lalaland

It may need to strike a balance between convenience and security. Not sure if phone system have ACL to allow or block phone call from specific region.

in Negative effect from using "Geo IP" ? Comment by lalaland November 2022

In general ADP attack items, source IP can be fake IP. it seems meaningless to whitelisting source in ADP.

in Can i Allow list a IP addredd against ADP Scan-Detection on USG FLex 500? Comment by lalaland November 2022

@Zyxel1900 How about sharing the topology with ip address of devices? It will be helpful to understand your question in the scenario.

in communication with PUBLIC IP Comment by lalaland July 2022

Maybe you can try to update firmware via FTP. Just upload firmware file *.bin file into folder firmware1 or firmware2.

in Web Interface unreachable on USG60 Comment by lalaland April 2022

There is no IP white list for this. But you can change lockout maximum retry by CLI Router(config)# users retry-count xx BTW, assume branch office most users need to access HQ site resource, I strongly recommend install firewall on 2nd office to establish site to site VPN. With site to site VPN, users in branch no need to…

in Can i Trust a IP for SSL VPN ( we keep haing to unlock user) Comment by lalaland February 2022

IMHO, Gateway is mainly for faster traffic routing and network security. Regarding to real time alert/notification, you may install 3rd party syslog server. Once the syslog server "read" the specific keyword we specify , then it will send alert to administrator via mail or SMS immediately.

in WAN Failover - hopefully an easy question Comment by lalaland January 2022

Can you draw a brief network topology with each device role and interface IP assignment. It would be easily to understand network topology for community users.=)

in Connect a Zyxel USG20 Firewall to ISP Modem (Router Mode) for Internet Comment by lalaland January 2022

Did you enable phase2 mode config in IPSec VPN tunnel?

in SSL VPN Disconnect due to invalid packet size Comment by lalaland January 2022

The CLI on cloud mode is Router> show sdwan interface. You can hit CLI Router> packet-trace interface eth0 extension-filter port 3389 to capture packets.

in Nebula and CLI Comment by lalaland December 2021

Please don't activate UTM license. It is unable to suspend once it is activated.

in USG310 - bundle licence period Comment by lalaland December 2021

It seems that a lot of users encounter similar issue after window update to 21H1 https://www.windowsphoneinfo.com/threads/cannot-connect-any-vpn-on-windows-10-help-plz.576305/ https://answers.microsoft.com/en-us/windows/forum/all/vpn-connection-via-internal-client-stopped-working/467047f8-93ff-4c18-98aa-da571491ba1f…

in Unable to connect to Flex 200 L2TP with Win 10 client since upgrade to 21H1 Comment by lalaland November 2021

External wan interface run in round robin mode. it's unable to set up something like that, you still need to create 1-1 policy route for vlan mapping.

in Dual ISP In Firewall Comment by lalaland November 2021

@RichP, Maybe you can clear browser cache and try it again, or access web gui with incognito mode.

in ATP200 on F/W V5.10 - cannot view DHCP Table Comment by lalaland October 2021

In my opinion, I think it is still worth the price to renew it given the professional technical support and prompt response provided by Zyxel team based on my own experience with them ;)

in ATP 200 Comment by lalaland September 2021

It's unable to import ssh key into USG. You can use python netmiko module to do something automatically for network device configuration. https://ktbyers.github.io/netmiko/#tutorialsexamplesgetting-started

in Remotely configure several USG devices Comment by lalaland September 2021

lalaland Ally Member

Comments