With our recent move to a new office, we took the opportunity to overhaul our network infrastructure using Unifi’s ecosystem. This setup includes Unifi Protect for security, multiple internet uplinks for redundancy, and strategically placed access points (APs) to ensure strong, reliable WiFi coverage across the office. Here’s a summary of the key lessons we learned during this process:

1. WiFi Channels:
To avoid interference and ensure smooth client roaming, it’s crucial to select WiFi channels that are outside the radar (DFS) channels. While DFS channels may offer less congestion, they come with the risk of APs ceasing transmissions when radar activity is detected, which can disrupt client connections. For optimal performance, APs should be set to different non-overlapping channels, particularly in the 2.4 GHz and 5 GHz bands, to minimize co-channel interference and maximize network efficiency.

Important: Disable Automatic Channel Optimization

Do yourself a favor and disable automatic channel optimization. Channels can significantly impact connection stability due to factors such as reflections and interference. If you notice that your WiFi quality fluctuates from one day to the next, automatic and unsupervised channel optimization is likely the culprit. Manual channel selection allows you to maintain consistent performance by choosing the best channels for your specific environment, avoiding the unpredictable changes that automatic optimization can introduce.

2. BSS Transitioning:
Enabling BSS Transitioning is essential for seamless client roaming within a multi-AP environment. This feature allows clients to discover and connect to the most appropriate AP without the need for constant scanning, which can reduce roaming delays and improve overall connectivity. With BSS Transitioning enabled, devices receive information about nearby APs, allowing them to switch connections more quickly and efficiently as users move throughout the office.

3. WPA3 Fast Roaming:
While WPA3 provides enhanced security, fast roaming features can cause issues with some client devices, leading to intermittent connectivity or dropped connections. Disabling WPA3 fast roaming can help maintain a more stable network, especially in environments with a diverse mix of older and newer devices. This ensures that all devices, regardless of age or compatibility, maintain a solid and reliable connection.

Note: With UniFi you can still use WPA3, even if WPA3 fast roaming is disabled.

4. Managing Transmission Retries (TX Retries):
High TX retries can signal interference or suboptimal channel selection. Monitoring and adjusting channels, transmit power, and AP placement can help minimize retries and improve overall network performance. Techniques such as enabling band steering can also be employed to encourage devices to connect to the less crowded 5 GHz band, further reducing congestion on the 2.4 GHz band.

5. Addressing Reflections and Interference:
Physical objects in the office, such as walls, glass, and metal, can cause signal reflections and interference, which can negatively impact WiFi performance. Conducting a thorough site survey is critical to identifying potential problem areas. Based on the survey results, APs should be strategically placed, and their transmit power adjusted to ensure even coverage and minimize interference between APs.

6. Leveraging Multiple Internet Uplinks:
To enhance both performance and reliability, we configured multiple internet uplinks, allowing for both load balancing and redundancy. This setup ensures continuous internet connectivity, even if one uplink fails. Properly configuring failover and load balancing policies is key to maximizing the benefits of this setup, ensuring that bandwidth is efficiently distributed and that connectivity remains uninterrupted.

7. Integrating Unifi Protect:
Unifi Protect has been integrated into our network to manage security cameras throughout the office. This system allows us to securely store and remotely access video feeds, adding a robust layer of security to our office environment. The integration was seamless and provides peace of mind, knowing that our premises are well-monitored.

By implementing these strategies and configurations, we’ve created a robust, high-performance network that supports the diverse needs of our office environment. Regular monitoring and adjustments will be key as our needs evolve, but the foundational setup is strong, ensuring that our network is both reliable and future-proof.