-
[ATP/FLEX] My secureporter device are not connected
Scenario : Users may encounter a situation where they successfully setup the firewall on the Nebula, however, the SecuReporter indicates the device is disconnected. This article will guide you on how to resolve this issue. Answer : The possible reason is that the Nebula Firewall doesn't send traffic to the SecuReporter,…
-
[Nebula] I cannot use native mode to register and deploy my firewall on Nebula
Question: I cannot get a USG FLEX to register and connect to Nebula. It is not showing as connected on Nebula. Native mode is greyed out and unable to connect USG FLEX to Nebula. How to make my firewall active and online on Nebula? Answer: It is probably that your device is too old to be deployed using Native mode. Note:…
-
[ATP/FLEX] How to allow accessing the Nebula firewall's Web-GUI?
Scenario : Users may wish to access the Nebula firewall's Web-GUI to adjust WAN settings or troubleshoot the network. This FAQ will guide you on how to perform it. Answer : Please navigate to Site-wide > Configure > Firewall > Security Policy to add a security policy. Users can restrict specific source IPs from accessing…
-
[Nebula] How to register and manage USG FLEX H firewall on Nebula?
Question: I am currently managing my USG FLEX H using the local interface and would like to move it to Nebula for configuration management. USG FLEX H is registered on Nebula but it is not showing Firewall in Configure on Nebula. "Configure" doesn't list Firewall as an option. How to configure and manage USG FLEX H on…
-
[ATP/FLEX] How to check the running config content of Nebula firewall by CLI?
Scenario : If you successfully log in to the Nebula firewall (ATP/USG Flex models) via SSH or console series, how do you check the current running configuration? Answer : The running configuration results of CLIs for On-Premise and Nebula mode are different. In On-Premise mode, you can use "show running-config" to check…
-
[Nebula] Why can't I use ZTP to provision a firewall to Nebula?
Question: I have problem using ZTP to deploy ATP and USG FLEX on Nebula. It seems ZTP has error on Nebula firewall because ZTP configuration is greyed-out. Why I cannot use ZTP to provision firewall to Nebula? Answer: ZTP mode has been removed in V5.37 patch 1, so we need to deploy the device to Nebula using native mode.…
-
[ATP/FLEX] How to collect diagnostic file on Nebula Firewall Local WEB GUI?
Question: How to collect diagnostic file on Nebula Firewall Local WEB GUI? Answer: You need to access Local WEB GUI. How to access Local WEB GUI of Nebula Firewall? In Maintenance > Diagnostics Info, click "Collect Now" to run the uploaded script and create a new diagnostic file. After the collection is finished, click…
-
[ATP/FLEX] The status of Cloud Monitoring Mode is "Connected" but the device is not online.
Question: The status of Cloud Monitoring Mode is "Connected" on device. Why does the device not appear on nebula? Answer: After you enter monitor ID on web GUI, you also need to assign the device to a site on nebula. Please refer to the following article for detailed configuration guide. [ATP/FLEX] How to set up Nebula…
-
[ATP/FLEX] How to remove the device from the organization completely?
Scenario : The user may want to remove the existing site, regardless of whether it is in Nebula mode or Monitor mode, from Nebula. The purpose could be to revert to premise mode or to attach to another Nebula organization. This article will guide you on how to execute this process. Answer : Please navigate to…
-
[ATP/FLEX] Why does the SFP port of the USG Flex 100/ATP100 disappear on the Nebula?
Scenario: The user may encounter an embarrassing situation when entering the port setting page and finding that the SFP port setting is gone, as below shown: Answer: Because the Nebula Control Center detects the device is not connected to this site such as the device was removed from the org, once we connect the device to…
-
How to run a connection test from the device's local WEB GUI when the device is offline from the NCC
Question: Assuming the device is offline from the NCC, how can we run a connection test from the device's local web GUI to address the issue? Answer: Connect a laptop to lan interface. Open a browser and enter the IP address of lan Interface. Click "Network Test Tools" to login. Enter password to log in device note. Go to…
-
Where can I see high usage clients?
You were searching for a section within the Nebula monitoring area where you can view clients consuming significant usage through the firewall. You can navigate to Monitor > Firewall > Summary report > Top clients by usage
-
[ATP/FLEX] How to check Nebula firewall's summary report?
Scenario: Users may want to monitor historical statistics for traffic, client traffic, and firewall resources on their network. This article will guide you on how to monitor ATP and USG FLEX on Nebula. Answer: Please navigate to Site-wide > Monitor > Firewall > Summary report to see the below information. WAN1 Usage…
-
Nebula Firewall Matrix Table(ZLD5.41 & uOS1.36)
Model Name USG FLEX 50H/ 50HP USG FLEX 100H/ 100HP USG FLEX 200H/ 200HP USG FLEX 500H USG FLEX 700H USG FLEX 50/ 50AX USG20(W)-VPN USG FLEX 100/ 100W/ 100AX USG FLEX 200 USG FLEX 500 USG FLEX 700 ATP 100/ 100W ATP 200 ATP 500 ATP 700 ATP 800 Interface VLAN 8 16 32 64 128 8 8 16 64 64 8 16 64 64 64 Routing 4 Static Route 64…
-
[ATP/FLEX] How to add the last Optional port to LAN1 in port group?
Once you have successfully executed ZTP (Zero Touch Provisioning), if you wish to exclusively use the LAN1 subnet while facing difficulty in saving the last optional port to LAN1 port group, refer to the illustration below: Why cannot save it? This issue arises due to the firewall's default configuration, which comprises…
-
[ATP/FLEX] How to access SSH service of Nebula Firewall?
Scenario: Sometimes, when troubleshooting network issues, we might need to access a device via SSH. You can follow the steps below to access the device's SSH service for troubleshooting. Steps: You may skip step 1) if you access SSH service from LAN interface of the device. 1) Create a security policy to allow SSH service…
-
[ATP/FLEX] How to set up Nebula Monitor Mode?
Nebula Monitor Mode provides remote SSH, remote Web-GUI,and backup configuration file functions, allowing users to manage on-premise devices more easily. This article will guide you on how to set up Nebula Monitor Mode. *Please ensure that the on-premise firewall has already been registered on the Nebula account (same as…
-
[ATP/FLEX] How to add existing SecuReporter account to monitor Nebula firewall?
Question : If your SecuReporter account and the Nebula account are different, but you would like to use the existing SecuReporter account to monitor the Nebula firewall, how can you deploy this? Answer : Please navigate to Organization-wide > Administrators to add the existing SecuReporter account to this org and site.…
-
[ATP/FLEX] How to schedule backup the configuration file in Nebula Monitor Mode?
Purpose: To allow the user to schedule back up the configuration on the Nebula by schedule and prevent it from being lost due to unexpected reasons. Question: How to schedule backup the configuration file in Nebula Monitor Mode? Answer : Ensure the device is in Nebula Monitor Mode. Side-wide > Monitor > Devices > Firewall…
-
[ATP/FLEX] How to backup the configuration file in Nebula Monitor Mode?
Purpose: To allow the user to back up the configuration on the Nebula and prevent it from being lost due to unexpected reasons. Question: How to backup the configuration file in Nebula Monitor Mode? Answer : Ensure the device is in Nebula Monitor Mode. Side-wide > Monitor > Devices > Firewall > Configuration Side-wide >…