-
USG310 reboots & sometimes hangs up
Hello, Hi,I have a problem with the USG310. In my opinion, this is a software bug. I test the setup on two physical devices and the symptoms are the same. The device restarts every few days(~1/7days). Here are the logs part: debug ,default , , , , , kernel: [536754.180111] Log Date: 1679963744, fwVersion=Firmware Version:…
-
Restrict access to a specific IP
Hi, I addmit that I didn't digg too much…it is easier to ask here questions :) What I would like to do: I want to restric internal trafic to a server for only a specific MAC address(Ip address) and any other MAC(IP address) that tries to comunicate with the server to be rejected, therefore if I have 192.168.1.2, 3,4,5 as…
-
DNS settings for dual WAN on USG FLEX 500
Hello, I would like to have DNS forwarders for dual WAN, that actually use the corresponding DNS for the WAN that is used. The DNS's used are fromthe providers and they don't allow request outside their network. One of my WAN's is a static ethernet interface and I can't specify a DNS there. The other one is PPPoE and that…
-
Difference between Zywall 110 and USG 110
The harware of the Zywall 110 and USG 110 ist the same, but where are the difference between the two products in the software?
-
Importing a Comodo certificate results in a error.
Hey all, I'm trying to import a Third Party SSL certificate into my Zywall 110 to protect it. I can make the request, I can issue it to my provider and I get back the issued certficate. The certificate is a ssl-domain.cer file. However when I import it into my Zyxel I get the following error: Validation Result=incomplete…
-
VPN IPsec problem
Hello everyone! We have a VPN IPsec between ZyWALL USG 100 (Office) and ZyWALL USG 20 (NB). Sometimes VPN connection is broken. We are simply reboot devices and connection has restored but this is not a solution to the problem.I tried configure a VPN connection, gateways in ZyWALL USG 100 (Office) and ZyWALL USG 20 (NB)…
-
Does Content Filter No Longer Work On USG40/60's
Hi, We have a few sites running USG 40 & 60's (Latest Firmware) We yearly provide them with the subscription for AV & Content Filter. We have noticed on at least 2 of them that the content filter no longers seems to block sites, i.e. Gambling etc. Has this feature now been removed and if so why are you still able to buy…
-
USG110 - Failed Connectivity Check caused a termination of S2S IPSec VPN tunnel
We are using a S2S IPSec VPN. The tunnel is under surveillance by USG VPN connectivity check which is regularly pinging a host in the remote network. This remote host is not the opposite VPN terminator but another client computer/server in the remote network. So far so good. Yesterday we experienced that the remote host…
-
USG FLEX 100 and Apple FaceTime Video
Hi folks, I have a client network using a USG FLEX 100 with load balancing between to ISP connections. All is working well but the client advises that they cannot make / receive FaceTime Video connections from the network. At first I suspected a Firewall rule, but after adding manual rules to allow the FaceTime ports as…
-
ATP100: SFP/Modem little bit slow?
Hi folks! I have a ATP100 here and when I also use it as a modem with plugged-in WAN fiber cable directly into the ATP100, I receive between 400-500Mb/s in download-transfers (multiple streams, different servers tried etc.). When I use the original modem of the provider (Swisscom, Internet-Box 3), I receive 960Mb/s per…
-
USG FELX 200 - Remote syslog on IPSec
Hello Community, I set up remote system logging. The remote server can be accessed via IPSEC VPN. The VPN connection is live, I can successfully access the remote server using the connection test. However, there are no inbound system log entries on the remote server. What could be the problem? May the USG not be able to…
-
IpSec VPN with Remote Access Server - trouble
On "USG310" I have configured IPSec VPN as Remote Access Server. Everything works fine but... Problems start when more than one user connects from the same remote network. For example, with two users, they start disconnecting and reconnecting alternately. As if logging in one causes logging out/invalidating the session of…
-
Monitor internet usage per IP
Hello, Is there a way to monitor internet traffic per IP ? I have the USG110 I tried to check the monitor tab, it shows the traffic usage from the WAN side not LAN side (or per IP on the network). Thanks
-
SSL VPN Problem Connection
Hello at All, i have a problem with a customer, and i didn't understand how i can resolve this. The customer have a USG FLEX 50 that use also for SSL_VPN Connection (and also us use sometimes for troubleshooting) and there is some strange behaviour: The USG FLEX 50 have this firmware: V5.35(ABAQ.0) There is a LAN…
-
USG Flex Object Creation
I upgraded from a Zywall 110 to a USG Flex 500 in NCC mode. I'm trying to recreate all of my policies and routing that I had in the 110. Obviously, the interface between local and NCC is completely different. I had internal groups of devices to which I applied special routing though multiple Internet connectioons. I also…
-
SSL VPN Client 1.2.5 on Mac Ventura 13.2 Broken
Have a customer who upgraded to MacOS Ventura 13.2 and their SSL VPN client (1.2.5) stopped connecting. Other users still on Ventura 13.0.1 are connecting OK. There seems to be a lot of posts regarding VPN connections in general breaking after this update. Is there a workaround for the Zyxel client on this MacOS version?
-
USG FLEX 700 - Problem while deleting static IP/MAC bind on DHCP Table of an Interface
Hi, I have a problem deleting/editing a record on my Interface/Static DHCP Table. On the interface i have a lot of record that i can edit and delete. only one of them is untouchable... Everytime i try to edit/delete it i get an error like this:------------------------------------- CLI Number: 17Error Number: -4005Error…
-
Assign Slave Ports to link aggregation on USG 500 Flex in V5.35(ABUJ.0)
Hello dear Community, We are facing an "issue" trying to set-up our USG500 Flex on Firnware V5.35(ABUJ.0) with link-aggregation. The second chapter of this post (802.1ad) corresponds pretty much exactly to what we want to set-up. Unfortunately when trying to set-up the Slave Ports my choices are very different from all the…
-
http vs https for 2 factor auth emails
Hello, I would like to ask if there is any practical difference between using http versus https for the VPN 2 factor authentication via email. I understand using https is more secure. When using it ( https) we get a certificate error/warning which i assume means we need a cerfificate from a CA for it, but i was wondering…
-
CA invalid SSL error
Hello, I have a problem with the CA issued by zyxel. When accessing the firewall ATP200 the browser says that is not valid(not secure connection via HTTPS). The CA is valid until 2034 and is imported in the Windows Client Trusted CA. What am I missing? Thanks!
