It will work. However, such a configuration is not really recommended. It is important, however, that the IP subnet of the USG is not the same as that of the Swisscom IB LAN side. However, I would still connect Swisscom TV directly to the IB network if possible. On the other hand, it probably requires further configurations regarding IGMP, QOS, etc., which then really requires quite high skills in network knowledge. Another unpleasantness of this configuration is that you do not get a public IP address for the USG itself. In order to configure such a port forwarding (NAT), the WAN interface must firstly always receive the same IP address (reservation necessary) and all ports must always be forwarded to the USG first, and then from there to the corresponding end device... And here we come to the point that is also called "creeping router coercion" at Swisscom. But fortunately there are other good providers who also have somewhat cheaper offers on top of everything else ;)

Works fine. I have four (4) Swisscom TV boxes running behind the USG without a problem. You have to create two firewall roules in the Unifi controller and then "unfortunately" activate the IGMP proxy with SSH. Ubiquiti has confirmed that the IGMP proxy configuration will also be included in the controller. When this will be the case, however, the gods know...

Here is the current working solution:
1. create firewall rules. See: https://community.ubnt.com/t5...
2. activate the IGMP proxy:
Open terminal console
ssh "username"@"USG IP address"
Enter password
Enter the following commands:
configure
edit protocols igmp-proxy
set interface eth0.201 role upstream
set interface eth1 role downstream
set interface eth0.201 alt-subnet 0.0.0.0/0
set interface eth1 alt-subnet 0.0.0.0/0
set interface eth0.201 threshold 1
set interface eth1 threshold 1
commit
top
save
exit

ATTENTION: This configuration made with SSH remains available when the USG is restarted. However, if a firmware upgrade is carried out from the UNIFI controller or the configuration of the USG is adjusted, the configuration made via SSH will be lost.

SC IB <-> Unifi USG <-> Unifi Switch8 <-> NetgearSwitch GSS108E <-> SC TV-Box

klappt gut! Auf dem USG folgende Konfiguration neben den fw-rules über USG-GUI

configure

set service nat rule 5999 description "NO MASK"
set service nat rule 5999 outbound-interface eth0
set service nat rule 5999 exclude
set service nat rule 5999 type masquerade

set protocols igmp-proxy interface eth1 role downstream
set protocols igmp-proxy interface eth1 threshold 1
set protocols igmp-proxy interface eth1 alt-subnet 192.168.10.0/24

set protocols igmp-proxy interface eth0 role upstream
set protocols igmp-proxy interface eth0 threshold 1
set protocols igmp-proxy interface eth0 alt-subnet 195.186.0.0/16
set protocols igmp-proxy interface eth0 alt-subnet 213.3.72.0/24

commit
save

exit

Maybe this post will help: https://community.swisscom.ch/t5... ..even SCTV runs behind the USG

Ist das bekannt?
http://documents.swisscom.com/product...

Hallo Zusammen,
hat jemand die USG direkt auf den (WAN) Swisscom Kabel konfiguriert ?

Ich habe probiert und ich bekomme keine IP, in der Swisscom website ich habe etwas wegen den DHCP option 60 gefunden.
(Using a DSL connection
You need to configure the DHCP Option 60 for the WAN interface in the router configuration menu as follows. These settings only apply for Swisscom residential services.
100008,0001)

Hat jemand etwas schon probiert und erledigt ?

Gruss

Andrea

So... after a long time of trying I finally made it... swisscom tv is running behind the USG which is behind the internet box... yay...

For the use of a firewall behind the Swisscom Box, please contact Swisscom, much more is possible than is apparent at first glance.

This is a router. I see no reason why this should not work. You connect your LAN to the LAN port of this product. Your Swisscom router to the WAN port of the Unifi Gateway.
I hope you know that you need to install a Unifi Controller to configure the Unifi Gateway.
Connecting a router behind another router requires above average network knowledge. It's not that easy.