Security Ideas - Zyxel Community

Speedtest from router
I'd like to see the ability to do an internet speed test from the router for diagnostics.
Option for "Turn of notification" per device at portal.myzyxel.com
It should be an option for "Turn of notification" per device at "https://portal.myzyxel.com". Endcustomers are receiving notifications about license renewals for inactive devices, which cause annoyment and confusion for the endcustomer. For active devices, the notification should be sent with a copy to the registered…
Auto generate Lets Encrypt certificates
Could a feature be added to USG/ATPs where you can use a lets encrypt certificate for say SSLVPNs, and set it too auto renew every 90 days? So other vendors already support this.
Zyxel USG - GUI - show information for end of development, vulnerability support, RMA
Hello! Please show directly in the GUI of the zyxel devices (section registration or services) the information about the actual dates of: end of development end of vulnerability support end of RMA & Tech Support Thank you, best regards, MJR
SSL Inspection
From Monitor>SSL Inspection>Certificate Cache List> Please add if possible "Source" as it is very helpful that "Destination" IP Address is already indicated by would be a wonderful addition to have "Source" IP Address too. It just would be very practical to see right away at times which Clients are accessing which secure…
SecuReporter + WiFi User Failed attempts
I wish there was more in information with SecuReporter GUI in regards to failed WiFi User login attempts. As it would be a nice added information to know with regards to "Rogue WiFi Clients" attempting to login to the managed APs. I think it makes sense to know this as an attack indicator. To view these failed attempts of…
Add GEO blocking option in Email security rules - Black/White List
I wish I have in Black/White List an option for GEOGRAPHY blocking. And block all emails sent from blocked countries.
Flex500 MFA for SSL VPN - setup Authenticator from Remote
This discussion was created from comments split from: Flex500 MFA for SSL VPN - setup Authenticator from Remote Description: Enable MFA via Authenticator for users that are far away without either needing them to come to the office or doing a remote teamviewer session with each and everyone. Click like if you think the…
ZyXEL SecuExtender 2FA build in App
This discussion was created from comments split from: ZyXEL SecuExtender 2FA build in App Description: Enter 2FA code on the app just like Barracuda instead of entering the 2FA code in browser. Click like if you think the feature is useful and beneficial.
Google Android isn't supporting DHCPv6 and USG is missing RDNSS
Today I learned that Android Phones don't support DHCPv6. And indeed when I have such a phone and sniff with Whireshark I can't see any DHCPv6 requests. Therefore this is the reason why the phone can't get the DNS server addresses for IPv6.With Windows and Linux systems everything works well, they request after a RA…
Inconsistent display of active VPN connections
I have 4 tunnels open from a FLEX50 to a FLEX200. On the F50 they show up everywhere correctly when connected. On the F200 only 2 of them show as active in Configuration > VPN > IPSec VPN >VPN Connection. They all use the same IKEv2 gateway, all are nailed up and work just great. Two go into LAN1/2, the other two do the…
ZyNOS support for DNS Views on Zywall USG routers
DNS views provide the ability to serve one version of DNS data to one set of clients and another version to another set of clients. With DNS views, the NIOS appliance can provide a different answer to the same DNS query, depending on the source of the query. It would be nice if we could provide different DNS records based…
Change the position of the GINA window in the Windows login
This discussion was created from comments split from: IPSec Client GINA Position Description: Change the position of the GINA window in the Windows login of the ZyWALL IPSec VPN client. For example. 40 pixels higher so the windows icons can be seen. Click like if you think the feature is useful and beneficial.
SD-WAN Client AutoVPN protocol
Hello. We have 3 gateways in SD-WAN mode (1x VPN300 and 2x VPN100) and now we have a problem with remote VPN connections as the only supported technology for client VPN connections in SD-WAN is L2TP over IPsec and it is removed in recent Android versions, so we would like to ask to add IKEv2 support. Thank you.
LAG limited to 1048576kbps
So looking forward with other models this seems to be a some what a big problem if 2 ports at 1Gb each in a LAG could go faster at given connection loads to 2Gb or 2097152kbp then this needs solving.
IPS based on vlan/interface/zone
Hi, IPS is a very good system but due to same false positives in the intra VLAN detection, I would like to better tune on which traffic it is enabled. At thius time it is only possible to add ip based exclusion but this is'nt optimal. For example I prefer to avoid intra lan checking but only on WAN traffic at the…
AD uthentication based on domains
Hi, we handle multiple AD domain vpn authentication on USG 700 and everithing is working fine. The USG scan all AD domain asking the proper DC for the username only. This has two limitation: - same username is not allowed in more than one domain - there are a three AD domain limit which is very low for us My request is to…
Texts / translations in the device GUI
I noticed a lot of odd English within the GUI of my FLEX200. Stuff like this: Try new feature for free! With the new Device Insight, IT could gain enhanced visibility and control of the networks. Talking about "mixed signals"… Can I try this for free? For how long? Oh it's free anyway and what are the odds Zyxel will…
Remove AUTO added DNS as forwarder
Able to remove AUTO added DNS as forwarder to use built in DNS for lookups Also enable DNSSEC as its bind running on USG?
2FA with AD Sync - custom email field
We need to be able to change where the 2FA email sends to when using 2fa with AD sync. By default it will use the one in the email field in AD - we want it to use another field, so we can add peoples personal email addresses into something not being used in AD - meaning 2fa emails can go to another email address

Welcome!

It looks like you're new here. Sign in or register to get started.