// gear i actually run

The UniFi gear I actually run

Every gateway, switch and access point in my UniFi setup, why each one is here, and what it replaces. This is the exact kit behind the UCG-Fiber, VLAN, WireGuard and multi-WAN videos.

From these videos

UCG-Fiber full setup and first config
VLANs done right on UniFi
WireGuard VPN on UniFi, start to finish
Multi-WAN failover on the UCG-Fiber

The links below are Amazon affiliate links. As an Amazon Associate I earn from qualifying purchases, at no extra cost to you. I only list gear I actually use or would recommend. Full disclosure.

UniFi Cloud Gateway Fiber (UCG-Fiber)

Ubiquiti

This is the box every VLAN and WireGuard video is recorded on. The built-in controller means there is no separate Cloud Key to power or update, and the 10G interfaces give you headroom most home labs never actually hit. If you are under roughly 50 devices and want one device that routes, runs the controller and terminates the VPN, this is where I would start.

Multi-WAN, 10G, prosumer labs Not for: Tiny single-WAN setups where it is overkill
Check price on Amazon

UniFi USW-Pro-Max-16-PoE Switch

Ubiquiti

A managed switch is where VLANs stop being theory. The Pro Max line gives you 2.5G access ports plus SFP+ uplinks, so you can trunk back to the gateway without a bottleneck and still hand PoE to cameras and APs. Sixteen ports is the size I keep recommending because people always underestimate how fast ports disappear.

VLAN trunking, PoE budget, 2.5G clients Not for: A two-device setup that a Flex Mini would cover
Check price on Amazon

UniFi U7 Pro Access Point

Ubiquiti

My default access point. Wi-Fi 7, a 2.5G PoE uplink so the AP is not the slow link, and it stays wired rather than dropping into mesh, which is where most "bad Wi-Fi" complaints actually come from. One per floor is the rule of thumb I use before anyone reaches for a second.

Wired APs, single-floor coverage Not for: Replacing proper cabling with mesh hops
Check price on Amazon

UniFi Flex Mini 2.5G Switch

Ubiquiti

The little switch I drop behind a desk or a TV to break out a VLAN without running another cable back to the rack. Managed, so it still respects your tags. It is the cheapest way to stop yourself from collapsing VLANs just because you ran out of ports in one room.

Breaking out a VLAN in one room Not for: PoE devices, it has none
Check price on Amazon

10G SFP+ to RJ45 Transceiver Module

10Gtek

The cheap part everyone forgets. If your WAN handoff or an uplink is RJ45 rather than fiber, you need a copper SFP+ module to land it in the gateway or switch. Worth buying before you need it, because a missing transceiver is the reason a link sits dark on install day.

RJ45 WAN into an SFP+ port Not for: Runs already terminated in fiber
Check price on Amazon

This is the working setup, not a wish list. Everything here is in the rack or on the bench and shows up in the videos. Start with the gateway, add the switch when VLANs become real, and only then worry about access points.

Free download

Get the one-page network checklist

The pre-deploy checks I run before any network goes live. Free, no spam.