-
SSL VPN
Hello, so my first visit here. I have a question about SSL VPN. A customer from me, needs to access an internal website from everywhere. (mobile devices etc etc.) We always use Secuextender, but this is not available for mobile devices. So i have read the manual, and i see it's also posible to create an ssl connection, by…
-
making the router aware of users (AD)
Afternoon anyway i can get the zywall aware of users so we can do user based rules with out having them to log into the router? ie can i point to LDAP some way or have a agent like sophos >https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Authentication/STAS/index.html thanks
-
USG FLEX 200 no proposal error with Strongswan
Hi, i've made setting on VPN Gateway PHASE 1 as it was wrote in "USG/VPN/ATP Series - How to establish client to site VPN with Linux StrongSwan " and have settings in ipsec. like "ike=aes256-sha2_256-modp1024! esp=aes256-sha2_256!" but have no proposal error/ how can i solve it?
-
USG 20 multiple VLANs, same subnet
I'd prefer my internal network being in same subnet (for broadcast messages), but internal traffic enforced by VLANs instead of hosts. The following illustration is a simplified setup of the scenario:VLAN1 allows NAS 1 and NAS 2 to communicate with each other directly.VLAN2 does the same for PC and NAS 1.VLAN3 would…
-
Site to Site VPN Communication Issue - USG60 to Azure VNet
Good afternoon, We have a new Azure virtual environment set up, using two subnets, 10.2.0.0/24 and 10.1.0.0/24. The former is used by the Virtual Gateway, and the latter is the main subnet used by our two Virtual Machines. We have set up a site-to-site VPN between the Azure virtual environment and our Zyxel USG60 firewall.…
-
any way to sync blocked IP's with external sources? (USG range)
Hi, just wondering if there is any way i can sync with external block lists?I notice "Enable URL Blocking For External DB" in URL filter IE - If i block a IP on one device (or service) can it populate to others, from external lists such as https://security.microsoft.com/tenantAllowBlockList Thanks in advance
-
DHCP? problems on USG110
Hi together, I've been having a problem with DHCP (or I think it's DHCP) for a few weeks now. After several attempts, I set up the USG after a factory reset.The problem persists and I cannot isolate it. I have installed the latest version 4.73 ZLD.The problem: I have devices here, including two company laptops that I use…
-
MFA with AD authentication?
I am using a USG Flex500. Users login to SSL VPN with their AD credentials (setup via Auth. Method/AAA Server in object). However if I try to setup MFA for this users group, I don't get the "set up google authenticator screen" option. It seems this setup is only shown for local users. You can try this yourselves with the…
-
USG110 IpSec VPN Issues
Hello, I have a strange issue on a site-to-site VPN scenario, using 2 USG-110. The issue is that, normally once a week or more, the bandwidht goes incredibly down on the tunnel, and only if I reboot twice (because the firt reboot don't work) both the USGs, I can solve the issue. Can anyone help me understand what can cause…
-
Dovrei configurare un USG Flex 100 su connessione pppoe
Dovrei configurare un USG Flex 100 su connessione pppoe ho le seguenti informazioni: Username: 42995@s-tracert.it psw: xxxxxxxxxx VLAN: 835 Ho anche seguito questa vs guida (https://support.zyxel.eu/hc/it/articles/360001390334-Configurazione-di-una-VLAN-su-un-interfaccia-WAN-PPPoE) ma non riesco a connettere il firewall
-
PIXELATED IMAGES IN AUTOCAD GEOMAP LOCATION
Every time when they open the GEO LOCATION MAP in the AUTOCAD application and search for the address of the map, the images are pixelated and it takes a longer time to load fully load it. How i can UNBLOCK or EXCLUDE it in the URL THREAT FILTER and make it ACCESS FORWARD? Anyway, the model of firewall that I used is ZYXEL…
-
Playstation 4 On Network USG20
Hey there, I was wondering if i can use any of the VPN methods in order to hide my Playstation 4's Public IP if possible would greatly appreciate any help.. T.Y.I.A
-
SecuReporter email (twice)
Hello, i have a few months problem with SecuReporter report file. Device send me two same email - see photo. I erase Outlook rules, no help. I checked SecuReporter settings and mail server setings, no help. Only one maybe i found on SecuReporter settings : "Always receive report for device agent and admin?" - maybe there…
-
Firmware for old ZyWall
Hi. Where can I find new firmware for my ZyWall USG 20 (don't VPN) ?
-
IPSEC Client: Access to host via Site2Site VPN
I have the following scenario: Users connect with the Zyxel IPSEC Client to the local network 192.168.37.0/24. Now these users should also be able to access resources which are connected via Site2Site VPN. I found the following…
-
need help in setting up public network on Zywall 110
Hi there, i have a single internet connection coming into my zywall 110, this is routed to our internal private LAN. I would like to setup a guest or public LAN that we can have guests, and dev equipment on, that has access to the internet only, and can't interact with the private LAN in any way. last time i tried to set…
-
The new Update with Public IP for DDNS
I little hard to tell
if it works due to the way it works. So the way it works is
on boot up it updates the IP DDNS then after that checks if that IP has
changed after every 5 mins. Which is fine but if you update your DDNS by
website the Zywall does not know this. The idea I had in mind
was to update the DDNS every 5mins…
-
Permanent connection USG60W to windows 2019 server
Hello, I have all my infrastructure protected with a usg60w firewall. I would now like to expand my servers and start uploading them to the cloud. I have rented a server with windows server 2019 and I wish I could always have it connected to my Active Directory that is within my infrastructure. I tried to connect it using…
-
QOS (BWM) for MS Teams
Hello, are there any guides for setting up QOS for MS Teams on ZyXel firewalls? In particular I'm interested in the USG 210. I can see some guidance for QOS/BWM but was wondering if anything specific had already been written up for Teams.
-
BWM for traffic from VPN to WAN
Hi! Besides a few BWM rules that I already have in place in our ATP500 and VPN310, I would like to add a rule for all users connecting via VPN. I would like to restrict their bandwidth FROM the entire VPN zone TO the WAN interface. Therefore I've set up this rule: Unfortunately, it doesn't work. The users who connect to…