-
Does SecuExtender work on iPads?
Does SecuExtender work on iPads? Has anybody brought it to work?
-
Allgemeine VPN Frage zur Zyxel USG 100
Hallo, für folgendes Szenario bräuchte ich eure Hilfe: Ich habe 2 Zyxel USG 100, die durch einen Site-to-site IPSec VPN verbunden sind, das funktioniert schon seit Jahren.Der Kunde möchte jetzt noch von extern mit einem Apple MacBook, mehreren iPhones und iPads ebenfalls per VPN ins Netzwerk. Ich habe ihm für das MacBook…
-
remote LAN access from VPN SSL
Good morning everyone. I configured a VPN SSL on USG FLEX 100. The IP range assigned to VPN users is this: 192.168.100.70-192.168.100.80. For the rest I think I left everything at default, for example in the VPN SSL settings in the NETWORK EXTENSION LOCAL IP item I left 192.168.200.1. From home I connect without problems…
-
Interpreting the DNS Threat Filter report
Please help me understand what the following report means and how I can fix the problem. The client IP address in the report is the address of our internal domain controller DNS server. It is set as the primary DNS address on the client computers. Both the endpoints and the servers have endpoint-side antivirus. Where do I…
-
Why all firewall freeze?
I have unfortunately purchased various Zyxel firewalls for my customer.From the VPN100 to the Flex H series, all updated and in various networks and different contexts. But they all have one thing in common: they crash. After a month or two months the network crashes, the firewall becomes unreachable and there is no other…
-
Where is all the documentation for SecuExtender?
I bit the bullet and bought licenses for MacOS and Win11. I use the StrongSwan for Android and the Win11 clients and settings created by the Zyxel firewall wizard, and they work automatically just fine. Now, I need to know where to look after what on the firewall, in order to configure the SecuExtender VPN client. Where is…
-
Where to disable alert log for: "abnormal TCP traffic detected"
Presently lot of "abnormal TCP traffic with destination port zero" is detected, which caused an email alert log each time.Now I searched for the connected log settings where we could disable these kind of alert log. We found: Log & Report > Log Settings > System Log > Table "Active Log and Alert" and have disabled the…
-
Problem to connect ftp with 1990 port - USG Flex 100
Hello i'm try to connect an ftp server with port 1990 but not works. It works with statandard port and works if i connect form other lan not connect to firewall I not set any limitations form lan to wan Thanks
-
USG FLEX 500 FIREWALL FREEZES AND REBOOTS
I'm having issues with two USG FLEX 500s in HA (High Availability). Every 2 to 4 days, they freeze (PWR+SYS LEDs off and port LEDs blinking)." The tests I have performed are: Shut down the passive firewall and leave only the master active. Shut down the master firewall and leave only the passive one, promoted to master The…
-
Zyxel USG Flex series - any way to send DEBUG system log through e-mail?
Is there any way to send DEBUG system log through e-mail? No option in the settings, only NORMAL and ALERT.
-
Nebula GEO IP Blocking
In Nebula if you wished to use the GEO IP Blocking feature, it used to restrict you to only inputting 10 countries per rule. However I am now finding that it allows me to add more than 10 countries in a sigle GEO IP Filtering rule. Has the 10 country limit been removed entirely? Or has it been raised to a higher number of…
-
no link in P1 port, in Flex200H device
Our company has a Flex200 firewall, and the service provider device is FiberHome AN5506-02-FG GPON Modem Router (configured PPPoE connection). We receive a Flex200H device for testing, to which, if we replace our own device, there is no link on anymore the WAN (P1) port It is plugged into any other device there is physical…
-
IPSec sessions on the firewall not terminated after a while of being idle?
I have the following scenario: I manually connect with a device (smartphone or notebook) and via IPSec VPN client (the ones generated by the USG-20W-VPN), StrongSwan resp. Win1x Client from outside. Now, when I take the device(s) again in WiFi range, they reconnect to the WiFi ergo the IPSec tunnel is not used anymore.…
-
USG Flex - extending a broadcast domain for WoL magic pakets?
We have running a server in one subnet, which is able to send magic WoL pakets into the own subnet in order to wake-up computers. Such magic paket will not be routed into other subnets. But now we've extended our network with an additional subnet (VLAN) and would like to wake-up computers from that new subnet as well, but…
-
USG110 upgrade
-
Routing public class c over VPN Tunnel
Hello, Here is our setup. Location A has public class C (1.1.1.0/24). Location B has a single public IP. Loc B has internal IPs 192.168.5.1/24. Both locations have ATP800 and are connected to each other VPN tunnel. Loc A vti IP 10.10.20.10. Loc B vti IP 10.10.20.20. On Loc A ATP, we have policy route to route 1.1.1.5 -…
-
multiple site to site vpn accessing the same resources.
This is not the typical vpn access that i usually setup and it has me a bit stumped. I have a site to site vpn that was setup to access a set of devices on the network. I'll try and explain this best I can. ips are just examples and there are 4 devices that need to be accessed. VPN-1 Site A (devices vlan…
-
USG Flex - VPN Logins into different subnets possible?
Hi guys, Before I dig deeper into the manual … Is it generally possible to have different VPN configurations to different subnets/VLANs simultaneously active on an USG Flex? Presently we've got two configurations active, one SSLVPN profile and another IPSec profile. The corresponding profile is automatically chosen…
-
wildcard in whitelists (on-premise)
Hello folks, Are there wildcards that can be used in Web Content Filter —> Trusted Web Sites and in DNS Content Filter —> Allowed sites ? for example *.google.com works with any 3th level domain? I refer to ATP / USG Flex Series, don't know if there are differences in H series Searched a little bit in the community but did…
-
¿falso positivo?
¿es correcto el bloqueo de url2319.nexa.pro ? 2025-05-02 10:58:55warnURL Threat Filterurl2319.nexa.pro:Malicious Sites, SSI:N 192.168.xx.xx:63085 167.89.123.90:443 ACCESS BLOCK 2025-05-02 10:58:55warnURL Threat Filterurl2319.nexa.pro:Malicious Sites, SSI:N 192.168.xx.xx:63073 167.89.118.61:80 ACCESS BLOCK 2025-05-02…
