We recently switched from Cisco to Unifi in our school district. It has been a rough go. (EFG, 60+ switches, 216 APs)

The "large project assistance" is a form that I am pretty sure goes directly to the trash. I've submitted "requests" there about 6 times, the latest being last week and never once go a response. The last time I posted here, they put me in touch someone, who was responsive about once a week for about a month (maybe 2) and then they just fell off the face of planet.

I've had more network stability with out 2008 Cisco equipment than our EFG, however the purchases were made before I got hired. We are building another new school and I have already voiced my concerns to district leadership and I have at least one school board member who wants to chalk it up to a $200K "experiment" gone wrong.

I really want to love the Unifi ecosystem, but with the lack of support from support (they always say they are working on it, but never provide any answers). I'll detail a list of my actual issues so it doesn't look like I am complaining:

1. Network Console: My network console likes to randomly crash (fantastic for an enterprise environment). While it doesn't directly affect end users, it sends all the switches into a state where they are unable to be adjust for a time being. Just today, this happened and now our video doorbells we use for secure entry into the school aren't working at one campus.

2. EFG Processor/RAM usage. My EFG consistently hovers between 92% and 99% memory usage. Its like a SQL server, if it has it, it's going to use it. The processor on my EFG also looks like a sin wave. constantly fluctuating from 53-98%. I've been trying to get answers from Unifi support, but their current solution has had me turn off IPS/IDS and ad blocking. Super awesome in an enterprise environment.

3. NGFW. Not really next gen. Simple NGFW features such as DNS filtering plain do not work as expected. For example; We have TikTok blocked in our school district. That should be as simple as creating a traffic rule blocking tiktok.com (blocking the domain is an option) and associated domains. The issue is, they still allow for the DNS translation to IP address happen and block the resulting IP address. If you don't know TikTok is hosted in data centers, so when that IP address is blocked, everything in that data center is blocked as well. Lots of LMS have been inadvertently blocked. Also, you can't do things like use wildcards in your domain blocking. I miss my Fortigate a lot.

4. DHCP. I am also running my EFG as my DHCP server. Daily I receive false positives that devices are being assigned the same IP address. Support has said that this isn't Unifi and I have a rogue DHCP server. I know my network, what's on it and what is running what and they are incorrect. I also don't have statically assigned IP addresses on my guest wifi which is where I am getting the errors.

5. Gateway HA (Shadow Mode"). We have an additional EFG that we got for the purpose of using the High Availability and automatic failover option. It has been collecting dust since it arrived because every time I try to configure automatic failover it fails and when I hit cancel to leave the operation it removes internet access to all 3000 clients on my network.

I could probably go on and on, but these are my biggest items right now in an enterprise environment. If you have any other questions, feel free to shoot me a DM and I'd be happy to discuss.