Best Of
Re: Attempt to login to USG100, Chrome reports ERR_SSL_VERSION_OR_CIPHER_MISMATCH
@AWUSupport USG20 and W versions went out of support almost a year later USG100, which were among the first batch of USG generation firewalls (starting with ZLD 2.x).
In fact, the "patch number" for USG20 is 9, for USG100 is 7.
However, both received some lab firmwares (WKxx), more recent than latest official ones; my old and crappy USG20W has firmware version 3.30 BDR9 WK48 dated december 2016.
I'll write once and never more in this topic: change that hardware as soon as possible. I'm still using USG20W and I have a spare USG100 for "safeboat" use but currently is not something that I suggest to customers to use, they are way too old for performances and security. It's like using a 10 year old tyre on a daily driver. Maybe you'll never hit the "right" pothole for make the tyre explode, or you're never gonna drive fast enough to tear it apart. But when it will happen, it won't be nice at all.
mMontana
1
Re: Blocking torrents
Hi @TAPTech
Content filter categories:
Application patrol profile for P2P related programs.
You could select a specific category(such as application patrol) and time range to filter the search result of the event log, which could make it easier and clearer to find the logs that you want.
Besides, we encourage you could use SecuReporter to check the detailed traffic statistics as well.
Thanks.
Yes, it indeed can provide protection for you.Currently I'm using both content filtering and Application Patrol to block P2P and Torrent sites.For Content Filtering: P2P Sites, and Usenet Sites.
For Application Filtering: The entire P2P category.
Content filter categories:
Application patrol profile for P2P related programs.
It does seem a bit heavy-handed though, when viewing the logs. Has anyone developed a good list of items to block, that they wouldn't mind sharing?
You could select a specific category(such as application patrol) and time range to filter the search result of the event log, which could make it easier and clearer to find the logs that you want.
Besides, we encourage you could use SecuReporter to check the detailed traffic statistics as well.
Thanks.
Re: LTE7480-M804 loses connection and stays disconnected until next reboot
@jdawg69 no solution yet.
So many routers have a fail check, where you can reboot the device if X pings fail one after the other. It's a shame this one has no solution.
I wish I had root access to the router to make a script and solve this myself.
It looks like returning the product is the only way, will do that after the holidays.
So many routers have a fail check, where you can reboot the device if X pings fail one after the other. It's a shame this one has no solution.
I wish I had root access to the router to make a script and solve this myself.
It looks like returning the product is the only way, will do that after the holidays.
nicosemp
1
Re: device already registered
Hello James, I fixed it. The problem was the browser. Using Safari the autocomplete page did not open; I repeated the operation with Chrome and it worked. I'm posting it to help some other users. Thanks for the support.
Re: Quick HowTo for a VPN Connection to a Phone and W10?
In Quick Setup > Remote Access VPN Setup, select one of the scenario to configure remote access VPN on wizard.
L2TP VPN
How to setup L2TP VPN for remote access
Note: Android 12 and later versions do not support L2TP VPN. Please use IKEv2 instead.
Note: Android 12 and later versions do not support L2TP VPN. Please use IKEv2 instead.
IKEv2
Re: Nebula tunnel gets rebuilt every 30 seconds
Hi Chris,
Seems to work now fine, thank you very much for the clarification. Have a wonderful weekend! :-)
Seems to work now fine, thank you very much for the clarification. Have a wonderful weekend! :-)
Peppino
1
Re: Turn ON Respond to ICMP (PING) USG FLEX 700
I did get a reply fm ZyXEL TS. Here it is:
I'm under USG FLEX > Configure > Firewall > Security Policy here are the fields to fill in for ICMP protocol on the WAN ports
Name: PreFilled w SF_: SF_ICMP
Action: Allow
Application Patrol / Content Filtering Policy (PRO): As this is a PRO feature I suspect I could leave this BLANK Yes, BLANK
Protocol: ICMP
Source: Any
Destination: Device
Dst Port: Any
Schedule: Always
Description: Free text field
That turned on PING response on both WAN ports. It is recommended that you narrow down the Source from Any to specific IP addresses so you don't respond to any source that pings your IP.
I'm still looking for where this is all documented. I would rather read about it and try and learn it than contacting TS.
Hope this helps someone.
-stew
I'm under USG FLEX > Configure > Firewall > Security Policy here are the fields to fill in for ICMP protocol on the WAN ports
Name: PreFilled w SF_: SF_ICMP
Action: Allow
Application Patrol / Content Filtering Policy (PRO): As this is a PRO feature I suspect I could leave this BLANK Yes, BLANK
Protocol: ICMP
Source: Any
Destination: Device
Dst Port: Any
Schedule: Always
Description: Free text field
That turned on PING response on both WAN ports. It is recommended that you narrow down the Source from Any to specific IP addresses so you don't respond to any source that pings your IP.
I'm still looking for where this is all documented. I would rather read about it and try and learn it than contacting TS.
Hope this helps someone.
-stew
ivessm
1