-
Getting DNAP Packet DROP trying to NAT in a Zyxel - Here's the trick
This had me stumped for a bit. I have an HTTPS service that needs to be accessible from the outside. But the server is setup with the standard port 443. Since that's used elsewhere, we setup a 1:1 NAT Rule for port 7443 → port 443 and setup a firewall policy that was basically this: From: WAN To: DMZ IPv4 Source:…
-
ddns
Dear all, by configuring ddns on a Zyxel FLEX 100 I get following errormessage: "Update the profile my_dyndns has an unknown result." Does anybody know what this could be? I tried 2 versions: dyndns24.ch and no.IP. Thanks in advance Regards Heimo
-
Flex 700 Guest Vlan Isolation
I have 8 vlans on my GS1920-24HPv2 switch (1,10,20,30,40,50,60,70), with 70 as my guest vlan that are connected to the USG Flex 700 as subnets. I want to isolate vlan 70 (guest) from all other vlans and only allow it to access the WAN. What is the easiest way to set up security policies to block all traffic to the other…
-
USG 110, remote install printer (autodiscover problem)
Hello, has anyone solved the problem of remote printer/copier installation - when connecting via SecuExtender is not found device installation program (autodiscover)? I can manually add the printer and add IP adress printer. I enabled ports on the firewall: according to table 3 here https://www.cups.org/doc/firewalls.html…
-
My USG210 reboots automatically
hi, I'm a Zyxel partner, and one of my clients has a USG210 running ver 4.73(AAPI.1) He says that the USG210 sometimes reboots by itself and disconnects all users from the Internet. What could be the reason and to fix it? Regards Issam
-
Site-to-Site connection via Point-to-point wifi
Hi all, i've two Zyxel USG Flex 200 and two Mikrotik Cube 60Pro ac on Site A and B. What's the best way to realize a site to site connection via point-to-point wifi? Site A and Site B have both several VLANs that should be accessed from the other site by security policy rules. The Mikrotik Cube 60Pro's are in bridge mode…
-
How Do I convert a port to WAN2 in USG100Flex
I need to connect 2 Wans, How can I convert a lan port to WAN?…, thanks
-
GEO IP update error (firmware V5.37(ABFW.0)
Hello. Can't update GEO IP database on ATP 200 with firmware V5.37(ABFW.0). Latest Version: 20230728 Current Version: 20230721 When press "Update" - get error "Geo-IP country database version 20230728 download has failed. (failed) at Mon Jul 31 10:28:49 2023" Help, please.
-
How do I apply policies to active directory groups
I already connect the AD with Zyxel USG100flex, my VPN work OK with AD users, but I am trying with policies (web filter and application control) to groups of the AD but it does not work, if you can help me, thanks, (sorry for my english, I speak spanish)
-
USG310 - Name Resolution on LAN via VLAN
Morning All, I'm rather new to vlans, so I'll appreciate your patience. I have the following scenario: USG310 Aruba 1930 switch I'm setting up vlans in a lab environment, and testing before I deploy to where it needs to go. For now I have just one vlan10. vlan1 and vlan10 machines can see each other (which is great) but…
-
VPN with TAP question
Hi all I am about to attempt and setup a client to site VPN which will utilize a TAP interface to allow devices connected to the Site B (client) - ideally on only ONE of the ethernet ports using a VLAN - router to be accessible (on the same subnet) from the Site A router and receive an IP address from the Site A router.…
-
USG310 Won't Shut Down Through Web UI
I tried 2 times. This is what happens: Click the Shutdown button The SYS LED starts blinking and clients are disconnected from the Internet After about 5 to 6 minutes the SYS LED is solid again and the clients sre again able to connect to the Internet In the end, the Shutdown process ends up being a Reboot process. In the…
-
New Nebula Cloud Monitor Mode = (Sort of) Excellent!!!!
Huge shout out to Zyxel for the new Nebula hybrid/cloud monitor mode that dropped in v5.37! We never could find our way to Nebula Mode because too much stuff was missing compared to on-prem configuration. But we really missed the ability to centrally monitor and manage the many gateways we have out there with clients. This…
-
atp700 boot problem
Hi all, i have a problem with ATP700 after programmed restart , led power is green but sys led is off, i try to connect via RS232 with putty/teraterm but no result, the device is not responding i could not change boot partition, i don't see any boot string in teraterm. any idea?
-
Help getting vlan working
I have a USG Flex500, firmware V5.37(ABUJ.0) in native mode and I am unable to get a basic VLAN to functioning correctly. I've read countless articles, and watched multiple Zyxel videos, but still can't seem make it work. The USG500 is connected to a TP Link SG1024DE smart switch. I have tested the switch by putting…
-
How Do I do to connect a server at DMZ and post it with an public IP
I configured my dmz sub net 10.10.10.0/255.255.255.0 the dmz ip is 10.10.10.1 i have connected a server 10.10.10.2 i have tested some routes and they have worked…., but I need to assign a Public IP to the server and access it from out of the office, includding ports as: ftp, rdp, http, y sql, Please if you can help me,…
-
Multi Subnet and VPN
a customer of mine has a new USG50. connected via VPN IP SEC to headquarters. It has two subnets 192.1.40.0/24 192.168.36.0/24 I can't set that all traffic from the 192.168.36.0/24 subnet must not pass through the vpn I'm a novice technician thank you all for the support
-
Port clone
Good morning ATP800 How do I set one port to be a clone of another? I'm a novice technician thank you all for the support
-
Service License refresh sometimes use AUTO DNS
VPN300 V5.37(ABFC.0) In DNS forwarder I have * 192.168.53.12 VLAN53 * 192.168.53.4 VLAN53 And AUTO default that I don't want to use and have blocked then upstream with a switch When you do a Service License refresh it will sometime use AUTO and will fail refresh it again then it works This problem could be solved by this…
-
Follow up on zyxel vpn tutorial - and soft ether vpn server
Hello guys, To sum things up quick, i followed these tutorials: https://support.zyxel.eu/hc/en-us/articles/360001390914 https://support.zyxel.eu/hc/en-us/articles/360000706899 And i get stuck with windows 10 stating that the remote server doesn't respond. On the zywall log all i see is "Security Policy ControlMatch default…
