Back to Knowledge BaseRemote Work
How to Set Up a UniFi VPN on Your Phone for Secure Work Access
7 min read
Updated 5 February 2026
What Is a UniFi VPN?
If your office uses a Ubiquiti UniFi gateway or dream machine, it has a built-in VPN server. This lets you securely connect your phone to the office network from anywhere, giving you access to:
- Internal file servers and shared drives
- Office printers and network devices
- Internal business applications and systems
- Secure browsing through your office internet connection
- L2TP/IPsec — works natively on iPhone and Android without extra apps
- WireGuard — faster and more modern, available on newer UniFi firmware
Before You Start
You will need the following from your IT team:
- Your VPN username and password (created in the UniFi controller)
- The VPN server address (your office's public IP or hostname, e.g., vpn.yourcompany.com.au)
- The pre-shared key (for L2TP connections)
- If using WireGuard: a QR code or configuration file from your IT team
Option 1: L2TP VPN Setup (No App Required)
L2TP works using your phone's built-in VPN settings — no app download needed.
Setting Up on iPhone
- Open Settings > General > VPN & Device Management
- Tap VPN > Add VPN Configuration
- Set Type to L2TP
- Fill in the details:
- Tap Done
- Toggle the VPN switch to connect
Setting Up on Android
- Open Settings > Network & Internet > VPN
- Tap the + icon to add a new VPN
- Fill in the details:
- Tap Save
- Tap the VPN name and then Connect
Option 2: WireGuard VPN Setup (Recommended)
WireGuard is faster and uses less battery than L2TP. Your IT team needs to enable WireGuard on the UniFi gateway and create a profile for you.
Setting Up on iPhone
- Open the App Store and search for WireGuard
- Download and install the app
- Open WireGuard
- Tap Add a tunnel > Create from QR code
- Scan the QR code provided by your IT team
- Name the tunnel (e.g., "Office VPN")
- Allow WireGuard to add VPN configurations when prompted
- Toggle the tunnel switch to connect
Setting Up on Android
- Open the Google Play Store and search for WireGuard
- Download and install the app
- Open WireGuard
- Tap the + button > Scan from QR code
- Scan the QR code from your IT team
- Name the tunnel (e.g., "Office VPN")
- Allow VPN permissions when prompted
- Tap the toggle to connect
Using a Configuration File
If your IT team sends a .conf file instead of a QR code:
- Save the file to your phone
- Open the WireGuard app
- Tap + > Import from file or archive
- Select the .conf file
- Toggle the tunnel to connect
Connecting and Disconnecting
L2TP Connection
- iPhone: Go to Settings > VPN and toggle the switch
- Android: Go to Settings > VPN, tap your VPN name, and tap Connect
WireGuard Connection
- Open the WireGuard app and toggle your tunnel on or off
- You can also toggle from the notification shade or Control Centre once connected
How to Tell You Are Connected
- A VPN icon will appear in your phone's status bar
- On iPhone, you will see "VPN" next to the WiFi or mobile signal
- On Android, a key icon appears in the status bar
What You Can Access While Connected
Once connected to your office VPN, you can:
- Access shared network drives using a file manager app
- Connect to internal web applications using their internal addresses
- Print to office printers (if your phone supports network printing)
- Access security cameras and other network devices
Tips for Best Performance
Battery Life
- WireGuard uses significantly less battery than L2TP
- Disconnect the VPN when you are not actively using office resources
- Avoid leaving the VPN connected overnight unnecessarily
Connection Speed
- Use WiFi rather than mobile data when possible for a faster VPN connection
- WireGuard is noticeably faster than L2TP for most tasks
- If the connection feels slow, disconnect and reconnect
Reliability
- If the VPN drops when your phone goes to sleep, check your phone's battery optimisation settings — some phones aggressively close background connections
- On Android, go to Settings > Battery > WireGuard and set to "Unrestricted"
- On iPhone, the VPN should reconnect automatically
Troubleshooting
Cannot connect to VPN?
- Check that your phone has a working internet connection (WiFi or mobile data)
- Verify the server address, username, and password are correct
- For L2TP: double-check the pre-shared key
- For WireGuard: ask your IT team for a fresh QR code — keys may have been regenerated
- Try switching between WiFi and mobile data
- Ensure the VPN shows as connected (check for the VPN icon)
- Try accessing resources by IP address rather than name
- Ask your IT team to check your VPN user permissions in the UniFi controller
- Your IT team may need to adjust the VPN network routing settings
- Check your internet stability
- Ensure battery optimisation is not killing the VPN app
- Update the WireGuard app to the latest version
- For L2TP: some mobile networks block L2TP traffic — try switching to WireGuard
- Ensure good lighting and hold your phone steady
- Ask your IT team to send the configuration file instead
- Import the .conf file directly into the WireGuard app
Security Best Practices
- Never share your VPN credentials or WireGuard QR code with anyone
- Disconnect the VPN when not in use
- Do not use the office VPN for personal browsing
- Report any unusual behaviour or connection issues to your IT team immediately
- If you lose your phone, notify IT immediately so they can revoke your VPN access
Need Help?
Contact our helpdesk at helpdesk@netlumait.com.au or call 1300 521 162. Let us know whether you are using L2TP or WireGuard so we can assist you faster.
Was this article helpful?
Still Need Help?
If you are still having trouble, our support team is here to help.