-
GeoBlock
Hello all, i have testing the geoblock feature, now one thing, is it true that you can only block or allow 10 countries? i have block some countries, but now when i want to add some, i can´t change it, is there any other option for this rouleset?
-
abilitare antimalware
Buongiorno, ho appena acquistato il firewall flex 100 ax tutte le licenze sono abilitate. Non capisco come posso abilitare l'antimalware sul mio firewall, non leggo nessun profilo antimalware. Potete gentilmente aiutarmi nella configurazione. Grazie! Saluti Roberto
-
Secondary Wan Port (IPTV)
How can I configure a secondairy WAN port. On my current router, I get the IP address of my ISP but I also added a secondairy WAN IP for IPTV with option 60 IPTV_RG. With this router (USG Lite 60AX) I cannot see that option. I want to use this router for the internet connection as well as for routed IPTV. I do have now a…
-
flex 50
hi, I've a problem with the my device. I've follow a toutorial But my pc connect with my phone's hostpot, the connection fall_off. Somebody have a idea?
-
How to port forwarding on an USG LITE 60AX
I want to replace my current router with then router 'USG LITE 60AX', but then I need to be able to forward ports coming in to different internal IP addresses and ports. For example, port 25 needs to be forwarded to a mail-server en port 80/443 to a web-server. It can also be that I get traffic coming in on port x should…
-
VPN Ip Sec
Hello everyone, I have configured Vpn IpSec Client To Site on a USG FLEX 200, open tunnel but the only resource I reach is the firewall on the correct remote subnet, any other device on the remote subnet is not reachable... Can you tell me where the problem is? Thank you Antonio
-
VPN50 to Flex 100 migration
Hello, VPN 50 is a end of life product. Is there a migration tool for VPN50 to Flex 100 config?
-
Usg Flex 700-200 Access point controller disconnection, VPN tunnel failures
326 / 5,000 Greetings,😀 I have a usg flex 700 with firmware version 5.38 installed, I noticed that after the update, very often the APs managed by the controller are lost, VPN tunnels fall. It seems to happen completely randomly, but every day and even several times in the same day. If necessary I also have the diagnostic…
-
SNMP autodiscovery leads to several interfaces, which is which?
I used PRTG to do an autodiscovery of a USG Flex 500, it made several sensors but how to know which one is tied to which port? vs. interface? vs. vlan? vs. zone? lo, which I assume was loopback and not important to me so I deleted that sensor eth_base eth_base1 eth1 eth2 eth3 eth4 eth5 eth6 eth7
-
Routing to a dynamic IPSEC tunnel
Hi all. I've been banging my head on this issue and i think this is the right moment to ask for help. This is the network topology SITE B 192.168.172.0/24 =Dynamic IPSEC===⇒ SITE A 192.168.171.0/24 ⇐SSL VPN client 192.168.32.50 Site B USG110 V4.73 (behind a Starlink router) Site A USG FLEX200 V5.38 SSL client secuextender…
-
myZyXEL.com An SSL error has occurred
Hi , Since yesterday i'm getting error: 76 2024-05-21 09:09:12 error myZyXEL.com GetTimeZone: Can not get correct feedback from server 77 2024-05-21 09:09:12 error myZyXEL.com An SSL error has occurred and a secure connection to the server cannot be made. 78 2024-05-21 09:09:11 notice myZyXEL.com GetTimeZone: Processing...…
-
View .zysh schedule rules
I have a VLAN with default no internet access. But sometimes, manager wants to enable it, so I gave him a script with Putty which logs in automatically in his FLEX 200 and disables to deny VLANXX to WAN rule. He can enable the rule again also. So far so good. But to be sure that he doesn't forget, I want to schedule the…
-
Is my ISP wrong? Nat inside
Hi there, just a noob networking guy, tryin' to learn something. Here's my scenario. I need to reach from the external of my building, through public ip X, an internal LAN2 address —→ 10.0.0.241:9000 Modem router address is 10.0.0.1 - Firewall WAN port is 10.0.0.241 as isp requested Modem router i think got NAT rule Public…
-
USG20W-VPN FW:V5.38(ABAR.0)
Hi, I have a problem with the firewall in question, I renewed and activated the content filter subscription, but it doesn't work. Client browser 192.168.1.2 does not block yahoo.com and filters. Thank you
-
Port role for LAN2 causes network loop
USG FLEX 200 V5.38(ABUI.0) I may have to do a part draw out part of the network if needed but when I have LAN2 for Port role on FLEX 200 to the WAN2 of my Zywall110 it causes a lockup of zywall110 but if I unplug LAN1 on either FLEX 200 or Zywall110 the problem does not happen. BUT if I use reserved for Port role on FLEX…
-
SCR 50 AXE trial license expired
hi My trial license expire on my SCR 50 AXE, will the device still block threats?
-
Dual WAN IIS Setup
We have a customer with a ZyWall 110 that has 2 ISPs, coax for primary with a block of 5 IPs and cellular for backup with a single static IP. They host a server on site that uses one of the secondary IPs in the coax range for communication (hosts IIS, mail, etc.). We also need to set this up so that at least the web ports…
-
SCR50AXE and Stop mail fraud & phishing
When "Stop mail fraud & phishing protection" is enabled, it interferes with the operation of the Speedtest application. The app has trouble finding a server and is very unstable. The logs also show information about blocking servers related to the speedtest application.
-
VPN to USG LITE 60AX behind AVM FRITZ!Box 6890 LTE not working
Connected to German Telekom VDSL with a public IP port forwarding is working but no VPN access. Everything is forwarded to the USG via Exposed Host (IPv4 + IPv6), but StrongSwan always responds with received NO_PROPOSAL_CHOSEN notify error: Jun 23 12:43:06 00[DMN] Starting IKE service (strongSwan 5.9.13, Android 14 -…
-
USG110: P12 Certificate "errno:-17011"
Hi, I try to import a new P12 certificates, which works for years. Now the "import" under "certificates" gets error 'error -17011'. "errmsg: PKI certificate type is not supported". I can validate my p12 file with openssl, so the file is fine.
