Networking - Zyxel Community

What is the meaning of the Check Period value for the WAN Connectivity Check on the USG Flex H?
Question: What is the meaning of the Check Period value for the WAN Connectivity Check on the USG Flex H? Answer: It represents the time, in seconds, between each connectivity check performed by the firewall. For instance, the USG Flex 500H will perform the WAN connectivity check every 30 seconds. This means there will be…
What is the meaning of the Check Timeout value for the WAN Connectivity Check on the USG Flex H?
Question: What is the meaning of the Check Timeout value for the WAN Connectivity Check? Answer : It represents the time, in seconds, that the firewall will wait to determine whether the connectivity check is successful. If the connectivity check fails, the user should investigate why the WAN connectivity is not…
How can I collect diaginfo file on the USG Flex H using the CLI when WebGUI access is unavailable?
Question: How can I collect diaginfo file on the USG Flex H using the CLI when WebGUI access is unavailable? Answer: You can collect diaginfo fle by CLI: (wait for around 5 minis) usgflex100h> cmd diagnostics diaginfo collect ac start Check diagnostic file has collected done usgflex100h> show diagnostics diaginfo collect…
How to block internet access from a specific vlan?
Question: How to block internet access from a specific vlan? Answer: During creating a VLAN interface, it requires to assigning the interface to a specific zone. You can create a specific zone for selected VLAN. And then create policy control rules to allow Intranet network and block Internet network. From VLAN10 to LAN,…
How can I check the current session status on on the USG Flex H using the CLI?
Question: How can I check the connection session on the USG Flex H using the CLI for troubleshooting purposes? Answer: The user can use the CLI command show conntracks to check the exist session table, as shown below:
How can I check the ARP table on the USG Flex H using the CLI?
Question: How can I check the ARP table on the USG Flex H using the CLI for troubleshooting purposes (such as debugging DHCP, etc.)? Answer: The user can use the CLI command show arp-table to check the current ARP table, as shown below:"
How can I check the status of the PPPoE interface on the USG Flex H using the CLI?
Question : How can I check the status of the PPPoE interface on the USG Flex H using the CLI? Answer: The user can use the CLI command show state vrf main interface pppoe <PPPoE interface name> to check the status of the PPPoE interface. Please refer to the example below for the USG Flex 200HP model: usgflex200hp> show…
How can I check the PPPoE configuration on the USG Flex H using the CLI?
Question : How can I check the PPPoE configuration on the USG Flex H using the CLI? Answer : The user can use the CLI command show config vrf main interface pppoe <PPPoE interface name> to check the current PPPoE configuration. Please refer to the example below for the USG Flex 200HP model: usgflex200hp> show config vrf…
How do I configure PPPoE on the WAN interface settings for the USG Flex H model?
Question : How do I configure PPPoE on the WAN interface settings for the USG Flex H model? Answer : Navigate to Network > Interface > Interface > PPPoE, and add a profile Select the Authentication Type, and type the user name and password. Click the Apply button to save it. Once the PPPoE connection is established, the…
Why Did I Lose DHCP Hostnames After Firmware Upgrade?
Question: Why did I lose DHCP hostnames after upgrading my USG FLEX device to firmware version uOS 1.30? Answer: From firmware version uOS 1.30 onwards, DHCP hostnames must comply with RFC1123 rules, which require the following: * Hostnames cannot start with a hyphen (-). * They may only contain letters (A-Z, a-z), numbers…
Bridging SFP+ Ports on a Zyxel USG Flex 700H
This FAQ explains how to bridge the two SFP+ ports on a Zyxel USG Flex 700H firewall to create a single, aggregated link. # Background The Zyxel USG Flex 700H features two SFP+ ports that operate independently by default. This setup might not be ideal for scenarios requiring a single, high-bandwidth connection. By bridging…
How to add secondary IP address on interface?
Question: How to add secondary IP address on interface? Answer: You can add secondary IP address by CLI. For example, Add the secondary IP 10.214.48.61 on ge1 interface usgflex200h> edit running usgflex200h running config# vrf main interface ethernet ge1 ipv4 address 10.214.48.61/24 usgflex200h running config# save Note:…
How to check the nslookup result via CLI commands on USG Flex H models?
Scenario : The user may need to use CLI commands to check nslookup result for troubleshooting or maintenance purposes. This article will guide you on how to execute it. Answer : Please issue the CLI "cmd diagnostics nslookup domain-name-or-ip domain-name URL" to check the result. Refer to the below example : cmd…
How to monitor the MAC vendor from Device insight in the Zyxel USG Flex H?
Question: How to monitor the MAC vendor from Device insight in the Zyxel USG Flex H? Answer: Please navigate to "Network Status -> Device Insight". Add the column for MAC Vendor, You will find the manufacture of the NIC.
How to View the Client List on the USG Flex H
Question: Is there a client list in the new H GUI? I'm aware of the DHCP table, however that does not show all the devices on the LAN. Answer: Yes, you can see a full client list by enabling the 'Device Insight' feature. This feature provides information on devices that might not appear in the DHCP lease table. Steps to…
How to configure the UDP session timeout value on USG Flex H series models?
Scenario : Users may wish to configure the UDP session timeout value on USG Flex H series models for specific purposes such as VoIP-related traffic. This article will guide you on how to configure it. Answer : Please navigate to System > Advanced > System Parameters > UDP Timeout to adjust your desired value. Once you…
How to remove the NAT rule using CLI for USG Flex H series models?
Scenario : In this article How to check the NAT rule using CLI for USG Flex H series models? Users can use CLI to check the current NAT rules. Users may want to know how to remove the NAT rule using CLI. Answer : Please enter the CLI command "show config vrf main virtual-server rule" to check the current NAT rules on the…
How to check the NAT rule using CLI for USG Flex H series models?
Scenario : Users usually create NAT rules via the Web-GUI (as shown below). While troubleshooting NAT-related issues, users may use the CLI mode. This guide will show you how to check the NAT rules in CLI mode. Answer : Please enter the CLI command "show config vrf main virtual-server rule" to check the current NAT rules…
Ports cannot perfom Port Group with other ports
This is current limitiation: 1)Port 1 and Port 2 of the USG FLEX 500H and USG FLEX 700H cannot perfrom Port Group with other ports. 2)Port 13 and Port 14 of the USG FLEX 700H cannot perform Port Group with other ports. Find the detail in Release Note.
USG FLEX H Series - Session Control
USG FLEX H Series - Session Control Overview Session control is a feature designed to manage the number of concurrent sessions a client can initiate through the firewall. This is particularly useful for preventing clients from consuming excessive session resources, which can impact the performance and availability of…

Welcome!

It looks like you're new here. Sign in or register to get started.