-
How to do the migration Flex 700 to Flex 700H
-
USG Flex 200 and Google Authenticator for vpn
I have this machine, with ipsec vpns, and I would like to setup 2FA with Google Authenticator I saw this guide for USG Flex 500: https://support.zyxel.eu/hc/en-us/articles/360018356680-Firewall-Configure-2FA-with-Google-Authenticator-for-Admin-Access And in "step" 1 I see a page that shows "Google Authenticator". Instead,…
-
Wireless Clients List in DHCP Table Using Mgmt Vlan Interface
I have a USG Flex 700, GS1920-24 HPv2, and a Mist AP-41 on my network. I have 5 Vlans with Mgmt Vlan being 1 and 10,20,40,50 as the others. Each Vlan has a corresponding SSID on the Access point. My problem is when I connect any new wireless clients to the network, they always seem to connect under the Mgmt Interface on…
-
Trunk configuration
I have two WANs with 200MB Full each. How do I make it so that when WAN1 goes down, WAN2 goes up automatically? Do I need to configure something in routing besides creating the trunk? How do I create Trunk so it works this way? I'm using the USG FLEX 200 Thanks
-
Zywall 310 L2TP Over IPSec Destroying tunnel due to no connectivity to its peer within 121 secs
Trying to connect from Windows 10 using l2tp. IKE log says: Dynamic Tunnel [Default_L2TP_VPN_GW:Default_L2TP_VPN_Connection:0x3df3aee6] built successfully 35 sec later: ISAKMP SA [Default_L2TP_VPN_GW] is disconnected L2TP log (35+121 secs later): Destroying tunnel ID 11812 due to no connectivity to its peer within 121…
-
souci de connection VPN sur USG FLEX 100
Nous venons d'installer une fibre sur notre site qui est en SDSL, j'ai configuré un VPN qui ne fonctionne pas. Peut-on m'assister pour vérifier la configuration? Mon Numéro de téléphone est le +33629391255
-
How to set up Android 14 for L2TP via IPSec for ATP100
Hi, We use VPN on ATP100 using L2TP (IPSec). Everything still works on Android 12 and older. L2TP (IPSec) is no longer an option on Android 13 and 14. On Android 13 and 14, there is only IKEv2/lPSec MSCHAPv2, IKEv2/lPSec PSK and IKEv2/lPSec RSA. Which option for Android 13/14 should we select from the image?
-
Sending notifications via SMTP SSL @ port 465
Hello everyone, since a lot of time I have to send notifications using mailservers via port 25, not all of them have TLS support, a lot of mailservers have SSL support. You can see it in a USG60W: You can see the same on a Flex200H: Is there a plan to introduce SSL SMTP usage? Thanks a lot
-
Any VPN related issue in 5.39(ABWC.1)?
I am running an USGFLEX100W and after upgrading to 5.39(ABWC.1), my dynamic IKEv2 IPSec VPN is not working anymore. I thought it might be some configuration change, so I went back 2 months (I have weekly backups), but it still don't work. It don't work on any of the mobiles it used to, and the laptop I used to connect is…
-
increase IPS range
I need to increase my IPS range from 254 ips to 512, how can I do this configuration on the Firewall Flex 200? Would it just be changing the Subnet Mask to 255.255.254.0 and the Pool Size to 512?
-
Starlink and Ipsec
Hello, Actually we've got an Ipsec tunnel using 2 USG Flex behind fiber on each side. We would like to use a starlink (actually bypass mode) in case of fail of fiber on one side. How to handle starlink CGNAT ? Thank's for your help. L.
-
IKE service
Hi, Our analysis shows that the IKE service ( gateway) is clearly visible and can be used by attackers for reconnaissance and targeting. How can we make the IKE service not clearly visible ("hide") in ATP 200? I am waiting your answer
-
Network/NAT
I have a working IPSEC VPN between site1 and site2, so that lan1 and lan2 can communicate. I would like to map a public IP of site1 to a host of lan2. Setting up a virtual server from publicIPsite1 to site2hostIP and adding a route to site2hostIP via the VPN tunnel doesn't work. I suppose because the VPN tunnel allow…
-
How can I turn off the SSH login service in USG40?
-
Stampante di rete
ciao a tutti, ho un problema con la stampante di rete, espongo la configurazione: lan1 192.168.3.x /24 rete ufficio lan2 192.168.1.x /24 rete casa la stampante di rete è su lan1 ha ip 192.168.3.248 e dalla lan2 pc 192168.1.47 riesco a fare il ping entro in http://192.168.3.248 non compare tra le stampanti e se la collego…
-
arp spoofing
Bonjour, peut on désactiver les alertes arp spoofing ? merci
-
IPV6 VPN
Hello world, does anyone did a IPV6 IPSEC VPN ? I'm looking for an example or a guide. Many thank's ! L.
-
ROUTING
Good morning, I have an ATP200 with a vlan/dmz to which I connected a NAS that must be reached on the external IPs of the two WANs for the services on ports 80 443 and 10001, I created the NAT rules and the security policies I needed, from outside it works correctly! If I try to reach the device on one of the public…
-
Ransomware Helldown
Hello, Please comment on this article: https://www.truesec.com/hub/blog/helldown-ransomware-group We have Zywall firewalls deployed at all of our customers and two have already been attacked by Helldown ransomware.
-
USG20W-VPN FSCK message
When rebooting our USG20W-VPN router via the console port, I noticed this message: /dev/mmcblk0p7: UNEXPECTED INCONSISTENCY; RUN fsck MANUALLY. (i.e., without -a or -p options) I already used the reset button on the router and then reapplied a saved config file. The above error was still reported. How can I get rid of the…
