*

Client devices

  • 80,000+ (with Enhanced Threat Updates, not included)

Routing Throughput

Firewall

  • 23.5 Gbps**

IDS/IPS

  • 12.5 Gbps**

VPN Server Single User Throughput***

UniFi Identity

  • 1.2 Gbps

Teleport

  • 1.2 Gbps

WireGuard

  • 1.2 Gbps

OpenVPN

  • 210 Mbps

L2TP

  • 280 Mbps

Site-to-Site VPN Single Tunnel Throughput***

Site Magic

  • 1.1 Gbps

OpenVPN

  • 120 Mbps

IPsec

  • 580 Mbps

VPN Client Single Tunnel Throughput***

WireGuard

  • 980 Mbps

OpenVPN

  • 180 Mbps

LEDs

Ethernet

  • White: Link/activity

SFP+

  • White: Link/activity

CRPS

  • Off: No AC power present
  • Steady white: AC power and DC output active
  • Flashing white: AC power present
  • Steady red: AC power lost/failure events
  • Flashing red: Warning events

Software

Mobile app

  • UniFi iOS:Version 10.16.2 and later
  • UniFi Android: Version 10.17.2 and later
*Limiting to 5,000 concurrent sessions is recommended if the gateway is passing significant traffic. This can be achieved by restricting which VLANs and domains pass through NeXT AI Inspection, such as only including search engine and LLM queries on employee devices.
**Measured with iPerf3 on DHCP WAN. Performance may be reduced with PPPoE depending on ISP implementation.
***Measured with iPerf3.
View full details