Maintenance - Zyxel Community

How to unlock blocked account/IP in FLEX/ATP?
Question If users enter wrong username/password too many times and get locked, how to unlock the account? Answer Go to Console> Type Router(config)# show lockout-users> Type "unlock lockout-users XX.XX.XX.XX"
Do I need to upload certificate again when I boot up from standby partition?
Question Do I need to upload certificate again, when I boot up from standby partition? Answer No, the certificate files are in the shared partition. There is no need to upload certificates file again.
What does it mean by console log “kernel: Port x receive error code 10, packet dropped”?
Question When I set debug kernel console level to 8, I can see many log “kernel: Port x receive error code 10, packet dropped”, what does it mean? Answer The error debug code is normal behavior, it shows that when device receive Ethernet packets with incorrect length. It mostly happens when some network equipment doing…
Why am I unable to access device web GUI after applying customer’s configure file
Question After applying configuring file, I am unable to access device web GUI from wan side. Anything I can check on startup configure file? Answer Please check the following items in configure file 1) Web GUI port. Make sure the web GUI access port is correct ip http port 888 ip http secure-port 4433 2) Admin service…
How can I check the unit temperature on USG FLEX 50/100/200?
Question: Is there any way to check the temperature of the unit with web GUI or CLI? Answer: Yes, we can check the unit temperature by CLI For example: Router# debug hardware Router(debug hardware)# Router(debug hardware)# fan-get Sensor[0]:56 degree Sensor[1]:35 degree Sensor[2]:40 degree FAN[0]:5781 RPM FAN[1]:5750 RPM…
What can I do when the warning message "Connect to myZYXEL.com server has failed" pops out?
If you encounter a warning message "Connect to myZYXEL.com server has failed" when clicking on Service License Refresh, it could be a misconfiguration on DNS settings resulting in failure to resolve portal.myzyxel.com which is used for this service. You will see the related logs like below if the device cannot communicate…
How to set user idle timeout
Object -> User/Group -> Setting -> Miscellaneous Settings Enable user idle detection. Firewall will kick user if there are no traffic from user. The idle detection will monitor Login Users, so it will be affected if user from external AAA server.
How to download configuration file from Standby partition?
Question: When the device boots up, system will apply the configuration which named "startup-config.conf" on running partition. Each partition has its own configuration files. How to download the configuration from Standby partition? Answer: Go to System > FTP and ensure FTP service is enabled. Access the device by FTP.…
Why there are many configuration files on the Configuration File Which one is the important?
Background and Scenario: If pasting long time and you will notice that there are many config files exist on the firewall but which one is important? Answer: The device would automatically back up the running-config file whenever firmware updating or if detecting the config be modified to avoid there is any accident…
How to check the CPU temperature and make sure the device is operating at a proper temperature?
Background and Scenario: To avoid potential overheating issues with your device and prevent unexpected problems such as freezing or sudden reboots, ensure that it is operating at the proper temperature. Answer: If you are using medium or larger models, such as the USG Flex 500, ATP800, or others, you could use the CLI…
Why am I unable to upgrade firmware by cloud?
Question Why am I unable to upgrade firmware by cloud? Answer If device firmware is weekly firmware or date code firmware, Cloud helper will restrict user download/upgrade FCS firmware from Cloud, because it need user confirm the release note and make sure the issue is fix on FCS, to avoid customer upgrade it, then the…
Why would firmware update fail in device HA mode?
Question I am doing firmware upgrade on active device. It seems only stand-by device update successfully, but active device stays at the same firmware version. Why would firmware update fail in device HA mode? Answer It could be caused by firmware update check timeout mechanism. By default, the firmware update check…
How to fix the issue when device Web GUI is unable to access
SCENARIO DESCRIPTION: Somehow, I am unable to access the web GUI of my FLEX/ATP, and the device reboots periodically. Connected serial console to FLEX/ATP, it indicated that httpd is dead, and App watch dog is trying to recover it. What could be the reason that httpd is dead and what should I do for now? Console log…
How to find the product life
Zyxel have three concepts: End of Development: From the date forward, the model will no longer be developed and no bug fixes or new patches will be released. Maintenance builds will only be available for industry wide critical issues. End of Vulnerability Support: From the date forward, we will no longer provide bug fixes…
How to get diaginfo by CLI
Perform the following command to collect diaginfo. Router# diaginfo collect ac And you can check the status by command. Router# show diaginfo collect ac status Status: Busy on ZyWALL Once completed, Status will show “standby”. And get the diaginfo through FTP
How to import address objects in bulk
You may need to add a large number of blacklisted IP addresses. You can accomplish this by using the CLI for bulk importing. Zyxel have three concepts: 1) Editing commands by notepad ++ 2) Enter config mode and paste the commands 3) Add the selects to Group.
How to perform speedtest on device
Router# debug _speedtest-cli Once you perform the command, device will act as client and do the network speedtest.
How to speed up the authentication process when using ad as the authentication method?
It takes more than 12 seconds for the client to pass the authentication when using ad as the authentication method. How to speed up the authentication process? Go to CONFIGURATION > System > DNS > Domain Zone Forwarder.Add a DNS domain zone forwarder to speed up the AD authentication.In this example, the domain zone is…
Is Two-Factor authentication mail able to be sent to the email address from the Active Directory?
Enable Two-Factor Authentication for VPN access and move ad-users to selected User/Group. On Active Directory, configure email address for the ad user “user3”. Make sure the email address is also shown in Attribute Editor > mail. Mail is sent to the AD user “user3”. In MONITOR > Login Users, user3 logged in as SSL VPN (two…
What does the result of the command "debug system show cpu status" mean?
CPU utilization: 91 % (system: 1 %, user: 2 %, irq: 0 %, softirq 90 %) system: the percentage of the CPU utilization spent on running in kernel space user: the percentage of the CPU utilization spent on running the user space process irq: the percentage of the CPU utilization spent on handling hardware interrupts softirq:…

Welcome!

It looks like you're new here. Sign in or register to get started.