-
[Trade-Up Program] 🔄 Time to Trade Up: Say Goodbye to Legacy USG, Hello to Next-Level Securi…
Time to Trade Up: Upgrade Your Legacy USG and Unlock a Powerful New Experience.
-
Recovery Steps for USG FLEX/ATP Series Application Patrol Signature Issue (Jan. 2025)
Symptom: The App Patrol signature release V1.0.0.20250123.0 may create parsing error on device for On-premises mode, application patrol daemon will not work well after updating this new signature though the rest of UTM features keep running. However, the worst case is that device may get stuck if device did rebooting…
-
Zyxel USG FLEX and ATP series – Upgrading your device and ALL credentials to avoid hackers' attack
Zyxel team has been tracking the recent activity of threat actors targeting Zyxel security appliances that were previously subject to vulnerabilities and admin passwords have not been changed since then. Users are advised to update ALL administrators accounts for optimal protection. Based on our investigation, the threat…
-
Important Reminder for your Content Filter Service
At Zyxel, we are committed to providing you with the most advanced and secure services possible. In line with this commitment, we continuously enhance our Content Filter service to ensure top-notch security detection from Trellix. To ensure your service running stable and efficiently, please upgrade firmware to the latest…
-
How to solve the issue "ZTP is already enabled" on VPN series?
Symptom: Unable to access the web GUI. Access the web GUI but the page "ZTP is already enabled" appears. The device is on-premises mode and never deployed using ZTP. Q1. What are the impact model and version for this issue? Affected model Affected version VPN50 5.00 through 5.36(ABHL2)C0 VPN100 5.00 through 5.36(ABFV.2)C0…
-
What should I do if the device failed to be upgraded to the latest firmware?
Please follow the procedure to upgrade the firmware Step 1. Make sure you have on-site local support that able to reach the device Step 2. Unplug all WAN connections. Step 3. Access the device via LAN IP. Step 4. Copy startup-config.conf to recover.conf. Download "recover.conf" to your PC. Step 5. Switch to standby…
-
Change certificate of a managed AP?
Is it possible to add a new certificate to a AP (WAX650S) managed by a USGFlex200? When I'm connecting direct to the AP, I will get a “not secure” message of the browser. I have added the cert and give the rights, but the browser says: This server could not prove that it is 192.168.xxx.xxx. Its security certificate is from…
-
Enabling "Community Zyxel Forum" to accept .tar.bz2 files
Hello everyone, if you try to attach a diag file from Zyxel products you get an error message: Please consider to allow to upload also .tar.bz2 files
-
config convert problem Flex500 -> Flex 500H
We tried to convert a config from a Flex 500 to a Flex 500H. It failed, we got the following error log. What could be the problem?
-
USG 200 firmware download
where can i get the firmware for USG 200 ?
-
ATP200, SFP to Lan Port?
Hi My Home Server is hooked directly to the SFP Port on my ATP. The ATP is the DHCP Server for a bunch of Virtual Machines. Now I have to move them somehow to an Server who is connect lets say Lan Port 1 (= P4). For that reason I set up LAN2 and under "DHCP Setting" I choose DHCP Relay and in "Relay Server 1" I put in the…
-
Best Practices for Managing VLANs on Zyxel Switches in a Small Business Network?
Hey everyone, I'm currently setting up a small business network and using a few Zyxel GS1900 series switches. I want to implement VLANs for better traffic segmentation and security (e.g., separating guest WiFi, VOIP, and internal LAN traffic). I’ve gone through some of the documentation, but I’d appreciate some real-world…
-
2FA - two factor authentication | Auto setting Authenticator
Hello, Good morning, I'm using a firewall with several local users, two-factor authentication has been activated (especially by email) and it works correctly. I was wondering, is it possible to allow the end user to independently create the authenticator (google auth) without an admin enter in user management to enable it?
-
UsgFlex700 freezes almost daily
Hello, I have 2 Flex700 configured in HA, they are used as edge firewalls to connect remote locations via routed IPSEC tunnels + sslvpn for a few remote workers. They currently have ~25 ipsec tunnels which is nothing comared to their datasheet. I've been having issues with them freezing almost daily (they go completely…
-
USG Flex - Save your startup.conf before updating to 5.40 !!!
Just updated our USG FLEX 700 from 5.39 ABWD.1 to 5.40 ABWD.0. After the USG has restarted, we noticed that different config changes from 2 days ago were not longer available! Don't know, which config the USG uses after the update and reboot - but not our current (latest) running startup config. Fortunately we've saved our…
-
USG Flex 700 - Password change recommendation window - cannot be disabled
We're just commissioning our new USG Flex 700 (v5.35 ABWD.0), taking-over all settings from our USG110. Lot of typing work since a converter from USG110 to USG Flex 700 is not available. But anyway, this is not the problem. On each login the USG Flex is showing a password change recommendation window which contains a…
-
Does SecuExtender work on iPads?
Does SecuExtender work on iPads? Has anybody brought it to work?
-
Allgemeine VPN Frage zur Zyxel USG 100
Hallo, für folgendes Szenario bräuchte ich eure Hilfe: Ich habe 2 Zyxel USG 100, die durch einen Site-to-site IPSec VPN verbunden sind, das funktioniert schon seit Jahren.Der Kunde möchte jetzt noch von extern mit einem Apple MacBook, mehreren iPhones und iPads ebenfalls per VPN ins Netzwerk. Ich habe ihm für das MacBook…
-
remote LAN access from VPN SSL
Good morning everyone. I configured a VPN SSL on USG FLEX 100. The IP range assigned to VPN users is this: 192.168.100.70-192.168.100.80. For the rest I think I left everything at default, for example in the VPN SSL settings in the NETWORK EXTENSION LOCAL IP item I left 192.168.200.1. From home I connect without problems…
-
Interpreting the DNS Threat Filter report
Please help me understand what the following report means and how I can fix the problem. The client IP address in the report is the address of our internal domain controller DNS server. It is set as the primary DNS address on the client computers. Both the endpoints and the servers have endpoint-side antivirus. Where do I…
-
Why all firewall freeze?
I have unfortunately purchased various Zyxel firewalls for my customer.From the VPN100 to the Flex H series, all updated and in various networks and different contexts. But they all have one thing in common: they crash. After a month or two months the network crashes, the firewall becomes unreachable and there is no other…
-
Where is all the documentation for SecuExtender?
I bit the bullet and bought licenses for MacOS and Win11. I use the StrongSwan for Android and the Win11 clients and settings created by the Zyxel firewall wizard, and they work automatically just fine. Now, I need to know where to look after what on the firewall, in order to configure the SecuExtender VPN client. Where is…
-
ZLD 5.x firmware development status
According to this page https://support.zyxel.eu/hc/en-us/articles/360005438274-Weekly-Firmware-Support-Version-Lab-Version latest pubblication of Lab Firmware for ZLD 5.x is dated november 2024, 1 month after 5.39P1, roughly 20 weeks ago. Is there a new way for access Lab Firmwares? Is Lab Firmware release suspended? Is…
-
Where to disable alert log for: "abnormal TCP traffic detected"
Presently lot of "abnormal TCP traffic with destination port zero" is detected, which caused an email alert log each time.Now I searched for the connected log settings where we could disable these kind of alert log. We found: Log & Report > Log Settings > System Log > Table "Active Log and Alert" and have disabled the…
-
Problem to connect ftp with 1990 port - USG Flex 100
Hello i'm try to connect an ftp server with port 1990 but not works. It works with statandard port and works if i connect form other lan not connect to firewall I not set any limitations form lan to wan Thanks
-
Can you please send me 404XZ0D0.bin - ZyWALL 2 Plus
Can you please send me a copy of latest firmware for ZyWALL 2 Plus which is apparently 404XZ0D0.bin in a PM ? Those boxes are not in production but for training for the junior IT students. Thank you, Marc Dumont
