Maintenance - Zyxel Community

How to update the firmware by FTP?
Scenario : Users typically use the Web-GUI to update the firewall firmware, but it's also possible to use FTP for firmware updates. This FAQ will guide you on how to execute this. Answer : Please prepare a PC to connect to the firewall's LAN port and obtain a DHCP IP (for example, the assigned DHCP IP is 192.168.1.33 with…
How to disable recursive DNS service on the firewall by CLI?
Scenario : Some Internet Service Providers may offer recursive DNS service. Once the firewall/router is assigned a public IP, external Internet users can execute a DNS query via the public IP (e.g., using 'nslookup www.google.com [public IP address]'). However, this behavior may impose additional load on the…
How to disable recursive DNS service on the firewall GUI?
Scenario : Some Internet Service Providers may offer recursive DNS service. Once the firewall/router is assigned a public IP, external Internet users can execute a DNS query via the public IP (e.g., using 'nslookup www.google.com [public IP address]'). However, this behavior may impose additional load on the…
How to set up SNMPv2 on ATP and USG Flex models?
Scenario : This article will guide you on how to set up SNMPv2 on ATP and USG Flex models. Answer : Please navigate to System > SNMP Enable SNMP option. Define the Service Port. Enable SNMPv2c option. Define 'Get Community' and 'Set Community' values, Define Session Control. Open the iReasoning MIB Browser and click the…
How to type "?" in Terminal
Typing "?" usually display helping information. However, you have the request that type "?" in Terminal Please type [Ctrl + V ] on your keyboard before type a "?"
Why I cannot remove configuration files?
Question: Why I cannot remove configuration files? Answer: You can only delete the configuration file that is manually saved. Automatically generated configurations cannot be deleted such as systemdefault.conf, startup-config.conf, and lastgood.conf files.
Configuration file apply flow when booting the firwall
Configuration file apply flow when booting the firwall Check if startup-config.conf has any errors. If no, apply it at booting and copy it to lastgood.conf as a backup file. If there are errors, the device will save it as startup-config-bad.conf and apply the existing lastgood.conf. If lastgood.conf still has errors, the…
[FLEX/ATP]Why am I unable to upgrade firmware by Cloud Helper?
Question: Why am I unable to upgrade firmware by Cloud Helper? Answer: If device firmware is date firmware, Cloud Helper will restrict the user downloading the FCS firmware from Cloud because it forces the user to confirm the release note and make sure the issue has been fixed in the FCS version to avoid the issue…
[FLEX/ATP]How do I dump AAA log to console for log analysis?
Question: How do I dump AAA log to console for log analysis? Answer: Use the commands below,. Router# debug authentication server log activate Router# debug authentication server log dump to console
[FLEX/ATP]How to fix the issue when seeing App watch dog try to recover httpd log in the console?
Question: Somehow, I am unable to access the web GUI of my USG, and the device reboots periodically. Connected serial console to USG, it indicated that httpd is dead, and App watch dog is trying to recover it. What could be the reason that httpd is dead and what should I do for now? Console log Answer: It is because the…
How to collect "diaginfo" by CLI
Enter the configuration mode by typing configure terminal on your router. To start collecting diagnostic information: Router#config terminal Router(config)# diaginfo collect ac Wait for the process to complete as the system collects information. And use below command show the progress Router(config)# show diaginfo collect…
What can I do when the error message "Connect to myZYXEL.com server has failed" appears?
Question: Some users may encounter a problem when trying to activate a license, that is, once click on Service License Refresh, the error message "Connect to myZYXEL.com server has failed" shows up. Answer: It could be a bad DNS setting, resulting in the device not resolving towards portal.myzyxel.com, which is used for…
How to check Device Insight list by Web-GUI and CLI?
Scenario: When the user enables Device Insight, how to check the current Device Insight list by Web-GUI and CLI? Answer : Please navigate to Monitor > Network Status > Device Insight > To check the current list. The user also can use the CLI "show device info all" to check the current list.
How can I check the End-of-Life (EOL) information for Zyxel products?
Question How can I check the End-of-Life (EOL) information for Zyxel products? Answer The information can be found at .
How to clear the ARP table in Firewall?
Question How do we clear the firewall's ARP table to troubleshoot layer 2 issues? Answer Show ARP table Router(config)# show arp-table Clear ARP table Router(config)# arp-table flush
How to recover/regenerate the device's default certificate using the CLI?
Question After checking, it appears that the firewall's default certificate is corrupted, and I am unable to log in to the device's web GUI. How can I recover/regenerate the device's default certificate using the CLI? Answer We can connect to device using SSH, and type CLI Router> debug _ca regenerate to generate new…
How to configure LAN3 zone on USG20(W) and USG Flex 50(W) models?
Scenario: Because USG20(W) and USG Flex 50(W) don't have LAN3 zone by default. I the user wants to add a LAN3 zone to manage the LAN clients more flexibly how to deploy it? Answer: If the customer would like to use P3 for the LAN3 zone with IP 192.168.66.1 and DHCP server, please refer to the below steps: Configuration >…
How to disable DHCP settings and set the LAN2 port as a locally managed port?
Scenario : This article will guide you on how to disable DHCP settings and set the LAN port as a locally managed port for better security for you. Answer : For example, if the user wants to restrict administrator access to only lan2 for firewall management, they should navigate to Configuration > Networks > Interface >…
How to configure a VLAN interface with DHCP server in on-premise mode firewall?
Scenario : The user may wish to configure a VLAN interface with a DHCP server. This article will guide you on how to deploy a VLAN interface with VLAN ID 10 and a DHCP server. Answer : Please navigate to Configuration > Network > Interface > VLAN > Add a VLAN interface and configure Interface Properties, IP Address…
How to flush DNS cache in firewall?
Question: How do we flush DNS cache in firewall if we would like to troubleshoot DNS issue. Answer: We can enter CLI Router> ip dns server cache-flush to clear firewall DNS cache.

Welcome!

It looks like you're new here. Sign in or register to get started.