Migrate Ubiquiti Unifi Security Gateway (USG) to Unifi Dream Machine Pro (UDM Pro)

Some of my customers using Ubiquiti components in there networks, because of the great price and performance ratio and the easy administration. On of my customers the Unifi Security Gateway had a defect shortly before christmas. We decided to renew the both components (Unifi Security Gateway and Unifi Cloud Key Gen 2 Plus) with the Unifi Dream Machine Pro. On my research for the best upgrade process I do not found a good article how is the best way to migrate the Ubiquiti environment from the USG to a UDM Pro. In this article I will explain this in a short way, because with the actual release of the UniFi OS, the upgrade process is smooth and simple.

Preperation

The preparation is not necessary, but I will recommend to do this for easy device management, when something go wrong.

  • upgrade all devices to the latest available firmware
  • Note all ssh logins for your existing Unifi devices
  • take a backup on a secure place (e.g. OneDrive)

Preparing the Unifi Cloud Key

Go to your Unifi Network Portal (Client or Unifi Cloud Key based) and upgrade the USG and all devices to the latest available firmware.

After the update process is successfully completed download a backup from your Cloud Key. Did you use a Cloud Key Gen 2 with Camera Protection also update it to the latest available version and download the configuration file for the protect software.

Install the UDM Pro

Firstly install the UDM Pro into your existing network. Use the UDM Pro WAN Port and connect it with the existing network and connect a notebook with the UDM over one of the existing switch ports. This helps to bring the UDM Pro online and does not affect the existing network, when you use the WAN Port. Open a browser from your notebook and go to 192.168.1.1. The UDM Pro setup website will be open and you can go trough the easy steps to setup and connect the UDM Pro with an existing Ubquiti account.

After you finished the setup process update the hole software

  • Unifi OS of UDM Pro
  • Network Application
  • Protect Application

to the latest available update (in my case 6.5.55)

Preparing the Unifi Cloud Key

On the Unifi Cloud Key Gen 2 it also necessary to update to the latest available update (in my case 6.5.55). After the firmware are up to date, take a backup from the Network and Protect application.

Replace the USG with the UDM

Disconnect the WAN Port and access the UDM Pro admin site 192.168.1.1 and configure the UDM Pro with the same IP as of the USG. Save the configuration and shutdown the UDM Pro in the admin portal.

Disconnect the USG and the Cloud Key (when exist) from the network and replace it with the UDM Pro and start the UDM Pro.

The UDM Pro will be available shortly under the same IP as the USG and you can enter the UDM Pro admin site. Login and go firstly to the Network application and import the backup file. After the import is successfully completed the UDM Pro will reboot. After the reboot the migration of the network part is complete and all devices are up and connected to the new UDM Pro.

Do the same for the Protect application, when you had available Unifi camera devices. After the import of the backup file is completed, the cameras are now report directly to the UDM Pro.

8 thoughts on “Migrate Ubiquiti Unifi Security Gateway (USG) to Unifi Dream Machine Pro (UDM Pro)”

  1. Worked like a charm! Migration done in under 30min.
    Thanks for that post!

    (Upgraded from USG / Cloud Key Gen 1)

  2. Hi,
    planning a migration myself. I just notice my existing USG had the IP address 192.168.1.1. So I assume the UDM will boot up with another one when connected to the existing network?
    Cheers,
    โ€”Charlie

    1. Hi Charlie,
      when you connect the UDM Pro via the WAN Port (not the LAN port) is will get an IP-adress from the existing network via DHCP.
      Greetings
      Gregor

  3. Thank you so much for this!

    I’d read caution about migrating (even reading someone say just rebuild from scratch), but followed your steps and it worked perfectly.

    Everything went smoothly, but after starting the Import into the UDM Pro I had to wait a while for anything to happen – no ‘please wait’ or anything. A few minutes later the Network application restarted by itself without a problem.

    (My fibre PPPoE connection didn’t connect first time, but a simple network cable unplug/replug sorted that out.)

    Great work ๐Ÿ™‚

    1. Thank you for your message and feedback. I’m glad that the article helped you. ๐Ÿ™‚

  4. This is great, I’ve done something similar, but your step about bringing the UDM Pro online in the existing network, this will not work in your existing network is also 192.168.1.x/24 as the UDP has an internal network of 192.168.1.x/24. You can’t have the same network on both sides unless you bridge.

    1. Hi Michael, thanks for your reply.
      I think you missed the point of using the WAN interface. The integration of the UDM Pro into your existing network is only possible by using the WAN interface, which I described in the second sentence ๐Ÿ˜‰

Leave a Reply

Your email address will not be published.