-
💡Duo Security Authentication Integration Guide
This discussion has been moved.
-
💬 Your Firewall Story Could Earn You $35 Across Two Platforms!
This discussion has been moved.
-
Secure Start with Zyxel x Tailscale 🎁 Get 6 Months of Tailscale VPN Free, Before Oct.!
This discussion has been moved.
-
[Trade-Up Program] 🔄 Time to Trade Up: Say Goodbye to Legacy USG, Hello to Next-Level Securi…
Time to Trade Up: Upgrade Your Legacy USG and Unlock a Powerful New Experience.
-
Flex 700 Remote S2S branches with same LAN IP (cannot be touched)
So fellas, I ran out of ideas. I have 2 S2S branches with the same LAN IP. So far I was unsuccessful with whatever NAT I tried on the central endpoint. What I am missing is that the Flex FW let me NAT a fake destination (one of the remote sites) match the tunnel and THEN does NAT - like any other FW I know. e.g. my real…
-
L2TP MacOS guides are up to date?
I've searched procedures/guides to configure L2TP connections between ZLD 5.x devices and MacOS computers. I found these… https://mysupport.zyxel.com/hc/en-us/articles/360005956720-Configure-L2TP-VPN-client-on-macOS…
-
L2TP connection fails with Mac OS Ventura, but works with windows
I'm trying to connect via L2TP VPN a MacBook with Mac OS Ventura (13.4.1) fully updated. With the same zyxel-device username, Windows 10 works without issues. With Mac OS, both OS and firewall tells me that username and password are uncorrect, however they are. Device is a fully updated (5.37) USG Flex 100 W. For creating…
-
IKEv2 connection with Windows 11 native client
Dear Community, I tried several settings derived from several articles in this forum, but nothing worked. In the end, this is the state: I created a dial-in connection for IKEv2-Clients using the wizard built into our ATP500. Whenever I try to connect, I receive "server not responding". Using the same setup to establish a…
-
How to run two IKEv2 tunnels (full + split) on the same router?
We have external staff accessing company resources via smartphones and laptops. Previously we used IPSec IKEv1 tunnels, but now we’re moving to IKEv2. Smartphones are already set up with an IKEv2 “all traffic” tunnel (EAP auth with username/password, config payload works fine). Now we want laptops/PCs to connect via IKEv2…
-
add more blocked countries
I am only allowed to add 10 BLOCKED countries in country restrictions on USG LITE 60AX
-
how to create vpn ssl with client openvpn
-
Starlink as failover on USG flex 100 H
Hi all, One of our clients has recently invested in a Starlink. We are wondering if anyone has attempted to setup a Starlink as a failover connection on a network where there is a server running DNS and DHCP on a USG Flex 100H Firewall. Kind regards, Luke Archbold.
-
Fw: Bug Firmware V5.42(ABUH.1) / Zyxel USGFLEX 100
Hello, Except my mistake, I would like to inform you that there is an email notification bug since the new Firmware Version V5.42(ABUH.1) / 2026-02-08 02:18:35 update, affecting only the USGFLEX 100 model. The USGFLEX 100W model does not have this issue ! Specifically, when I receive emails, the sender and recipient…
-
Recovery Steps for USG FLEX/ATP Series Application Patrol Signature Issue (Jan. 2025)
Symptom: The App Patrol signature release V1.0.0.20250123.0 may create parsing error on device for On-premises mode, application patrol daemon will not work well after updating this new signature though the rest of UTM features keep running. However, the worst case is that device may get stuck if device did rebooting…
-
VTI Tunnel UP but LANs cannot communicate: Need help with Policy Routes and Security Policy order
Hi everyone, I have successfully established a Route-based VPN using VTI between an ATP200 (Hub - Anzi) and two spokes (ATP500 - Potenza and USG60 - Venosa). Current Status: All VTI tunnels are UP (green lights). I can successfully ping the remote gateway's LAN IP from the local gateway's diagnostic tool (e.g., ATP200 can…
-
Double Auth certificates for SSL VPN on USG FLEX 200H
Hello, I'm facing a persistent issue with a 3rd party SSL certificate (Gandi) on my USG Flex 200H. The Setup: Certificate: Signed by Gandi (DigiCert Global Root G2 chain). Status: I have successfully imported the Intermediate and Root CA in Trusted Certificates. Under My Certificates, the status is now OK with a complete…
-
809 Error/Tunnel Swapping with IKEv2
Hi there, we are currently running Client2Site Tunnels over IKEv2 using the integrated Windows 10 VPN Client which works fine for the most Part. But whenever I change something on the IKEv2 Tunnel (for example IP Range) I get 809 Errors from the Windows Clients (iOS works fine) and have to reboot the firewall to make it…
-
Any idea why we can't receive traffic from a few specific IP addresses
I am having an issue on my FLEX 500 (up to date on latest firmware and signatures). We have an SSTP VPN behind the router and 2 people out of all our users can't connect anymore. They had been able to connect for more than a year without issues. I have tried disabling security services and creating rules to allow them to…
-
FLEX H Firmware Boot Issues
There is a security flaw in the current firmware of my device (and most probably other devices of this series). When the device is rebooted, the configuration on the interfaces is applied and for round about one minute, the configured Firewall rules are not applied. I realized that when rebooting my device with service…
-
USG FLEX 500 speed
we recently change our firewall with an USG flex 500 But we encounter a speed problem we have several internet lines all are for 500mb/sec but the speed sees the line has a very low upload speed. This is not a performance of the line if we test with a different router the speed is correct someon eknow how to solve it ?
