Best Of

Re: Issue generating .ovpn file on Flex 500H (SSL VPN)

Thanks for your update. Since I can't replicate in my lab, I'm not sure the root cause of this issue. If it happens again, please help to enable Zyxel support access so we can check.

About the new question "Is it possible to configure and enforce 2FA/MFA for SSL VPN connections using the standard OpenVPN client with the Zyxel Flex 500H?"

Yes, with enables VPN Access for SSL VPN access, the traffic for local users (users created in firewall) are required to pass the 2FA/MFA even using OpenVPN. However, you need manually open the authorize page to enter the 2FA.

If you have any issue, please help to enable Zyxel support access so we can access and check your configuration first.

https://community.zyxel.com/en/discussion/14234/nebula-how-to-turn-on-zyxel-support-access

Zyxel_Melen

1

Re: Issue generating .ovpn file on Flex 500H (SSL VPN)

Hi @Maruda

May I know your running firmware version is latest version? If not, please help to upgrade first.

I checked the download file in my lab with latest version, I can get .ovpn file and .tgb file at the same time.

Zyxel_Melen

1

Re: IPSec VPN does not work with latest MacOS, restoring a configuration does NOT reinstall the VPN part

Hi @Zyxel_USG_User

Is SecuExtender IPSec VPN Client v3.2.4.19 compiled as Intel-only (x86), with no native Apple Silicon (ARM) support?

Yes, this version only support intel chipset(x86). The Apple Silicon support version is already released. Below is the download link:

https://download.zyxel.com/SecuExtender_VPN_Client/software/SecuExtender%20VPN%20Client_IPSec_SSL_VPN_3.2.5.10(subscription_based).zip

Is a Universal binary (Intel + Apple Silicon) planned?

No, since Apple will not use Intel chipset for future hardware, we will not release a binary version.

Zyxel_Melen

1

Re: WhatsApp and MS Teams voice calls not working over WiFi

Remove the TP-Link and connect the AP directly to the Sky Box, if the calls work buy a Flex 100H and dispose of the china crap 😁

SanT

1

How to Flush ARP Table Entries on USG FLEX H?

Question:
Is there a way to flush or remove entries from the ARP table on the USG FLEX H via CLI?

Answer:
usgflex500h> cmd arp-table flush

usgflex500h> cmd arp-table clear

Note: The command is supported starting from firmware version 1.38.

Zyxel_Emily

1

Re: Missing IPv6 prefix on NR7102 passthrough

I have got it working but it seems to become unstable after 24-72 hours and then leads to disconnects and even the entire modem crashing. Use IP Passthrough and try prefix 64 first if you ISP will not tell you the prefix.

charismatic_auction

1

Re: dx3310t0 firmware

But once again the section firmware download has vanished from the official Router download site for the regular non ISP Routers ! No new no old firmware there to download very sad !! The model ist not EOL … The last one i know is ver. DX3301-T0_5.50(ABVY.7)C0

At that time present at this site : https://www.zyxel.com/de/de/support/download?model=DX3301-t0

Peter2

1

Re: [MyZyxel Portal] - Unable to remove old devices

Hi @Maverick87,

Thank you for providing the information!

We have unregistered the USG FLEX 100H firewall from your account.

Feel free to reach out, if you have any further questions or need additional assistance :)

Zyxel_Tina

1

Re: [Nebula 20.00] Port Advisor Alerts

I can confirm what @Dylan96 wrote. It seems that almost 90% cases of these alerts are generated by devices going in power saving mode. Could you improve the detection method for Cable health
→ Poor cable quality ?

Mk88_it

1

Re: [USG Flex H] - Captive Portal for Tailscale VPN

Hi @Maverick87

I think setup captive portal for Tailscale is not necessary since:

The device needs to login to Tailscale before connecting to Tailscale network.
The captive Portal functionality is restricted to LAN-only traffic.
On the firewall, you can find the owner/user of the connecting device.

Zyxel_Melen

1