-
Seriously, your ideas could be new feature for Security!
Hello Security Forum Members, Do you have moments that if your own thoughts or ideas can make better experience when using Zyxel security products? <3 We can make your wish come true! <3 Simply start a new post here describing your fabulous ideas for features or services you wish to have! Once your ideas get lots of vote ,…
-
[USG Flex H Series] - Internal NTP Server
Hello everyone, as a new feature request, can be usefull to install an NTP Server inside the USG Flex H firewall. In this way, if you block internet connection for a device, it can synchronize own clock/timezone information directly from the firewall without using internet at all. The NTP Server can also used as time…
-
[USG Flex H] - Create Object Address based on MAC Address
Hello everyone, I've the USG Flex 200HP from some months and I've difficulty to understand the Object Address of type "Host". I mean, if I need to create some Control Policy rule based on some "device", I need to configure the device as Static DHCP based on Mac Address, and than configure an object address based on the IP…
-
[H firewall] IKEv2 remote access VPN split tunneling with multiple subnets
In response to the requirements raised by user @MyForumUser, we propose the addition multiple subnets for IKEv2 remote access VPN split tunneling. This suggestion originated from the discussion found here: USG FLEX 200H: Remote Access VPN (IKEv2) Split Tunnel limited to a single CIDR field — Zyxel Community If anyone likes…
-
Implementing Batch Object Import/Load
In response to the feature request raised by user @mMontana, we are proposing the implementation of Batch Object Import/Load. This suggestion originated from the following community discussion: Batch objects import/load — Zyxel Community If you find this idea useful, please feel free to leave a comment or cast your vote!
-
[Feature request] add console command log tab to WEB UI
In old USG series was great tab in web UI cli, that show command history. After do something via WEB, you can copy commands from tab and use for mass device conf via cli. New USG H series don't have this feature.
-
Real DMZ made easy
Will fix my ISP DHCP problem with my current real DMZ problem too Big ask to solve my ISP problem with DHCP. — Zyxel Community
-
USG FLEX H support speed test diagnostic function
User @henriquev hopes USG FLEX H support speed test diagnostic function. Anyone who likes this request, please feel free to leave your comment and give it a vote! Original post
-
USG FLEX H supports generate guest logins on the fly
User @hORnZ hopes USG FLEX H can support generate guest logins on the fly, which is available on NXC series. Anyone likes this idea, please leave your comment and vote up for this idea. Additionally, Nebula supports guest self-registration. Here is the FAQ link: FAQ link Idea original post link
-
Flex H - edit rules, NAT name etc.
Hello everyone, following the thread linked below, I would like to ask the possibility to edit name rules, NAT and so on. Quicker way to reorganize everything. You can find details here:
-
USG FLEX H NAT rule support multiple IP(not continuously) and FQDN (non-wild card) for source IP
User @Lucas_Wilson and @PeterUK hope USG FLEX H NAT rule support multiple IP(not continuously) and FQDN (non-wild card) for source IP. Anyone who likes this idea, pleases feel free to leave you comment and vote up for this idea. Original post
-
Bring back Release Notes PDF download option in GUI (feature parity with ZLD)
In ZLD-based devices, administrators had the ability to easily view and download Release Notes directly from the web GUI before performing firmware upgrades. This included a convenient option to save the document locally (e.g., as PDF), which was very useful for documentation, auditing, and change management processes. In…
-
[USG Flex H] - Remote updater Tailscale VPN Client
Hello everyone, into the Tailscale configuration, there is an utility to remotely upgrade the tailscale client. But if I try to start the upgrade, I obtain an error about an missing executable. "netwall" is the name of the firewall into my tailscale network. Can be interesting to implement the manual remote update function.
-
A better Connectivity Check for switches and USG
So also to do for https://community.zyxel.com/en/discussion/16665/fail-over-without-nat#latest Now that I have a web site and made it do things I could never of done in my dreams like the Network Layout Builder that can simulate network traffic sending I can now show want I would really like and show it working. So in…
-
USG FLEX H SSL VPN support certificate based authentication
User @hORnZ hopes USG FLEX H SSL VPN support certificate-based authentication. Anyone likes this idea, please leave your comment and give this post a vote. Original post
-
[USG Flex H] - WireGuard VPN
Hello everyone, I see that our Firewall USG Flex H Series, implement Tailscale, only a user-friendly VPN based on WireGuard protocol. My idea is to convert the Tailscale third party service, with the real WireGuard solution. As also explained by Tailscale (https://tailscale.com/compare/wireguard) is more complex to…
-
[USG Flex H] - Multiple Tailscale/Wireguard VPNs
Hello everyone, I've been using Tailscale VPN lately to reach my devices from the outside. At the same time, I'd like to use a VPN in exit mode as well. I thought it would be useful and convenient to be able to manage two VPNs, one that only routes internal resources and one that uses routing and an exit node (this is…
-
Wireguard?
WireGuard® is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography.It aims to be faster, simpler, leaner, and more useful than IPSec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN. WireGuard is designed as a general purpose VPN for running…
-
[USG Flex H] - FIDO2 Auth Keys
Hello everyone, I finally got in my hands a Yubikey that supports the FIDO2 authentication standard. Actually, I'm using it to log into my Raspberry Pi, configuring it into SSH, and it doesn't seem to be bad. Is it possible to implement FIDO2 authentication? My keys are generated from ED25519-SK key type that are based on…
-
[USG Flex H Series] - Two Factor Auth with Mobile Auth notification
Hello everyone, I've enabled the Two-Factor Auth, but every time that I would like to login into the Web Admin Portal, the interface ask to me to enter the 6-digit MFA code. It's possible to change this behavior for receive a notification on the Mobile Auth App and accept/decline? If is not possible or this is a missing…