-
Recovery Steps for USG FLEX/ATP Series Application Patrol Signature Issue (Jan. 2025)
Symptom: The App Patrol signature release V1.0.0.20250123.0 may create parsing error on device for On-premises mode, application patrol daemon will not work well after updating this new signature though the rest of UTM features keep running. However, the worst case is that device may get stuck if device did rebooting…
-
Zyxel USG FLEX and ATP series – Upgrading your device and ALL credentials to avoid hackers' attack
Zyxel team has been tracking the recent activity of threat actors targeting Zyxel security appliances that were previously subject to vulnerabilities and admin passwords have not been changed since then. Users are advised to update ALL administrators accounts for optimal protection. Based on our investigation, the threat…
-
What's New: uOS1.30 Patch 1Firmware Update for USG FLEX H Series
This discussion has been moved.
-
What's New ZLD5.39
Enjoy stronger traffic control with a new CLI command to drop TCP SYN packets with data, faster filtering, and a fix for Chrome’s TLS 1.3 content filter bug. Update today for seamless protection. Zyxel is committed to continuously updating your devices for important maintenance information. This latest release also…
-
Important Reminder for your Content Filter Service
At Zyxel, we are committed to providing you with the most advanced and secure services possible. In line with this commitment, we continuously enhance our Content Filter service to ensure top-notch security detection from Trellix. To ensure your service running stable and efficiently, please upgrade firmware to the latest…
-
How to solve the issue "ZTP is already enabled" on VPN series?
Symptom: Unable to access the web GUI. Access the web GUI but the page "ZTP is already enabled" appears. The device is on-premises mode and never deployed using ZTP. Q1. What are the impact model and version for this issue? Affected model Affected version VPN50 5.00 through 5.36(ABHL2)C0 VPN100 5.00 through 5.36(ABFV.2)C0…
-
What should I do if the device failed to be upgraded to the latest firmware?
Please follow the procedure to upgrade the firmware Step 1. Make sure you have on-site local support that able to reach the device Step 2. Unplug all WAN connections. Step 3. Access the device via LAN IP. Step 4. Copy startup-config.conf to recover.conf. Download "recover.conf" to your PC. Step 5. Switch to standby…
-
Zywall 110 Throughput
What should I expect as throughput from my Zywall 110 device? I know that it depends on what is enabled as services. What is the max throughput without anything enabled beyond security policies and ADP?
-
Need Help USG Flex 100 VPN mac and Windows
Hi there. Current have a client with USG Flex 100. That client is using L2TP/IPSec to connect with Windows 10 clients and iphones. SSL clients paid version to connect with macs. But now macos 15 is not compatible anymore with SecureExtender. How can i configure IKE2 protocol to work in OS15 but dont messup iphone and…
-
USG Flex 200H
Bonjour, Est-ce que d'autres utilisateurs ont des soucis avec leur USG Flex série H? De mon coté voici mes problèmes: -déconnection du tunnel VPN site à site -impossibilité d'accéder à la conf depuis le lien généré par Nebula -en local, après l'authentification, impossible de charger la page de conf, j'ai des cercles verts…
-
Production Status USG20W-VPN (USG FLEX 50W): Discontinued?
Greetings, I was looking to purchase another USG20W-VPN (USG FLEX 50W) for a client and have been told by vendor it has been discontinued. Is this indeed the case?
-
Indeed Website not displaying properly.
Hello, For some reason the indeed website does not work properly. I have whitelisted the site and it did not change anything. All other sites appear to work correctly. I have attached a file with the first screenshot showing what the website should look like and three other screenshots showing various pages on the indeed…
-
How to monitor a endpoint for service/port traffic?
Hello, I was wondering how we would go about this. I have a client that I am auditing outbound traffic for (I am creating a security policy to prevent unapproved outbound traffic). I would like to start by analyzing the outbound traffic and see what is currently being used. I can kind of do this by going to monitor→Traffic…
-
USG 100 Flex stuck twice in two weeks
Facts January 28 roughly 10:00 am customer calls me reporting not working internet access. Already contacted the ISP, which says "Our CPE is fine, you're not flowing any traffic among your interfaces. I contacted ISP too, verifying that the connected device (USG 100 Flex) was not making any traffic, while seeing the device…
-
ZyXEL SecuExtender on Mac OSX Import Certificate greyed out
I have to install vpn client on a MAC, but if I want to import the (selfsigned) certificate (PEM → User certificate → certificate.crt) the OK button stays greyed out. On WIndows SecuExtender never had this problem. What am I doing wrong?
-
E-mail alert format
Hi, The alert emails from the firewall (USG500 Flex) are unreadable (see below). How can I format the message? I want this vertical format (or any readable solution): No: 1 Date/Time: 2025-02-12 13:43:47 Category: secure-policy Priority: alert Source: 1.xx.xx.xx:27181 Destination: 212.xx.xx.xx:7523 Note: ACCESS BLOCK…
-
Bug report - DHCP table
I wish to report a display bug in the DHCP table display. Hardware: USG20W-VPN (USG Flex 50W) Firmware: V5.39(ABAR.1) Severity: Cosmetic See attached image - all timestamps for "Last Access" are identical to the second. Even though half the listed devices were powered down minutes or hours before the page was loaded.…
-
Can We Influence Client Routing Behavior With Zyxel L2TP or Other VPN?
Back in the day, when Apple had a server product, a number of my clients used its L2TP VPN feature. One of the features of this product was the ability to provide routing configuration information to the VPN clients, telling them which traffic to send over the VPN and which to send via the normal ISP. Is anything like this…
-
usg flex 200hp how can I convert wan port to lan port for ZyXEL WBE660S
usg flex 200hp how can I convert wan p2 port to lan port for ZyXEL WBE660S
-
ZyXEL Configure Converter VPN100 to Flex200
Hi Noticed at: convert.cloud.zyxel.com I can convert VPN100 only to Flex 200H or Flex200 HP. I happen to have Flex 200. Is there a way to have my VPN 100 configuration converted to Flex 200?
-
Geography does not work
wantes to block access from outside austria for an external service. adde d geo austria , made nat and securriy rule with source austria. Somerimes it work. Other times source is blocked and the block is logged Log shows ,that the source comes from austria. bit austria should be unblocked. Removing geo give access to all…
-
flex100H IKEv2 with lan Radius server
Hi. I have an AD server with radius server on lan. I want to connect to flex100H with IKEv2 to the router with radius credentials. It just does not work. Can you help me?
-
Optimal resource usage for USG firewalls using GeoIP and policy control?
I have defined many IPv4 entities based on subnets, ranges, geography. These entities are partially gathered in address groups, partially are used individually. For some single entities and for the groups, there are policy controls defined- mostly containing the same rules. Are there limitations for building and processing…
-
RECOVERY FIRMWARE
Good evening, I have an ATP200 that is constantly rebooting, so I connected to the site to download a new firmware. I unzip it and through a CMD from a LAN machine I connect via FTP to replace it as per the procedure in the screen but I get an incorrect model error. Does anyone have any ideas on this? Thanks.
-
Change Zyxell usg 60
Good morning, I need some advice from someone who is more experienced than me. We are changing the internet connection and moving to a 2.5 Giga connection. We currently have a Zyxell USG 60 with two WAN interfaces (we also have a backup internet connection). Can anyone advise me on which product to think about?
-
USG Flex H country label
I noticed that in the USG Flex 200H and 500H the country label is not shown in the Logs
-
Zywall 110 killing RDP session
Hi, I have taken over a network from another company and on this network there is a Zywall 110 configured as a L2TP VPN router. Everything worked well till this morning where suddenly no one was able to login remotely with RDP. If I use RDP locally it works, but through VPN I get a credential error. I am not a VPN/Firewall…