Security - Zyxel Community

USG FLEX H Series
Security Ideas
Your ideas could be new features for Security!

2023/05/23 Urgent Patch Firmware Released to address Buffer Overflow Issues
i have just received a notification that a zero day buffer overflow is being widely exploited against Zyxel firewalls. Please immediately publish the information known so far to mitigate the threat. Which service is affected? Is there IOC for these attacks? Thanks Mario
VPN 50 login issue
I received the email today about the firmware upgrade. I cannot get logged into either of my devices so that I can perform this. I am getting a 504 gateway timeout after I click login. Any ideas?
USG FLEX 50 (USG20-VPN) Not able to update firmware on standby part
I've tried for some time now to perform updates on our standby partition (Running is 5.30ABAQ.0 with current standby at 4.64ABAQ.0) and each time running a firmware update from cloud or uploading a local file (latest 5.36 ABAQ.1) it appears to work and shows the pop up window with the counter, but the counter always keeps…
Access local LAN with SSL VPN
Goodmorning everyone I'm new to the group. I introduce myself, my name is Maurizio from Italy I have a problem configuring SSL VPN with the zywall 110. I'll explain my configuration briefly I have a LAN 192.168.2.0 connected to the zywall which in turn is connected to the WAN to the ADSL network with public IP a.b.c.d.…
USG1900 fail upgrade
I try to upgrade a USG1900 with running Version v4.72(AAPL.0) and standby version v4.39(AAPL.0) but it rollback. I try with running partition to upgrade to 4.73 but it fail. I try with standby partition to upgrade to 4.62 but it fail. I try factory reset and upgrade but same result, update fails. how to upgrade?
ATP500 hängt bei Login Seite
Hallo, Wir haben bei der ATP500 die Problematik, dass keine VPN Verbindungen möglich sind. Beim Login Versuch auf der Weboberfläche , lädt die Seite lediglich ewig und nichts passiert. Gibt es hier evtl. einen Workaround? Neustart der Firewall habe ich schon durchgeführt - hat leider keine Besserung gebracht. Nach längerem…
USG 110 - Problem in VPN / NAT scenario
Hello zyxel community, we have a site-to-site IPSec VPN Tunnel from our USG110 to a Fortigate Firewall of an application provider. No overlapping subnets . The tunnel connection is being built up successfully. At the same time we use a Windows RAS Server behind our firewall, for client VPN connections of mobile users via…
ATP800 clones mac-address in internal lan
Hello. we just set ap an atp800 with latest firmware V5.36(ABIQ.2) / 2023-05-24 02:13:33 we are expiriencing a problem with spoofing mac addresses in lan just look at screenshot (d8-ec-e5-91-55-a2 - atp800 mac) please help, what option do we need to disable/enable in router? there is pic from wshark. why atp800…
ZyWALL USG 100 Plus and TLS 1.2
Hello! Is it possible to enable TLS 1.2 on the ZyWALL USG 100 Plus? I know that it is old device and support closed but maybe exist some variants? (like this for the old USG 300 https://businessforum.zyxel.com/discussion/3477/zywall-usg-300-and-tls-1-2) Most popular browsers stop supporting TLS 1.0 and 1.1 and use modern…
Problem with codecanyon.net
Hello there When I load Codecanyon.net to look for a plugin for the WordPress projects at the school I work for… All CSS gets stripped. When I load the website over 4G, it works fine. So, the Zyxel ATP800 is blocking something… Where should I look and how can I fix this? Kind regards Pieterjan Deneys
Zywall USG100-Plus, Where to find the Firmware, Restarting every 15 minutes
Hello All, In December-2021 we bought a Zywall USG100-PLUS firewall VPN router, it worked fine for 10 days, after that it started to restart on its own every 15 or 20mins, I don't know what is the issue, also thought to update the firmware, but I am not able to find the firmware for the Zywall USG100-PLUSS, please do help…
FLEX200 / recommended device temperature
Our FLEX200 reports back a constant, yet toasty 67°C CPU temperature (via Syslog, at info-level / severity: 4). The rack it sits in is in an air conditioned room, it has no active components next to it top or bottom and airflow is given. CPU average is reported as 6 (percent I guess) and memory at around 40. Is that a…
I have no idea why this VPN is blocking only SOME traffic on a specific port
Hi, I've got a VPN300. I have no idea how old it is, it's an inherited hardware with my role. That said, I can see packets coming into the public side with the UI packet sniffer, but no corresponding packet leaving to the right destination. I'm sorry if I'm a bit unclear. I've been fighting with this for the last 9 hours…
VPN 1000 trouble
Hello! Suddenly it started throwing me out of the session on VPN 1000 (20-40 minutes after reboot) with the following error: Wrong CLI command, device timeout or device logout. Logs cannot be viewed.
Problems accessing website on SCR50AXE
Hi again Trying to access skechers.dk with the Ransomware / Malware Prevention enabled but the site is blocked. Tried these settings to whitelist the site, but without result. Anyone who can help?
SSL Inspection Whatsapp
Hi When receiving a picture on Whattsapp Desktop App on Windows 11 i get the following Log entry (ATP500) and the picture is not downloaded: client finished Receive fatal alert message: desc = 48(unknown_ca) => Block/Reset SSL session! Certificate is up to date. Is there a solution for this? Thank you.
ATP100 - FW 5.36P1 - Threat Intelligence Machine Learning again out-of-date
Hi, my last firmware was version "536ABPS0ITS-23WK17-r109100". This lab firmware was send to me by private message. Now I tried to update my ATP100 via cloud firmware but that was not allowed because of this special firmware version. I then installed old firmware V5.35 and after that I clicked on cloud firmware update to…
Error page, when Threat Management block sites on SCR50AXE
Hi Is it possible to show the users an error page, when the Threat Management blocks access to sites. As it is now, the page only times out and the users might think that the site is offline, instead of being blocked by the Threat Management
Error during uploading configuration on zyxel usg 310
Dear all, I am trying to upload configuration from one Zyxel usg 310 to another Zyxel usg 310. I am receiving error 42012 - Can't convert config and error 39001 Operation is prohibited. Can you help me… Thanks in advance.
SecuReporter Maintenance Announcement
Dear Valued Customer, As part of our commitment to providing you with better and more efficient services, we will be carrying out a system migration process on June 3, 2023, from 10 am to 12 pm (UTC+8). During this period, SecuReporter portal services and some of their related functions will be suspended. We apologize for…

Welcome!

It looks like you're new here. Sign in or register to get started.

Security Highlight

[2025 Jan Tips & Tricks] Take Control of Your Security: Enable 2FA on Your Zyxel Firewalls
We’ve said it countless times, but it’s worth repeating: Enable two-factor authentication (2FA) for administrative logins! This critical recommendation arises from the latest vulnerability disclosures, underscoring the importance of proactive measures. Let’s break it down to safeguard what matters most. CVE-2024-11667: Key…
[2024 Sept Notification] SecuExtender SSL VPN macOS and Windows Clients: EOL and Upgrade Options
SecuExtender SSL VPN macOS and Windows Clients: EOL and Upgrade Options We want to inform you that the SecuExtender SSL VPN macOS and Windows clients have reached their end of life (EOL). Zyxel is no longer selling, maintaining or supporting these products. However, for those who recently purchased a license, we understand…
[2025 Feb Tips & Tricks] Seamless Synchronization for Effortless Management
Simplify your network management with the new USG FLEX H series feature! At Zyxel, we are dedicated to enhancing your network's security and management efficiency. With the latest uOS1.31 firmware for the USG FLEX H series, we've streamlined your user experience across both the local GUI and Nebula cloud management. What's…

View All