-
Site to Site USG110-USG700 Flex
Hi am am hoping to get some help with this setup, hope this is the correct place to ask questions, cant see anything wrong with the setup, ips checked preshared key checked devices rebooted etc, thanks in advance
-
How to Connect USG700 to USG310 With Lan cable
-
NAT and Security Policy Issue
We have configured 2 webservices(IIS & Apache) with different port and created service and define port range for the same than we configured NAT then follow with Security policy. Now one webservice (IIS) is not from public network and other webservice (Apache) is working fine with the same Security Policy. Both are…
-
Config migration atp200 to atp500
Hi everyone,i need to replace an atp200 with an atp500. Anyone knows if is possible migrate the configuration? Thanks in advance. Fred
-
Big traffic made through NAT freezes ZyWALL USG 200
Hi all! First of all I what to thank you all for this large community! It Helped me a lot these days to understand how Zywall USG 200 works. Here's my situation: internet cable is connected to WAN1 and I'm connecting to internet using a PPPOE connection. PPPOE external IP is named EXTERNAL_IP my local FTP server is called…
-
Join AD Domain in SD-WAN
Hello, I have a VPN100 firewall configured in SD-WAN. I have to join a local Domain Server since I have authentication problems to local services via VPN. I cannot find any guide to do it from SD-WAN Can anyone help me?
-
Cannot block youtube by appPatrol
Hello. I am using USG110, and have the license IDP. I set up AppPatrol to block Youtube, but the user can still access Youtube , just slower a bit. I don't know why? I upload my config below.
-
Really "Web Content Filter - Profile" of USG FLEX family has 256 elements limit?
In the company Firewalls where I replaced the old USGs with the USG FLEX family, I used an extremely restrictive configuration trusting in the possibility of opening sites in a granular way. I was therefore amazed to receive the message that the limit was reached on inserting the 257th element. Is this really the limit…
-
ASP.NET Applications behind USG Firewalls show USG local IP instead of web client public IP
what a subject! dear forum, We exchanged our old firewalls with a USG 110 and 210 firewalls. Since the exchange we get on ASP.NET web applications on IIS 7 or IIS 8.5 as client web address the IP address of the USG firewall. NAT is working fine: whenever I access the web from the IIS I get the specified public IP address…
-
WAN trunk spill over not working
Hello team, Please i want the correct & confirmed configuration for WAN trunk settlings so that when one ISP link goes down, the other will kick in with out user intervention. USG1900 Thank you
-
Question about routing on zyxel usg 40
Hi, I have network on lan1 (eth1) - 192.168.0.1/24, network lan2 (eth2) 10.212.4.254/29, from eth2 port there is a link (from internet service provider) to remote office 192.168.12.0/24, router in remote office site has ip address 192.168.12.1. I can ping router 192.168.12.1 from eth2: # ping 192.168.12.1 -n -c 3 # ping…
-
Reputation Filter: Categorisation
Hi, We have bought a new ATP500 FW and activated "Reputation Filter" with "URL Threat Filter" (Firmware and signatures up to date). It seems, that quite a few websites (e.g. gui.ipvoip.ch) are not rated and therefore blocked (as recommended). Where can we submit those URLs, so these websites will get rated in the near…
-
Zerobot, USG Flex 100 (W), CVE-2022-30525: something for update sooner than later.
According to Bill Toulas on Bleeping Computer, a new malware named Zerobot is exploiting several CVEs about several products of (again) several brands. CVE-2022-30525 has been declared resolved in May 2022 (according to Bleeping Computer and Rapid7 with firmware 5.21 for all the ZLD 5.x capable devices. So if your box is…
-
USG-110, exclude one specific ip-addresse from being written into the logfile.
My Internet Service Providor has got some new fancy equipment to monitor their network. Unfortuatnly this equipment ping my ip-address every 15 seconds and hence make a line in the logfile 'ACCESS BLOCK' . Is it possible to somehow exclude this specific ip-address - from where the ping comes - from being written into the…
-
no acces ugs20
Hello I have 2 UGS20 routers. since there is a certificate problem, I go through the internet explorer browser but I can't access one of them even with internet explorer message INET_E_DOWNLOAD_FAILURE I can't log in using SSH either. I think that the 2 boxes do not have the same firmware do you have another tool to do…
-
FLEX 200, L2TP suddenly stopped working
We have been running L2TP with MS-CHAP v2 for some time. But its suddenly stopped working, and the logs says 'No proposal chosen' When going all settings, its looks fine FW is: 5.32(ABUI.0) maybe @Zyxel_Emily have any idea
-
Aggiornamento firmware bloccato
Ho un ATP 200 che non si aggiorna più il firmware. StandbyATP200V5.21(ABFW.1) RunningATP200V5.30(ABFW.0) In questo momento sarebbe disponibile la versione 5.32, non riesco ad aggiornarlo ne in cloud ne scaricando il firmware dal sito e caricandolo con l'apposita funzione. Il processo di aggiornamento parte, scarica il…
-
FLEX500: Match default rule DNAT Packet, DROP
Hello, Can anybody explain that type of log like below:? Match default rule DNAT Packet, DROP source: 192.168.100.12 --- dest.: 192.168.100.1 I haven't any NAT service to that subnet configured.I have one NAT rule but destination address is in different subnet (different vlan)
-
Does the USG FLEX Series have Port Forwarding problems?
On 06/27/2022 I opened a ticket following the replacement of a USG 40 with a USG FLEX 100 for a problem related to the Backup of a Synology NAS to another Synology NAS via the Hyper Backup application. To perform the backup you need to redirect only the TCP port 6281 to the destination internal NAS. This configuration has…
-
Zywall USG 1100 unexpected reboot.
Good day. Today we caught new unexpected reboot. Our ISP has problem on router, so WAN connection connect/disconnect many times in row with linked up/linked down status. Device goes to kernel panic some times. Debug log in attach.