-
Why can't I receive the VPN Verification Code by Email when using Two-Factor Authentication?
Question: Why can't I receive the VPN Verification Code by Email when using Two-Factor Authentication? Answer: On USG FLEX H, the only supported method for delivering authorization links for 2FA is Google Authenticator. Please follow these steps: 1. Set up Google Authenticator on your device. 2. Configure the VPN to use…
-
How to display details about all active sessions on USG FLEX H using CLI?
Question: How to display details about all active sessions on USG FLEX H using CLI? Answer: usgflex200h> show conntracks | no-pager
-
How to display all active sessions grouped by service or protocol on USG FLEX H using CLI?
Question: How to display all active sessions (forwarding traffic) grouped by service or protocol on USG FLEX H using CLI? Answer: usgflex200h> show conn summary service show-conn-summary ok conn 1 service HTTPS rx_bytes 27301881 tx_bytes 878989 session_count 37 .. conn 2 service Any-TCP rx_bytes 9571 tx_bytes 2979…
-
How to display details about a source IP address’s sessions on USG FLEX H using CLI?
Question: How to display details about a source IP address’s sessions on USG FLEX H using CLI? Answer: usgflex200h> show conn filter source ip 192.168.168.101 | no-pager
-
How to regenerate the default certificate of USG FLEX H device?
Question: How to regenerate the default certificate of USG FLEX H device using CLI? Answer: usgflex200h> cmd debug _certManager regenerate default
-
USG FLEX H Series - Why I cannot use VoWiFi?
Please check: Do you block these service ports in the security policy? UDP 500, UDP 4500, and UDP 16384 - 49327. If yes, please allow these ports and check if VoWiFi is available. Do you enable ALG service? If yes, please disable it and check if VoWiFi is available. Is there any blocking log? If you still have a problem,…
-
USG FLEX H Series - Which service ports should I open for VoWiFi?
Please allow UDP 500, and UDP 4500 for Wi-Fi calling/VoWiFi. If you are using iPhone, please also allow UDP 16384 - 49327 for RTP.
-
USG FLEX H Series - Can USG FLEX H Series change the PoE power-up mode?
No, it cannot change the PoE power-up mode. Actually, you don't need to change the power-up mode since USG FLEX H Series will detect the PD's PoE standard to delivering power.
-
USG FLEX H Series - Can WBE660S be powered up by USG FLEX H Series?
It is not recommended to use the USG FLEX H Series to power up the WBE660S as the WBE660S requires 802.3 BT for optimal performance, while the USG FLEX H Series only supports up to 802.3 AT. Please add a PoE switch or use a USB type-C cable to power up the WBE660S.
-
USG FLEX H Series - How much PoE power can USG FLEX H Series provide?
All USG FLEX H Series models have the same PoE power budget “30 W”.
-
USG FLEX H Series - What PoE standard does USG FLEX H Series support?
USG FLEX H Series supports 802.3AF & 802.3AT.
-
On the Firewall USG FLEX 200H, there should be 2 ports with 2.5Gbps. Which ports are they?
Question: On the Firewall USG FLEX 200H, there should be 2 ports with 2.5Gbps. Which ports are they? Answer: There are 4 models in the USG FLEX H series that support 2.5Gbps and more. This table displays a summary of port information.
-
USG FLEX H Series - Firmware Upgrade Memory Check
The latest uOS update (version 1.21) introduces a firmware upgrade memory check to ensure that devices have sufficient memory available before performing a firmware upgrade. This enhancement aims to prevent upgrade failures due to insufficient memory, especially for devices with limited system memory, such as the USG FLEX…
-
USG FLEX H Series - Firmware Management Enhancement
The latest uOS update brings significant enhancements to firmware management, providing administrators with more control and flexibility. Key improvements include the ability to select the partition for booting, manual and cloud firmware uploads, and options for auto-reboot during auto-updates. New Enhancements Partition…
-
USG FLEX H Series - New Algorithm Kyber768 Supported
The latest uOS update introduces support for the Kyber768 algorithm, which is gaining traction due to its adoption by major browsers like Google Chrome and Microsoft Edge. However, this new algorithm has also introduced an unexpected issue related to content filtering. Background With the adoption of Kyber768, browsers…
-
USG FLEX H Series - IPSec VPN Debug Logging
IPSec VPN is a crucial feature for many users of Zyxel security appliances, providing secure connectivity between different sites. However, troubleshooting VPN issues can be challenging with the standard event logs. To address this, uOS now includes detailed IPSec VPN debug logging capabilities. Key Features Real-Time…
-
USG FLEX H Series - Customize Zone in Remote Access VPN
In previous updates, we introduced the ability to set zones within the site-to-site VPN wizard. This update uOS version 1.21 extends similar functionality to remote access VPNs, making the configuration process more intuitive and streamlined. Key Enhancements Direct Zone Customization: Users can now directly change the…
-
USG FLEX H Series - GUI Enhancements
The latest firmware update for USG FLEX H Series includes several enhancements to the graphical user interface (GUI) to improve user experience and increase engagement with security features. Here are the key updates: 1. Secure Reporter Links Integration To increase visibility and engagement with Secure Reporter, we have…
-
Why I can not change the protection policy on SecuReporter for my device?
Scenario: Normally, I can change the protection policy But why I cannot change the protection policy for my USGFLEX H series firewall? Answer: USGFLEX H series firewall is in Nebula monitoring mode. Both Nebula cloud mode firewall and Nebula monitoring mode firewall use non-anonymous as protection policy by default, and…
-
Cannot download OpenVPN profile
Question: What should I do if I encounter an error while downloading the SSL VPN configuration? Answer: To resolve the SSL VPN configuration download error, please follow these steps: 1)Check you have IP address on Incoming interface. 2)Please contact Zyxel Support if the issue persist.
