UniFi gateway vs Cloud key vs UniFi controller
Published onby Iron
When building a UniFi network, you’ll often encounter the terms Gateway, Cloud Key, and Controller. They all play essential roles, but their purposes and capabilities differ. If you’re confused about which one you need (or if you need them all), this guide will clear things up.
Let's dive in!
Table of Contents
- What is a UniFi Gateway?
- What is a UniFi Cloud Key?
- What is a UniFi Controller?
- What’s the Difference Between a Gateway, Cloud Key, and Controller?
- Which Do You Need?
- Final Thoughts
What is a UniFi Gateway?
A UniFi Gateway is like the front door to your network. It connects your local network to the internet while also offering features like firewall protection, VPN support, and traffic analytics. The gateway manages and protects your network traffic.
Key Features of a UniFi Gateway
- Firewall and Security: Protects your network from external threats.
- Routing: Handles the flow of network traffic from your local network to the internet.
- VPN Server: Offers secure remote access to your network.
- Traffic Analytics: Provides insights into network usage and performance.
Examples of UniFi Gateways
- UDM (UniFi Dream Machine)
- UDM Pro (UniFi Dream Machine Pro)
- UXG-Pro (UniFi Next-Gen Gateway Pro)
Note: Some gateways, like the UDM, have a built-in controller, so you don’t need an additional Cloud Key or self-hosted controller.
When Do You Need a UniFi Gateway?
If you need to connect a local network to the internet and manage firewall, routing, and VPNs, then a UniFi Gateway is essential. Most home and small office setups use the UDM or UDM Pro as an all-in-one solution because it includes a controller too.
What is a UniFi Cloud Key?
The Cloud Key is a dedicated device used to host the UniFi Controller software. It provides a centralized way to manage your UniFi devices (access points, switches, and gateways) from a single place. Think of it as a mini-computer with only one job: managing your UniFi network.
Key Features of a UniFi Cloud Key
- Local Controller: Runs the UniFi Controller software locally, meaning you don't need a PC or server running 24/7.
- Remote Access: Allows remote access to your UniFi Controller.
- Automatic Backups: Backs up your configuration files to the cloud or locally.
Versions of the UniFi Cloud Key
- Cloud Key Gen 1: Basic version with limited power.
- Cloud Key Gen 2 and Gen 2 Plus: More powerful versions with SSD storage, automatic backups, and UniFi Protect support for managing security cameras.
Pro Tip: The Cloud Key Gen 2 Plus can also act as a video storage device for UniFi Protect, making it a great option if you’re running a UniFi surveillance system.
When Do You Need a UniFi Cloud Key?
You need a Cloud Key if:
- You have multiple UniFi devices (APs, switches) and need centralized management.
- You don’t want to keep a computer running 24/7 as a controller.
- Your router/gateway (like a basic ISP router) doesn’t have a built-in UniFi controller.
- You want remote access to manage your network from anywhere.
Note: If you have a UDM or UDM Pro, you do not need a Cloud Key because the controller is already built into these devices.
What is a UniFi Controller?
The UniFi Controller is software that manages all your UniFi devices in one place. It’s the brain of your network, providing a user-friendly interface to control, update, and analyze all your UniFi devices. The controller doesn’t handle network traffic; it’s only for network management.
Key Features of the UniFi Controller
- Network Management: Adopt, configure, and monitor UniFi devices like access points, switches, and gateways.
- Guest Portal: Create guest Wi-Fi portals with login pages.
- Network Insights: View network topology, device health, and client usage.
- Device Adoption: Ensures devices are "adopted" into your network so you can configure them.
Where Can You Run the UniFi Controller?
- On a Cloud Key (as discussed earlier).
- On a UniFi Gateway/UDM/UDM Pro (since they have a built-in controller).
- On Your Own Server or PC (Windows, macOS, or Linux).
- On a Cloud-Hosted Service like UniHosted for a simple, managed option.
When Do You Need a UniFi Controller?
- If you have a Cloud Key or self-hosted setup.
- If your network has multiple access points (APs), switches, or gateways.
- If you want to manage your network remotely via the UniFi app or unifi.ui.com.
- If you plan to use advanced features like guest Wi-Fi portals.
Pro Tip: The controller only needs to run when you’re managing devices. If you’re done with your configuration, you can technically turn it off — but it’s best to leave it on for device updates and data collection.
What’s the Difference Between a Gateway, Cloud Key, and Controller?
| Feature | UniFi Gateway | UniFi Cloud Key | UniFi Controller |
|---|---|---|---|
| Primary Role | Handles traffic, routing, firewall | Hosts the UniFi Controller | Software to manage UniFi devices |
| Manages Network? | Yes (routing, firewall) | No, it's just a controller | No, but it manages devices |
| Host for Controller? | Yes (UDM, UDM Pro) | Yes, with Controller pre-installed | No, but it runs the software |
| Cloud Access? | Yes (via UI Account) | Yes (via UI Account) | Yes, if hosted on Cloud Key or UniHosted |
| Standalone Capable? | Yes (can work alone) | No (only hosts controller) | Yes (can run on a PC, server, or cloud) |
| Examples | UDM, UDM Pro, UXG-Pro | Cloud Key Gen 2, Gen 2 Plus | Windows, macOS, Linux, UniHosted |
| Need a PC to Run? | No | No | Yes, if self-hosted |
Which Do You Need?
If You’re a Home User
- Get a UDM or UDM Pro.
- It has a built-in gateway, controller, and switch all-in-one.
- No need for a Cloud Key or separate controller.
If You’re a Small Business
- Get a UDM Pro or Dream Router.
- For basic Wi-Fi and security, get a UDM or Dream Router.
- For more advanced needs (like VPNs and multi-site management), get a UDM Pro.
If You’re a Large Business or Enterprise
- Use a Next-Gen Gateway (UXG-Pro) with a Cloud Key Gen 2.
- For full control, combine the UXG-Pro (powerful gateway) with a Cloud Key Gen 2 Plus for centralized management.
- Alternatively, self-host a controller on a server or use a UniFi Hosting service like UniHosted.
Final Thoughts
To summarize:
- The Gateway (like UDM, UDM Pro) handles internet traffic, routing, VPNs, and firewall.
- The Cloud Key (Gen 2/Plus) hosts the UniFi Controller software.
- The Controller is the software that manages and configures UniFi devices.
For most users, a UniFi Dream Machine (UDM) is the best choice since it’s an all-in-one device with a controller, gateway, and access point built in. For small-to-medium businesses, the UDM Pro is a powerhouse that handles multiple sites, VPNs, and 10GbE traffic.
For large setups, a Cloud Key + UXG-Pro + access points might be a better solution for managing multiple sites. And if you don't want the headache of managing a self-hosted setup, you can use UniHosted for a cloud-based controller.
If you’re still unsure, go for a UDM or UDM Pro. It’s a simple, powerful, all-in-one device for homes and small offices.
If you would like me to personally walk you through UniHosted, you can schedule a call with me here.
We host UniFi Controllers in the Cloud
Are you ready to take your UniFi Network to the next level? Deploy a UniFi Cloud Controller in minutes and manage your network from anywhere.
Free tier available
Get the best support
Join 1660+ customers
No credit card required