Security - Zyxel Community

USG FLEX H Series
Security Ideas
Your ideas could be new features for Security!

KPN IPTV via Zyxel USG 110
Is there a step-by-step configuration document available to configure a Zyxel USG device for KPN IPTV? I have tried to configure my USG but form some reason the STB (Set-Top Box) fails to get a good connection with KPN IPTV. What have I done: created a PPPoE connection via VLAN6 created VLAN4 for IGMP communication I have…
[ATP/FLEX] Full guide to set up Palworld Dedicated Server with Remote Access VPN on USG FLEX
This discussion has been moved.
All LAN interface faulty before reboot
Hello, Strange thing since 19/01 and this morning. Our USG60 is facing a problem. Firmware is up to date. Secureporter is inactive. 19/01: All LAN interfaces stopped working for apparently no reasons. (No power outage or things like that). Wan loop is OK (internet, remote access to web administration). Lan loop is KO. All…
USG20W-VPN - Is there an integrated AP I can use to connect e.g. my smartphone to WLAN?
Hello, I just bought an USG20W-VPN. In the adminbackend I configured the Wireless Built-in AP. Configuration → Wireless →Built in AP. Although I set the AP to broadcast SSID (2.4G) I am not seeing this AP on my smartphone. So this leads me to the question, if I misunderstood, what the USG20W is capable to. Is it possible…
WLC (wireless Lan Controller) built into the USG Flex 700?
WLC and LWAPP are these part of the USG Flex 700? I want to setup roaming ssid wifi, I want to use our USG F700 and wax630s APs. What more would I need?
Add a contact person today, Two is better than one!
Two is better than one To avoid missing important notifications and announcements, we recommend using a non-system email address for communication. This ensures that the recipient receives critical system information and updates promptly and accurately. How to add an alternate contact person? Sign in to your account at…
USG20VPN with V5.37 wont't accept IPSEC VPN
Hello everybody, I updated my Firmware from 5.36 ABAQ1 to 5.37 ABAQ1. Since then I can't connect with my mobile equipment via IPSEC VPN anymore. Log always says Default Route is blocking inbound UDP500. The weird thing is, when I downgrade to 5.36 again, everything runs fine without any change of settings. Help is kindly…
RADIUS: Rejecting User
We have a zywall 1100 and I am trying to configure it for client VPN access. The log is showing RADIUS: rejecting the user "username" however we don't have a RADUIS server configure. The authentication method is set to local and the username is configured locally on the firewall. I can't understand why there is a radius…
www.goooooooooooooooooooooooooooooooooooooooooooooooooooooooooogle.com
Hello community! We use to configure ATP firewall on-premise and we use to activate all the 3 features of IP reputation (IP reputation, DNS filtering, URL filtering). Since 5.37 ABPS.1 we are receiving many many alerts everyday from different managed firewall (different organizations, different devices) like this one:…
Connection between LANs without Gateway
I have the following network setup: Device B needs to connect to Device A, but no other device from either switch may connect to any of the devices on the other switch. Device A and Device B are on completely separate networks with their own firewalls/gateways. I can connect a USG20 device to both switches, LAN1 to Switch…
VPN Client-to-Sient doesnt work anymore ATP 500
Hey, since last friday our client-to-site vpn doesnt work anymore. A site-to-site vpn still works without any problems. Its a IKEv2 Connection. Without any configuration changes this connection stopped working. The windows event error is: 20227 error code -2143157998 ATP 500 event log ist attached.
Flex 500 - License upgraded but device does not load the new license
Hello, yesterday we updated the FLEX 500 License to Gold Security Pack via myzyxel.com The license is displayed correctly, however on the device the License does not upgrade - it still shows the old expiration date and functions like Sandbox are not available. I tried with "service license refresh" button but no change…
vpn zywall secuextender
Hello for a while, I can no longer connect with the zywall secuextender 4.0.5 software in VPN on usg50 flex routers (5.36) and on usg20 (3.30 (BDQ.9)ITS-WK48-r74988 / 1.17) you have a an idea ?
Android 12 and ikev2
Hi everybody, I'm looking to find a way to get Android 12 clients connected using IKEv2 mode instead of L2TP. I've tried this, which seems to be quite easy, but It didn't work: https://support.zyxel.eu/hc/en-us/articles/4411498192914 Any suggestions ? Regards Agor
DNS resolution over VPN Ipsec from windows
Hello, My VPN connection working. I have a problem with dns resolution: My server : SERVERDATA.DOMAIN.LOCAL = 192.168.5.10 Ping 192.168.5.10 : ok Ping serverdata.domain.local : ok ping serverdata : not ok Inside network it works. I prefere do not enter manualy the dns sufixe in windows 11. In my zyxel i have a forward zone…
Hotel guest accounts creation for captive portal authentication
Hello, I have configured a captive portal web page to authenticate users who want to connect to the internet. Where do I create users and passwords in bulk for guests who want to use the internet based on the number of days they will stay in the hotel
HA not working
Hi, I'm trying to setup HA with two ZyWALLs 110. Each of them is using a different PPPOE WAN connection which utilises VRRP on ISP level. I've configured HA using the ZyXEL guide (for most part) but i cant get it to work. When i click on "sync now" in the web-ui of the backup device it says "No progress" after which it…
Port 80 foward
Hello, i have some ports to open but the 80 give me a problem. I have set the foward, i change the default port on system→www→http but the ports not work, Some helps? Thanks
Info problem with sending logs to zyxel vpn100 email
Good morning, I have a Zyxel VPN 100 firewall product and since this morning I have no longer received the email containing the various logs. How can I solve it? The configurations are all correct and no firmware update has been done. I await feedback. Thank you, Greetings
Gateway between 2 networks
As a beginner in network configuration, I would like to isolate one or two machines (Linux/Windows) from my production network. To do this, I connect them to my USG60 on the DMZ network (port 5, 192.168.3.1 255.255.255.0). My production machines are on port 3 (192.168.10.4, 255.255.255.0). The idea would be to create a…

Welcome!

It looks like you're new here. Sign in or register to get started.

Security Highlight

[2025 June Notification] SecuExtender Perpetual Version Vulnerability
Dear Valued Users, We would like to inform you that the SecuExtender VPN client with the perpetual version IPSec_3.8.204.61.32 will soon be removed from our official website due to a reported security vulnerability related to legacy Windows 7 environments. Under certain conditions, this vulnerability may allow unauthorized…
[2025 Jun. Tips & Tricks] Stop Misconfigs Before They Happen
🛡️ Security Best Practice Firewall misconfigurations often cause security gaps. Security Best Practice is a smart assistant built into your firewall that guides you through critical security settings from the start, preventing common mistakes. 💡 What is Security Best Practice? It proactively reminds or enforces key…
[2025 June Spotlight] “No IT? No Problem.” – How 20 Stores Got Secured with Nebula
🚩A familiar challenge for growing businesses If your company is expanding into multiple branches—but your IT team isn’t—then you’re likely facing the same growing pains many small and medium-sized businesses (SMBs) do. Whether you're running retail stores, service hubs, or regional offices, managing security and…

View All