-
USG60W disconnect and crash
What with the USG60W
being EOL this might not get fixed but I post anyway. Was one V4.73 now on
V4.73(AAKZ.0)ITS-22WK50-r106743 So setup is with USG60W
built-in wireless down a VPN tunnel to VPN300 doing speed bursts at
speedtest closing/refreshing before it ends and running it again over
and over. The problem seems to…
-
Outbound Traffic from an Internal Server not Routing Through Correct External IP
Hello. We recently moved sites and had some trouble getting multiple Static IPs to work properly with our ATP device. At our old location, the IP block was contiguous. Under Network\Interface, the added Ethernet interface has all of the IPs listed in its config because they are together. Under NAT and Policy Control we…
-
two USG Flex 50 connection between LAN1 and LAN2
Hello at all I write as I have a "problem" in the network configuration of two Firewall zyxel usg flex50 purchased for a customer. The customer needs two separated LANs with the two firewalls in "waterfall", but that one can communicate with the other. I did not consider the configuration of VLAN because I would like to…
-
IPSEC VPN with SNAT in a little subnet
HI, I created a site-to-site IPSEC VPN with SNAT. Everything works fine until I use an x.x.x.x/24 subnet, but when I try to use an x.x.x.x/27 the ping no longer works. For the configuration I used this guide: https://mysupport.zyxel.com/hc/en-us/articles/360003321659--ZyWALL-USG-How-to-configure-VPN-SNAT-on-Zyxel-gateways…
-
SSL VPN connection to ZyWALL USG 300 does not work from Windows 11.
After installing SecuExtender_Windows 4.0.4.0 on Windows 11, SSL VPN connection to ZyWALL USG 300 works! But after restarting Windows 11, the SSL VPN connection stops working. Why is the SSL VPN connection not working on Windows 11? Why does it stop working after rebooting Windows 11 From computers running Windows 10, the…
-
IKEv2 VPN with AD authentication problem
Hello, I've set up an IKEv2 VPN and with local user on FLEX200, this connects fine from Secuextender. Now I want to integrate with AD, so created a user on domain controller with read rights on the security group AAA Server Active directory setup done, configuration validation with user says OK Created Authentication…
-
USG110 / 4.65 AAPH.1 - new "Policy Control Warning"
The 4.65 AAPH.1 newly implements a Policy Control Warning in case it detects opportunities for internet access to management interface or SSL VPN. If such rules will be detected an additional button "Update Security Settings" is displayed above the Policy Control. But what is this button for? The change log is only…
-
USG310 - slow with SSL inspection and content filter
Our USG 310 ist very slow if we have SSL inspection and content filter on. We think that the problem ist the content filter. If we stop the content filter the sites open in 3-5 seconds, with filter > 18 seconds. The CPU workload is < 20%. We have 40 workstations behind the USG. The Firmware is V4.73(AAPJ.0) / 2022-11-18…
-
USG 20VPN web interface Blocked
I put an additional port on the NAT and the connection to the router dropped, at the moment I can't access the router through the browser, I've already restarted the router and the problem remains, any tips to access the router and convert what was done in the NAT?
-
SSL On Android
Hi, Does anyone know of an android vpn client that can connect to Zyxel USG 60 using SSL ? Many thanks
-
HOW BLOCK PROGRAM FROM ACCESSING THE INTERNET
Is there a solution to block a program that is accessing the internet, specifically Microsoft Store and other computer programs? Thank you so much for the help.
-
Little Network with Two USG
Hello Community, I have a little trouble that drived me crazy since some days. I have a test enviroment, that i want to replicate in a customer enviroment in the future. I have: 1 Zyxel USG FLEX100 1 Zyxel USG 20 (I know that it is so old and obsolete but i use only for lab enviroment) 1 Switch Brocade, use for test…
-
Youtube Unable to Playback at Random Times
Having an issue where random times we are unable to play youtube videos. The site loads but if you try to play a video it just spins. Looking at dev tools when trying to playback a video the Zyxell is forcing a ssl cert which is causing cert name mismatch. I have whitelisted all of youtube.com via content filter, dns…
-
Device Insight – devices on VPN not showing up
Devices connected to the LAN ports of my FLEX200 get listed just fine. Nifty feature. Devices that connect via VPNs on the other hand do not get listed. Is that the expected / wanted behaviour?
-
Multiple IKEv2 gateways in parallel
What I want to do: Have multiple IKEv2 gateways running in parallel named #1 and #2. Have multiple users with the same credentials sign into #1 to access one subnet Have one admin sign into #2 and access another subnet Since using a IKEv2 certificate gateway fixes the servers' Local-ID-Type and Local-ID-Content to the…
-
Tutorial: Make your own .mobileconfig for OSX IKEv2 Certificate VPNs
OK, since I am a friend of having computers do my work for me, I started looking into those configuration profiles for OSX/iOS. Who wants to manually set up three dozen VPN-profiles by hand for various users? I sure don't! Basically a profile lets you administer certain parts of OSX and iOS – from very basic things like…
-
How do I block IPs in USG60?
I do not have an IP Reputation feature or similar as described here below. So how do I add one, or several ip addresses to block to an USG60 firewall?
-
Ssl vpn does not work whit usg40
Hi, I have this problem with a usg40 (I have other configurations working correctly on other types of models, for example atp 100 , usg 60 , usg 110 and usg 210). When I try to connect in ssl vpn on this usg 40 last updated firmware, the ssl vpn from me does not start and gives me the following error (il log del…
-
Legacy firmware for Zywall USG 200
Hi, I'm trying to upgrade the firmware from version 2.20(AQU.1) to the latest 3.30(AQU.7) I tried to upgrade directly to the latest version but I get the error that says the firmware is not compatible, I was looking for the intermediate versions but are not available anymore from the site ftp.zyxel.com. there is a way…
-
VPN - Authentification with ADD
Hello, Do firewalls support Microsoft 365 AD authentication when connecting to a VPN? Instead of creating all users in the firewall. Best regards Damien Vonlanthen