CloudConnexa: Use Unifi OS Router as Internet Gateway Connector

Overview

This guide explains how to configure a UniFi OS router as an internet egress gateway for remote users connected through CloudConnexa using the OpenVPN Protocol.

After completing this configuration, internet traffic from connected CloudConnexa users is routed through the UniFi OS router before reaching external destinations.

Procedure

1. Sign in to the CloudConnexa Administration Portal and download the connector connection profile from Networks.

2. Sign in to the UniFi OS router and go to Settings > VPN > VPN Client.

3. Select Create New.

4. Configure the VPN client:

   • Select OpenVPN as the VPN type.

   • Upload the .ovpn connector connection profile.

   • Because the connector profile doesn’t use username and password authentication, enter placeholder values for the username and password fields.

5. Select Apply.

6. Access the router using SSH and run:

   ip rule list

7. Identify the default routing table interface. It may appear similar to 201.eth8.

8. Identify the gateway IP address for that interface:

   ip r show table 201.eth8

9. Note the returned gateway IP address. You use this value as the next-hop IP address for the static routes.

10. Return to the UniFi OS router web interface and go to Settings > Routing > Static Routes.

11. Create the following static routes:

    0.0.0.0/1
    128.0.0.0/1

12. Use the gateway IP address identified earlier as the next-hop IP address.

    • Example:

      Next hop IP address: 192.168.55.1

      

13. Verify connectivity from a remote device connected to CloudConnexa by accessing an external website.

    • Traffic should now route through the UniFi OS router as the internet egress point.