-
USG FLEX H Series - Firmware Upgrade Memory Check
The latest uOS update (version 1.21) introduces a firmware upgrade memory check to ensure that devices have sufficient memory available before performing a firmware upgrade. This enhancement aims to prevent upgrade failures due to insufficient memory, especially for devices with limited system memory, such as the USG FLEX…
-
USG FLEX H Series - Firmware Management Enhancement
The latest uOS update brings significant enhancements to firmware management, providing administrators with more control and flexibility. Key improvements include the ability to select the partition for booting, manual and cloud firmware uploads, and options for auto-reboot during auto-updates. New Enhancements Partition…
-
USG FLEX H Series - New Algorithm Kyber768 Supported
The latest uOS update introduces support for the Kyber768 algorithm, which is gaining traction due to its adoption by major browsers like Google Chrome and Microsoft Edge. However, this new algorithm has also introduced an unexpected issue related to content filtering. Background With the adoption of Kyber768, browsers…
-
USG FLEX H Series - IPSec VPN Debug Logging
IPSec VPN is a crucial feature for many users of Zyxel security appliances, providing secure connectivity between different sites. However, troubleshooting VPN issues can be challenging with the standard event logs. To address this, uOS now includes detailed IPSec VPN debug logging capabilities. Key Features Real-Time…
-
USG FLEX H Series - Customize Zone in Remote Access VPN
In previous updates, we introduced the ability to set zones within the site-to-site VPN wizard. This update uOS version 1.21 extends similar functionality to remote access VPNs, making the configuration process more intuitive and streamlined. Key Enhancements Direct Zone Customization: Users can now directly change the…
-
USG FLEX H Series - GUI Enhancements
The latest firmware update for USG FLEX H Series includes several enhancements to the graphical user interface (GUI) to improve user experience and increase engagement with security features. Here are the key updates: 1. Secure Reporter Links Integration To increase visibility and engagement with Secure Reporter, we have…
-
Why I can not change the protection policy on SecuReporter for my device?
Scenario: Normally, I can change the protection policy But why I cannot change the protection policy for my USGFLEX H series firewall? Answer: USGFLEX H series firewall is in Nebula monitoring mode. Both Nebula cloud mode firewall and Nebula monitoring mode firewall use non-anonymous as protection policy by default, and…
-
Cannot download OpenVPN profile
Question: What should I do if I encounter an error while downloading the SSL VPN configuration? Answer: To resolve the SSL VPN configuration download error, please follow these steps: 1)Check you have IP address on Incoming interface. 2)Please contact Zyxel Support if the issue persist.
-
Why do CLI configurations disappear after USG FLEX H reboots?
Question: I use commands to enable HTTPS and HTTP and enter "commit" on SSH but they are always disabled after the reboot. Answer: You also need to enter “copy running startup” to save settings to startup configuration before you reboot the device. Enter “commit” to save configuration to running configuration. Enter “copy…
-
USG FLEX H Series - Can I connect non-PD to PoE port?
It is recommended not to connect a non-PD to the PoE port. If you need to connect, please confirm the PoE function is disabled before connecting. Path: Menu > Network > Interface > Port
-
How to use commands to disable "Authenticate Client Certificates" on USG FLEX H?
Question: I enabled the option "Authenticate Client Certificates" on USG FLEX H by mistake and I’m not able to access WEB GUI. How to use commands to disable it? Answer: usgflex200h> edit running usgflex200h running config# vrf main http-server secure-server auth-client false usgflex200h running config# commit usgflex200h…
-
USG FLEX H Series - Bootup Status
USG FLEX H Series - Bootup Status Introduction Understanding the bootup status and configuration application process of the USG FLEX H Series firewalls is crucial for effective troubleshooting and maintenance. This guide provides a detailed overview of the bootup sequence, symbols used during the process, and how to…
-
USG FLEX H Series - Self Protection
USG FLEX H Series - Self Protection Overview The Self Protection feature enhances the security of the USG FLEX H Series by addressing vulnerabilities associated with the IKE port (UDP 500). This port is commonly exploited by malicious users to perform denial of service (DoS) or other types of attacks. With version 1.20,…
-
403 Forbidden when attempting to access WebGUI
Issue: Users may encounter a "Forbidden" error when attempting to access WebGUI Resolution: To resolve this issue, follow these steps: Access your firewall settings. Disable the authentication client for HTTPS on the firewall. H> edit running H running config# vrf main http-server secure-server auth-client false H running…
-
USG FLEX H Series - AD Server Authentication
USG FLEX H Series - AD Authentication Overview The USG FLEX H Series now supports AD (Active Directory) authentication for both IPsec VPN and SSL VPN users. This enhancement allows centralized user management and enhanced security by leveraging your existing AD infrastructure. AD Authentication for VPN Supported…
-
USG FLEX H Series - Two-Factor Authentication for VPN
USG FLEX H Series - Enhancement on Authentication for VPN Overview The USG FLEX H Series firewalls now support several authentication types for VPN access: Local User with Two-factor authentication (2FA) External User on AD/LDAP Server Local Users - Two-Factor Authentication for VPN Clients How It Works When a remote user…
-
USG FLEX H Series - Custom Interface MAC Address
USG FLEX H Series - Custom Interface MAC Address Overview Certain Internet Service Providers (ISPs) require that devices connected to their network use a specific MAC address for authentication or other network policies. In such cases, it becomes necessary to manually override the default MAC address of your USG FLEX H…
-
USG FLEX H Series - Bandwidth Management
USG FLEX H Series - Bandwidth Management Bandwidth management is a crucial aspect of network administration, allowing you to allocate and limit bandwidth usage to ensure optimal network performance and prevent congestion. In firmware version 1.20 for the USG FLEX H Series, several enhancements have been made to bandwidth…
-
USG FLEX H Series - GUI Enhancements
USG FLEX H Series - GUI Enhancements The latest firmware version 1.20 for the USG FLEX H Series introduces several user interface (UI) enhancements aimed at improving usability, functionality, and overall user experience. This article will guide you through these enhancements, explaining their benefits and how to use them…
-
What is the maximum number of DHCP Relay Server supported on USG FLEX H?
Question: What is the maximum number of DHCP Relay Server supported on USG FLEX H? Answer: The maximum number of DHCP Relay Server is supported on USG FELX H is 4.