-
Zyxel USG FLEX and ATP series – Upgrading your device and ALL credentials to avoid hackers' attack
Zyxel team has been tracking the recent activity of threat actors targeting Zyxel security appliances that were previously subject to vulnerabilities and admin passwords have not been changed since then. Users are advised to update ALL administrators accounts for optimal protection. Based on our investigation, the threat…
-
What's New: uOS1.30 Patch 1Firmware Update for USG FLEX H Series
This discussion has been moved.
-
What's New ZLD5.39
Enjoy stronger traffic control with a new CLI command to drop TCP SYN packets with data, faster filtering, and a fix for Chrome’s TLS 1.3 content filter bug. Update today for seamless protection. Zyxel is committed to continuously updating your devices for important maintenance information. This latest release also…
-
Important Reminder for your Content Filter Service
At Zyxel, we are committed to providing you with the most advanced and secure services possible. In line with this commitment, we continuously enhance our Content Filter service to ensure top-notch security detection from Trellix. To ensure your service running stable and efficiently, please upgrade firmware to the latest…
-
How to solve the issue "ZTP is already enabled" on VPN series?
Symptom: Unable to access the web GUI. Access the web GUI but the page "ZTP is already enabled" appears. The device is on-premises mode and never deployed using ZTP. Q1. What are the impact model and version for this issue? Affected model Affected version VPN50 5.00 through 5.36(ABHL2)C0 VPN100 5.00 through 5.36(ABFV.2)C0…
-
What should I do if the device failed to be upgraded to the latest firmware?
Please follow the procedure to upgrade the firmware Step 1. Make sure you have on-site local support that able to reach the device Step 2. Unplug all WAN connections. Step 3. Access the device via LAN IP. Step 4. Copy startup-config.conf to recover.conf. Download "recover.conf" to your PC. Step 5. Switch to standby…
-
ADP hits are sporadical, rarely from same IP. Do you add the IP's to blocking rules?
Please elaborate a bit why yes respectively no, thank you.
-
Does ADP take into consideration the GeoIP and the rules with blocked ranges?
Does ADP take into consideration the blocking rules entered in the GeoIP? I have for example blocked specific countries, and still there are often ADP hits from these blocked countries. I am aware tha the GeoIP database for any country or continent may not include the latest status for public IP ranges, but nevertheless -…
-
LAN interface Failover
Hello guys I have an USG 1100 with an physic interface (internal) like 172.16.0.254 with a policy route that send all traffic to 172.16.0.1(another router) for all destination network 172.16.0.0/16 I want add a failover interface (172.16.0.253) that route a secondary router (172.16.0.2) when primary is down. I saw failover…
-
DDNS problem on USG Flex
Why is it, that the USG Flex Series doesn't use the puplic IP for DDNS? When I look at NCC > Site-wide > Monitor > Devices > Firewall, I can clearly see that the USG Flex knows the public IP. My ISP's Modem doesn't allow a "real" Modem-mode. They call it "IP Passtrough". So I have to set a static connection on WAN1 to…
-
Setting up Site-to-Site VPN with multiple wan IP on both sides
I see the primary and secondary Peer Gateway address, which would be for the other site but what if "My address" also has 2 IP's for load balancing/failover? I think if I was to select wan 1 or wan 2, it would not failover correctly when one of the link is down. any help would be appreciated. Thank you.
-
Activating or not the 2FA for the VPN user profiles does not make any difference
I activated 2FA for IPSec VPN users, then generated via the integrated wizard the android and windows configurations freshly. There is no pop-up for the 2FA when connecting, even if the VPN user profiles have the 2FA activated. When 2FA is activated via the web-based login, a popup window for the 2FA code appears. That…
-
IPSec VPN does not work with latest MacOS, restoring a configuration does NOT reinstall the VPN part
Hi all, I have seen the instructions posted in the VPN section and followed them to install IPSec VPN on the newest MacBook with newest MacOS. Older MacOS and notebooks worked fine with the IPSec VPN. Before: IPSec VPN works for Androids and Windows and older MacOS, but does not work with the newest MacBooks with newest…
-
USG20-VPN configuration for MacBook Air (sequoia) VPN connection
Hello, Could anybody please provide step-by-step setup how to configure Zyxel usg20-vpn firewall/router to be able to establish secure VPN connection with MacBook Air updated to macOS Sequoia (via native macOS VPN client) ? Thank you. ZB
-
USG flex 100 import a public certificate
I am trying to import a public certificate, which is used by public CA. But if i try .pem the answer there is no a certificate request If i try a PKCS12, the answer is; format not supported firmware is the last V5.39(ABUH.1) / 2024-11-16 03:58:40 How i can import the cerificate.
-
USG60W - connect from IPSEC connected site to Web GUI
Hello, I am trying to solve problem with connection to router administration. I have 2 sites succesfully connected thru IPSec. I am connected to site A with SSL VPN. Site A is connected to site B thru IPSEC. I can access devices in Site B network. But I cannot access router administration website. Log from site A: Log from…
-
Detecting a vpn anonymizer in the local network and who is using it?
I have an ATP500 firewall. There has been someone inside the network using express vpn before connecting to the internet. I can see in the App Patrol that it is being used, but I'd like to see if its an employee on the company network or a contractor using our guest wifi. Is there a way to log the ip and mac of the machine…
-
baseauthenticity.co.in malware affected computer
My firewall USG FLEX100 enabled anti-malware but one of the computers is affected by baseauthenticity.co.in What can I do in the firewall?
-
how to unregister device?
How can i unregister device from portal.myzyxel.com? on premise device flex 500
-
IKEv2 Disable Split Tunneling not working
I want to set up IKEv2 VPN Connection where I want my cliënt to be able to use the remote internet connection, so we can use the fix WAN IP on the server side. I set SecuExtender to Disable Split Tunneling and I added a policy route on the flex with IKEv2_VPN as member, Source address the IKEv2 pool and as Next-Hop: Trunk,…
-
Locked out of admin account on USG FLEX 100W
Hi, I have been having a running battle with a USG FLEX 100W for over a year now. I keep getting locked out of the admin account after a period of time. This is despite repeatedly resetting and re-configuring the device on a couple of occasions. Typically, I would factory reset the device, reconfigure from scratch, set the…
-
Firmware V1.00 (ABUS.3)C0 Download
Hello, I have significant problems with my 5G router NR2101. As a solution, I would like to install the firmware: V1.00(ABUS.3)C0 again to see whether the problem will be solved. Please download. Thank you very much
-
[USG FLEX 100] VPN doesn't work
Hello, the VPN stop working and I cannot fix it. Can someone help me? This is the history log: 32 2024-12-26 12:13:43 info IKE Tunnel [RemoteAccess_L2TP_Wiz:L2TP_VPN_Connection:0x1b4cb4f2] is disconnected 192.168.1.254:500 84.78.243.245:23355 IKE_LOG 33 2024-12-26 12:13:42 info IKE Dynamic Tunnel…
-
USG FLEX 50W (USG20W-VPN) no graphs
Hi I don't have graphs on cpu or others when I clic on the line I don't have anymore graphs on traffic Since the version 5.39 of firmware Is there anybody who can explain to me how to retreive graphs? I don't receive automaticaly the daily report, the smtp server is correct because I receive the report when I clic to send…
-
Error message not secure, https is marked out.
I have a Zyxel ATP100 and when I go to logon I get the following message "Not Secure HTTPS"
-
update firmware
How to update the firmware usg flex 200
