-
HA config(Flex 700)
I have the following set up. The question I have is what takes precedence when it comes to HA, and what would give the desired end result? two 700 in functional HA pair. WAN1, WAN2 policy routes for different traffic to go primarily through WAN1 or WAN2, policy routes have connectivity check to fail down to an alternate…
-
ATP200 - unable to update antimalware
After updating "Firmware Version V5.37(ABFW.2) / 2024-01-20 05:47:51" I have: Anti-Malware signatures are updated to the latest version 2.1.1.20231130.0.. (success) at Mon Mar 11 09:03:50 2024 Threat Intelligence Machine Learning (TIML) signatures are updated to the latest version 1.0.0.20240310.0.. (success) at Mon Mar 11…
-
USG Flex 500: WAN failover and virtual server won't work
Hello everybody I have an USG Flex 500 with 2 wan and 2 lan connected, and i'm trying to make a server inside a wan to respond to two NAT (Virtualserver), one on each wan. I should use virtualserver NAT because i need to redirect different ports on same external IP to different internal servers. This is the simplified…
-
Problem ZyWALL SecuExtender
I have a VPN con UGS60. I have problem with connect with ZyWALL SecuExtender because disconnect fast without error. I try with 4.0.4.0 and 4.0.5.0. This VPS work fine with pc with Win10 but on the pc with Win 11 no. Disconnect fast. In the log the error is [ 2025/02/20 12:39:05 ][SecuExtender Agent][INFO] Server subject:…
-
Change default admin password not working
Hi, ATP 500 The procedure for resetting the admin password does NOT work. https://support.zyxel.eu/hc/it/articles/360012744371-Cosa-posso-fare-se-ho-dimenticato-la-mia-password-USG-FLEX-ATP-VPN-o-non-riesco-pi%C3%B9-ad-accedervi#two ATKZ -g ATGO the password should be 1234 but on the next reboot entering these credentials…
-
Problems with Windows IKEv2 Client after SecuExtender retirement / Windows net drive mapping
Since Zyxel intends to retire the SSL VPN SecuExtender Client, we're presently trying to change to the Windows build-in IPSec IKEv2 client. All necessary steps at our USG Flex 700 are done and we are able to establish a VPN connection. From remote we are able to ping the DC, could resolve the domain name, could reach third…
-
IKEv2 Connection Fail under some connectivity.
Hi dear i configured a RoadWarrior ikev2 wih my flex 500 but sometimes it fail the connection using different wisp… some time it works some time no… i tryed to enable ikev2 frammentation on windows (using the windows native client). How to improve the configuration?
-
Paypal configuration on UAG 4100
Hello, I need some help to unlock the paypal payment. Everything is ok but the paypal security check turn in loop so users canno't access to the payment. On the web authentication panel option "exeptional services" if i Unlock https it works…. I tried to open in the walled garden *.paypal.com domain but without success. So…
-
Invalid state detected DROP (for VPN user)
Hello, yesterday we got strange problem with SSL VPN connected users. Both users connected successfully with Secuextender cannot reach internal LAN resources. In Zyxel debug log, we have "Security Policy Control - Invalid state detected DROP". Reconnecting not solved the issue. Only Zyxel reboot solved it. After Zyxel…
-
2nd IPSEC Vpn profile for different users
Hello, I just would like to know if it is possible to create a separate IPSEC VPN Policy with different routing policies and different security policies for another group of users. I create first VPN Policy with wizard and everything is fine with that. I tried to create a new VPN policy with same basic settings but…
-
USG LITE 60AX and IPv6 support
I have an AVM FRITZ!Box 6890 LTE that worked marvellous with both IPv4 + IPv6 on a German Telekom VDSL incl. port forwarding and am quite shocked that our new USG LITE 60AX does not seem to support IPv6 to the internet or even DNS forwarding. nslookup anysite.xy is not answered but ping is working, however only with IPv4.…
-
USG Flex 200H
Bonjour, Est-ce que d'autres utilisateurs ont des soucis avec leur USG Flex série H? De mon coté voici mes problèmes: -déconnection du tunnel VPN site à site -impossibilité d'accéder à la conf depuis le lien généré par Nebula -en local, après l'authentification, impossible de charger la page de conf, j'ai des cercles verts…
-
USG 100 Flex stuck twice in two weeks
Facts January 28 roughly 10:00 am customer calls me reporting not working internet access. Already contacted the ISP, which says "Our CPE is fine, you're not flowing any traffic among your interfaces. I contacted ISP too, verifying that the connected device (USG 100 Flex) was not making any traffic, while seeing the device…
-
VPN full tunnel + thetering
Hi folks. Scenario: android smartphone connected to an IPSec client to Site VPN IKEv2 with certificate. the VPN is full tunnel, the VPN client is Strongswan. Windows pc connected in thetering to the android smartphone. Why the traffic created by the Windows pc does not enter the tunnel? Is there a way to force it?
-
Trouble Configuring Client-To-Site VPN with IKEv2 and USG40
I'm trying to setup a Client-To-Site VPN with a USG40 Host using IKEv2 and a Microsoft VPN client. I've followed the instructions in the guide - [ZyWALL/USG] How to set up a Client-to-Site VPN (Configuration Payload/DHCP) connection using IKEv2 I've successfully connected from the remote client to the Host site and the…
-
ZyWall USG60: VPN IKEv2 Connection using Windows 11?
Hello I'm trying to connect to my LAN from outside, using a VPN IKEv2 connection as instructed here: https://mysupport.zyxel.com/hc/en-us/articles/360005744000--ZyWALL-USG-How-to-set-up-a-Client-to-Site-VPN-Configuration-Payload-DHCP-connection-using-IKEv2 I think the security proposals there are obsolete, as Windows uses…
-
restart automatically zyxel usg flex100 ax
Hello support, I don't know where is the issue..but often (almost every day) the firewall reboot, I have the last firmware V5.39(ACFN.1) / 2024-11-16 08:04:18 Do you have any idea about that ? Please let me know asap! thank you
-
IKEv2 at ATP500
I cannot create IKEv2 vpn via Wizard a i have such info at the end CLI Number: 0Error Number: -24007Error Message: 'Append AAA method has failed.' pls help
-
USG60 config to Flex 100, how to proceed?
Hello, we used to have a USG60 of which I have a backup startup-config.conf Now I have a Zywall Flex 100 with a forgotten password, and would like to use the backup on it. Will probably reset and try to upload the backup. Not sure about the firmware version. How do I do it? Do I need to convert it somehow, or is it already…
-
Indeed Website not displaying properly.
Hello, For some reason the indeed website does not work properly. I have whitelisted the site and it did not change anything. All other sites appear to work correctly. I have attached a file with the first screenshot showing what the website should look like and three other screenshots showing various pages on the indeed…
