-
Kein rdp-Zugriff auf Firmennetz mit SSL-VPN
Hallo, der Aufbau einer SSL-VPN mit dem SecuExtender von meinem Win10-PC zu einem Firmennetz über eine USG40W klappt ohne Probleme. Siehe Abb. 1. und Abb. 2 Der Win10-PC bekommt de IP 192.168.100.10 zugewiesen. (siehe auch Abb. 3) Aber ich bekomme keinen rdp-Zugriff auf den Arbeitsplatz 192.168.100.140 oder 1xx im…
-
USG20-VPN FIRMWARE UPGRADE
Good morning sir, I tried many times to upgrade my USG20-VPN. My version is V5.30 and i want the last one. I have tried to download the 5.37 firmware and tried to upload it manually : "Firmware upload is always in progress" (i try many times between 30 minutes and one hour waiting), i tried to let the system automatically…
-
Getting DNAP Packet DROP trying to NAT in a Zyxel - Here's the trick
This had me stumped for a bit. I have an HTTPS service that needs to be accessible from the outside. But the server is setup with the standard port 443. Since that's used elsewhere, we setup a 1:1 NAT Rule for port 7443 → port 443 and setup a firewall policy that was basically this: From: WAN To: DMZ IPv4 Source:…
-
ddns
Dear all, by configuring ddns on a Zyxel FLEX 100 I get following errormessage: "Update the profile my_dyndns has an unknown result." Does anybody know what this could be? I tried 2 versions: dyndns24.ch and no.IP. Thanks in advance Regards Heimo
-
Flex 700 Guest Vlan Isolation
I have 8 vlans on my GS1920-24HPv2 switch (1,10,20,30,40,50,60,70), with 70 as my guest vlan that are connected to the USG Flex 700 as subnets. I want to isolate vlan 70 (guest) from all other vlans and only allow it to access the WAN. What is the easiest way to set up security policies to block all traffic to the other…
-
USG 110, remote install printer (autodiscover problem)
Hello, has anyone solved the problem of remote printer/copier installation - when connecting via SecuExtender is not found device installation program (autodiscover)? I can manually add the printer and add IP adress printer. I enabled ports on the firewall: according to table 3 here https://www.cups.org/doc/firewalls.html…
-
My USG210 reboots automatically
hi, I'm a Zyxel partner, and one of my clients has a USG210 running ver 4.73(AAPI.1) He says that the USG210 sometimes reboots by itself and disconnects all users from the Internet. What could be the reason and to fix it? Regards Issam
-
Site-to-Site connection via Point-to-point wifi
Hi all, i've two Zyxel USG Flex 200 and two Mikrotik Cube 60Pro ac on Site A and B. What's the best way to realize a site to site connection via point-to-point wifi? Site A and Site B have both several VLANs that should be accessed from the other site by security policy rules. The Mikrotik Cube 60Pro's are in bridge mode…
-
How Do I convert a port to WAN2 in USG100Flex
I need to connect 2 Wans, How can I convert a lan port to WAN?…, thanks
-
GEO IP update error (firmware V5.37(ABFW.0)
Hello. Can't update GEO IP database on ATP 200 with firmware V5.37(ABFW.0). Latest Version: 20230728 Current Version: 20230721 When press "Update" - get error "Geo-IP country database version 20230728 download has failed. (failed) at Mon Jul 31 10:28:49 2023" Help, please.
-
How do I apply policies to active directory groups
I already connect the AD with Zyxel USG100flex, my VPN work OK with AD users, but I am trying with policies (web filter and application control) to groups of the AD but it does not work, if you can help me, thanks, (sorry for my english, I speak spanish)
-
USG310 - Name Resolution on LAN via VLAN
Morning All, I'm rather new to vlans, so I'll appreciate your patience. I have the following scenario: USG310 Aruba 1930 switch I'm setting up vlans in a lab environment, and testing before I deploy to where it needs to go. For now I have just one vlan10. vlan1 and vlan10 machines can see each other (which is great) but…
-
VPN with TAP question
Hi all I am about to attempt and setup a client to site VPN which will utilize a TAP interface to allow devices connected to the Site B (client) - ideally on only ONE of the ethernet ports using a VLAN - router to be accessible (on the same subnet) from the Site A router and receive an IP address from the Site A router.…
-
USG310 Won't Shut Down Through Web UI
I tried 2 times. This is what happens: Click the Shutdown button The SYS LED starts blinking and clients are disconnected from the Internet After about 5 to 6 minutes the SYS LED is solid again and the clients sre again able to connect to the Internet In the end, the Shutdown process ends up being a Reboot process. In the…
-
New Nebula Cloud Monitor Mode = (Sort of) Excellent!!!!
Huge shout out to Zyxel for the new Nebula hybrid/cloud monitor mode that dropped in v5.37! We never could find our way to Nebula Mode because too much stuff was missing compared to on-prem configuration. But we really missed the ability to centrally monitor and manage the many gateways we have out there with clients. This…
-
atp700 boot problem
Hi all, i have a problem with ATP700 after programmed restart , led power is green but sys led is off, i try to connect via RS232 with putty/teraterm but no result, the device is not responding i could not change boot partition, i don't see any boot string in teraterm. any idea?
-
Help getting vlan working
I have a USG Flex500, firmware V5.37(ABUJ.0) in native mode and I am unable to get a basic VLAN to functioning correctly. I've read countless articles, and watched multiple Zyxel videos, but still can't seem make it work. The USG500 is connected to a TP Link SG1024DE smart switch. I have tested the switch by putting…
-
How Do I do to connect a server at DMZ and post it with an public IP
I configured my dmz sub net 10.10.10.0/255.255.255.0 the dmz ip is 10.10.10.1 i have connected a server 10.10.10.2 i have tested some routes and they have worked…., but I need to assign a Public IP to the server and access it from out of the office, includding ports as: ftp, rdp, http, y sql, Please if you can help me,…
-
Multi Subnet and VPN
a customer of mine has a new USG50. connected via VPN IP SEC to headquarters. It has two subnets 192.1.40.0/24 192.168.36.0/24 I can't set that all traffic from the 192.168.36.0/24 subnet must not pass through the vpn I'm a novice technician thank you all for the support
-
Port clone
Good morning ATP800 How do I set one port to be a clone of another? I'm a novice technician thank you all for the support
