Best Of
Re: Joining Beta Program, here and now!
I think this is a GREAT opportunity but I think that to ensure a strong beta that we should be receiving devices that we need and can use. For example I was sent a Flex 100H with zero knowledge it was coming and that device just doesn't work for my setup. I would need at the very least a Flex 500H so I can have a 2.5G network and POE power to my two Zyxel APs. I think maybe some communication with the Beta testers to ensure we can get hardware that we want/need to use so that we can make this Beta strong is a must.
Thoughts?
Sincerely,
Jason
Re: Flex H, a rant
You've got a nice list, here :-/ and unfortunately, it's still only the cap of the iceberg. We're fighting with one of those devices at a customer's site, too, and whatever comes to your mind to get things going: "sorry, you cannot do that!". 😠
USG FLEX H models: security services by policy
USGFLEX/ATP models support a feature that could be switched to inspection by policy ("secure-policy-style advance").
However, USGFLEX H models do not support this feature currently.
This topic was raised in the following discussion:
If anyone likes this idea, please feel free to leave a comment or click vote. The votes and comments will be part of our evaluation process.
Re: GS1920-24/48HPv2 and Unifi AC Lite. Any PoE Interoperability Issues?
In case anyone is looking for the same info some time in the future…
Both the 24 and 48 port Zyxel GS1920HPv2 work fine with multiple Unifi AC Lite APs (but only the newer "802.3af compatible" version). They should work fine with the AC LR models as well (again the 802.3af versions). The above mentioned "force 802.3AT" setting is not needed. If you are running these APs, do yourself a favour and stay away from Aruba Instant On 1830 (and 1430) series switches, and buy the Zyxels instead.
USG FLEX H models: security services by policy?
The previous ATP and USG FLEX models could be switched to inspection by policy ("secure-policy-style advance") instead of using IP exception to exclude the unwanted services.
The table in Firmware Release Note V1.10 doesn't mention this feature as not yet supported, but I haven't found it nonetheless. Is the function really missing?
SAML authentication / Nebula Cloud authentication
WPA Enterprise with "Nebula Cloud authentication", authenticated by eg. Azure AD
Printable infosheet for rack
I think it would be really smart and easy to make a button where you print out a piece of paper you can put on inside of the rack panel, with a picture of the switch and port roles populated. That makes it easier to see what each port are for, without having to access nebula or switch to look it up.
All info is there already, all you need is a function to generate a printable page/pdf.
Below is just an example, but i think the following things could be relevant:
ID/Port numer
Vlan type(with name?) , like Vlan10:Office , or Trunk(20,30)or Trunk(All)
Location:What port is connected (already known from the port configuration , if used)
LLDP info (also known ,atleast at time of print)
Last up: When was something connected to this port last time(when you run out of ports and decide what to unplug because you arent exactly sure because of poor documentation)
So when you make a change to port roles , you print out a new sheet and hang up, and ofcourse stamped with "time of print" .
That would add a proffesional touch, lets be honest, not all rack documentation is updated or even prest, this could be a great tool to help on that !
Re: WLC (wireless Lan Controller) built into the USG Flex 700?
Hi users,
To measure the overlap in wireless coverage between APs, it's crucial to focus on the Received Signal Strength Indicator (RSSI) as detected by the client devices.
Essentially, you need to determine the points where the signal from one AP begins to weaken and lose. So, another AP's signal needs to cover that area. You can accomplish this by walking the area with a device that measures RSSI from each AP. Using the distance in meters helps in confirming the transition zone. For instance, if an AP at its output power has a signal reach of 10 meters, the ideal spacing between two APs could be around 16-17 meters to ensure adequate coverage overlap.
You can optimize the deployment of your AP by adjusting its position or modifying its maximum output power to achieve the ideal setup.
Re: Android 12 and ikev2
Samsung uses DH24 by default but our device only supports up to DH21. DH24 is less secure than DH21. It is not recommended option. Please install Strongswan APP on S21.
[Access Point] Feature to disable WPA3-transition mode on SSID advanced settings
Based on the need of user @AdminSys , we would like to propose the implementation of a feature that allows users to disable WPA3 transition mode on Nebula. This would allow for a faster and more user-friendly way to disable transition mode and enforce exclusive connections from WPA3-supported devices.
This topic was raised in the following discussion:
If anyone likes this idea, please feel free to leave a comment or click vote. The votes and comments will be part of our evaluation process.