-
USG20(remote) No lan access over L2TP from my home network
Hi all, first of all i am proud to be here. This is my question. I must configure a l2tp vpn for a client (remote vpn) with a USG20-W. No problem at all i can connect to their VPN from everywhere. But i have a problem accessing remote local network. HOME(192.168.1.0) ->BBOX-> INTERNET -> LIVEBOX (192.168.1.1) ->…
-
Setting up 1:1 NAT as default NAT on WAN trunk, on a ZyWall USG2000
We have a ZyWall USG2000 as main NAT router in a medium sized condminium, like 300 clients. The default NAT style for the WAN Trunk is Source NAT, which isn't Full cone NAT and, for gaming, Full cone is what we need. As far as I can see, what is referred to in the 3.30 FW manual as 1:1 NAT is actually Full cone. So HOW do…
-
Sometimes no VPN connectin possible
sometimes if i make a vpn l2tp connection with my usg 1000 , the client connects , but after logout en trying to login again it fails , this happens every time after a succesful login. after 3-4 attemps it seems not possible to login again on the same internet connection, if i switch to another internet connection i can…
-
Http-server
Hi! If I have a WAN with DHCP (single ip) and a DynDNS running and want to have a http server on Lan2 that everyone can access from internet, can I do that with a USG 110? if so..., can anyone please explain how ;-) Br Matias
-
pre-buy: choosing USG20 or USG40?
As I cannot reach Zyxel in any "live" way (chat or phone) I must ask here my question. Depending on the reply, I will buy (or not) a Zyxel product. I also sent a request for a local dealer for Zyxel, two weeks ago, but... no answer from Zyxel. So I hope some of you could help me with a few questions! I thank you in advance…
-
ZyWALL USG 100 and VPN tunnel to MS Azure
Hello. I'm trying to setup VPN tunnel to MS Azure. Everything was gone by this article https://kb.zyxel.com/KB/searchArticle!gwsViewDetail.action?articleOid=015536&lang=EN . However, I'm getting errors during connection(see attached screenshot). One of the errors means that Phase 2 cryptography is wrong, but I've tried all…
-
static route?
Hi guys, I'm a bit of a network newbie, using a USG60. I have following question: I have a server (internal fixed ip-adress) that we will be using for a VPN connection towards a customer based on a fixed IP-adress. On my USG60 router, the WAN port 1 has received the fixed IP-adress. My WAN port 2 has a variable IP address…
-
Reboot and Schedule option ?
Is there any possibility for Zyxel to bring back the "Maintenance" -> "Reboot" option, under Maintenance folder. I know it was there before but was moved to the "firmware Management" page. It works but the problem is you could, by mistake, select the wrong firmware and hit reboot button. I want it back the way it was, just…
-
zywall don't see vpn lan
Hi all. We have 2 ZyWall USG 1100. Configure ipsec vpn. On 1st lan 172.20.0.0/20, 2nd 172.20.16.0/21. Clients work fine, but zywalls don't see vpn lan. How i can fix it?
-
fqdn in policy rule in zywall 110
is there a way to set up a policy to allow one or more Fully Qualified Domain Names (FQDN) through the firewall? i.e. instead of setup up a bunch of specific ip addresses which may change from time to time, I'd like to specify a set of FQDN's. #Biz_Security_November
-
Zywall USG 1100 captive portal not showing up on iOS devices
Hello! Here is a tricky question. We configured a Web authentication on our Zywall 1100 so that we could authenticate clients from a specific network (Wi-Fi) using external Radius server. It works great on Android devices and when you connect to Wi-fi and try to open any page using http. It redirects correctly to…
-
Problems port forwarding on USG20W VPN
I am no super techie, but I have enabled port forwarding on many residential style routers in the past but the interface for the USG20W VPN has stumped me. Here's my scenario. Essentially I would like to forward port 22 to a device on my internal LAN at 192.168.1.34. I have a VDSL Modem, and the Zyxel is configured for…
-
SSL File sharing
Hi again, new user here, spamming posts :) I investigate the SSL file sharing as a replacement for an FTP server as we could use it with AD integration. I manage to get the download to work, but not the upload. I have assigned write permission on the cifs share. Are there other permissions that need to be set on the file…
-
Problem BankID safety program
Hej, when upgrading the firmware for our USG60 from V4.15(AKKY) to V4.20 we run into connecting trouble when using the Handelsbanken Bank ID software. Error messages was very often connection lost. We got help with a special update to 4.20(AAKY.2)ITS-WK15-r7714. When now updating to the latest firmware version…
-
SIP register unsuccessfull
Hi, I have some trouble with SBG3600 which have two WAN interfaces in use (LTE and ETH). I set forwarding policy - all traffic from my SIP server (3CX if it's relevant) goes through ETH WAN. It works for most of the time but sometimes all SIP trunks unregister. I still have www access from this server but PBX don't receive…
-
[USG20] Turn off unused device ports
Does anyone know how to turn off unused ports? For example, we don't use SSO (port 2158) or DNS (port 53). The web GUI does not have a checkbox to Enable/Disable the service. Another example, we don't use FTP (port 21). The web GUI has a checkbox to Enable/Disable FTP, but it does not turn off port 21. Any assistance is…
-
View activity on address objects
Hi, We've got an api that creates address object and places them in an address group which has a NAT rule. What I would like to know is if its possible to view which address object that are hit within a certain range of time. So is it possible to pull this information out of the Zyxel USG1100? Since the device only handles…
-
USG60 admin password expiration date
Hello world, I'm wondering if that is possible to set the scheduled password expiration time of administrator account on Zyxel's USG60 control panel through the webpage? Or could anyone share the console script that I could use? I need to set the reminder every 30 days and force it to change the password 'at next logon'. I…
-
new Zyxel products, need info on setting up basic config in a domain env(server has static ip)
Hello - Can someone give me basic how to on configuring the USG20 in a small bus environment ? current set up 2008 Server DC static ip Comcast Cable modem ==>Netgear firewall configured by previous IT guy, don't know password to get into it - It is giving DHCP to clients - this connects to unmanaged switch that 2008 server…
-
Geo IP
I'm playing around with Geo IP, to block traffic from certain countries. Do you need to setup an 'Address Rule' based on GEOGRAPHY for every single country you would like to block? Or it there a 'thick box' functionality hidden somewhere. It's a bit of a time consuming exercise to create every single country you would like…
