-
Forticlient VPN thru USGFLEX50
Hi everyone. I need to let my notebook connect to an external VPN on a fortigate via IPsec (FortiClient IPsec). Everything works fine except for being at office where my USGFLEX50 seems not to let me connect to the external fortigate. Obviously my notebook has no filters outgoing and I can see IKE packet ougoing correctly…
-
NAT rule "allow remote IP" on USG LITE 60AX no subnets?
First go around with the USG LITE 60AX. NAT rules "allow remote IP" doesn't seem to support a subnet, only a single IP (unless I'm doing something wrong). Is the only option to leave it at Any, the create firewall rules to limit allowed inbound subnets? Do NAT rules in this case also implicitly create the matching firewall…
-
USG Flex 200 Connectivity Check
Any documentation on running connectivity check from the command line of the device?
-
USG Flex 100H and GS1920-24HPv2 VLAN and LAG Internet speed issue
Hi, USG fw: V1.35(ABXF.2) Switch fw: V5.00(ABMI.1) I've configured everything needed: separate zones (not using existing LAN zone), VLANs, policies, configured LAG (LACP) on 3 ports and connected to switch. Everything seems to be fine, however, after that I decided to test Internet speed using services like speedtest.net…
-
SSO agent still using dangerous NTLM
Microsoft deprecated NTLM a long time ago, SSO agent still do not support kerberos. This is a security issue, any plan to address it? Ticket 481177, 456941 and 417559. Regards.
-
Zyxel, I paid SSL Vpn service, give it me back!
Bought a couple of Usg Flex 500 on July 2024, I need SSL Vpn and Flex 500 support 150 SSL Vpn connections. Two months later Zyxel announced that SSL Vpn are discountinued with no advance notice, now I have dozens of users using unsupported SSL Vpn. IPSEC Vpn are not an option for us, I bought and paid Flex 500 because it…
-
A valid website is being incorrectly identified as a phishing site by Threat Filter
A business website (a bank) is being identified as a threat by the threat filter. I have verified with the bank that the IP address is correct and valid. I have entered the web address in the allow list. Is there a process for submitting website to get the items removed that are incorrectly in the Zyxel database of threat…
-
Site to Site VPN with Dynamic DNS
hi, I have been able to set up site-to-siten VPN with dynamic DNS to the point it almost works. My problem is that for the other site I am not able to set the public address as WAN address. The operator makes a NAT that I can't do anything about. Is there any way to tell the VPN to use Dynamic DNS for the local IP address…
-
How to configure parental control, with allowing youtube
-
Port 5060 is blocked?
Hi I set a rule in my ATP200 to allow VoIP Traffic from WAN to the IP Pbx. When I look into the Logfile I see → Wan IP Phone to WAN IP Router : 5060 ACCESS BLOCK. I dont know why? I the rule say I allow the traffic?! Thanks
-
USG Flex 200 and SSH commands
Is it possible to send commands to the USG 200 via ssh? The use case is to activate and deactivate easily Security Policy and time schedules. I have tried it with putty and plink.exe, but it didn't work: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (Using username…
-
DC over site-to-site IPSEC
Hello, For a small remote office, we mounted an IPSEC VPN with the main office (USG Flex at both side) We can join the domain, logon… etc But for PC with W11Pro 24H2 we got problems: after logon, search bar, flux on widgets menu and other does not run normaly… it's very very slow (search bar is filled after many minutes…).…
-
Can you please send me 404XZ0D0.bin - ZyWALL 2 Plus
Can you please send me a copy of latest firmware for ZyWALL 2 Plus which is apparently 404XZ0D0.bin in a PM ? Those boxes are not in production but for training for the junior IT students. Thank you, Marc Dumont
-
The L2TP connection attempt failed
Hello I have an USG40 firmware V4.35 I followed the instructions as in https://businessforum.zyxel.com/discussion/456/how-do-you-configure-l2tp-vpn-between-zywall-and-a-windows-7-laptop#latest and https://businessforum.zyxel.com/discussion/618/how-to-use-the-vpn-setup-wizard-to-create-a-l2tp-vpn-on-the-zywall-usg#latest…
-
Possible or not? 1USG20W-VPN together with a Zyxel AP,so that end devices seamlessly roam same WiFi
Hello, I have an USG20W-VPN, and its WiFi6 is not enough to cover all the intended areas. Now, I evaluate an additional Access Point with WiFi7 and WPA3 to extend the wireless access where is needed, namely an NWA50BE Pro. Now, I haven't received yet the new AP, but I assume that it will cover the existing area better, so…
-
Can You pls send me firmware of ZyWALL 2 Plus... Thank You!
-
how to disable vpn
-
Creating LAN2 with USG20 VPN stop trafic on LAN1
I am probably missing something if you could help me I have an USG20 VPN working fine for years. Last week we have activated LAN2 by choosing is port. From then we can not go to internet from LAN1. But if we go back to all port on lan1 sometime it works fine again. I do not understand the 'sometime' way of working… I have…
-
USG FLEX 50AX Wifi
Hello, When devices are wired to the USG, they got an IP (DHCP was enabled). But when we try using Wifi, they didn't get IP… Why ? Many thank's L.
-
How to implement failover on VPN connection ?
Hello, I want to set up a failover between two VPN connections, so when one of them fails, I switch automatically to the second one. I tested the use of VTI with a dedicated trunk. It worked once, but I saw that I had to create new firewall rules for the subnet that tests the connection between remote VTI interfaces. I…
