Security - Zyxel Community

USG FLEX H Series
Security Ideas
Your ideas could be new features for Security!

E-mail alert format
Hi, The alert emails from the firewall (USG500 Flex) are unreadable (see below). How can I format the message? I want this vertical format (or any readable solution): No: 1 Date/Time: 2025-02-12 13:43:47 Category: secure-policy Priority: alert Source: 1.xx.xx.xx:27181 Destination: 212.xx.xx.xx:7523 Note: ACCESS BLOCK…
NIS2 - HowTo
Hi everyone, I need help configuring Zyxel devices in accordance with the NIS2 directive. I am familiar with the general principles of this directive, but I lack detailed information on: How to properly configure Zyxel devices according to NIS2? What elements should be included in security reports? Which vendors are best…
Need Help USG Flex 100 VPN mac and Windows
Hi there. Current have a client with USG Flex 100. That client is using L2TP/IPSec to connect with Windows 10 clients and iphones. SSL clients paid version to connect with macs. But now macos 15 is not compatible anymore with SecureExtender. How can i configure IKE2 protocol to work in OS15 but dont messup iphone and…
ZyXEL SecuExtender on Mac OSX Import Certificate greyed out
I have to install vpn client on a MAC, but if I want to import the (selfsigned) certificate (PEM → User certificate → certificate.crt) the OK button stays greyed out. On WIndows SecuExtender never had this problem. What am I doing wrong?
Bug report - DHCP table
I wish to report a display bug in the DHCP table display. Hardware: USG20W-VPN (USG Flex 50W) Firmware: V5.39(ABAR.1) Severity: Cosmetic See attached image - all timestamps for "Last Access" are identical to the second. Even though half the listed devices were powered down minutes or hours before the page was loaded.…
Can We Influence Client Routing Behavior With Zyxel L2TP or Other VPN?
Back in the day, when Apple had a server product, a number of my clients used its L2TP VPN feature. One of the features of this product was the ability to provide routing configuration information to the VPN clients, telling them which traffic to send over the VPN and which to send via the normal ISP. Is anything like this…
usg flex 200hp how can I convert wan port to lan port for ZyXEL WBE660S
usg flex 200hp how can I convert wan p2 port to lan port for ZyXEL WBE660S
ZyXEL Configure Converter VPN100 to Flex200
Hi Noticed at: convert.cloud.zyxel.com I can convert VPN100 only to Flex 200H or Flex200 HP. I happen to have Flex 200. Is there a way to have my VPN 100 configuration converted to Flex 200?
Geography does not work
wantes to block access from outside austria for an external service. adde d geo austria , made nat and securriy rule with source austria. Somerimes it work. Other times source is blocked and the block is logged Log shows ,that the source comes from austria. bit austria should be unblocked. Removing geo give access to all…
flex100H IKEv2 with lan Radius server
Hi. I have an AD server with radius server on lan. I want to connect to flex100H with IKEv2 to the router with radius credentials. It just does not work. Can you help me?
Optimal resource usage for USG firewalls using GeoIP and policy control?
I have defined many IPv4 entities based on subnets, ranges, geography. These entities are partially gathered in address groups, partially are used individually. For some single entities and for the groups, there are policy controls defined- mostly containing the same rules. Are there limitations for building and processing…
RECOVERY FIRMWARE
Good evening, I have an ATP200 that is constantly rebooting, so I connected to the site to download a new firmware. I unzip it and through a CMD from a LAN machine I connect via FTP to replace it as per the procedure in the screen but I get an incorrect model error. Does anyone have any ideas on this? Thanks.
Change Zyxell usg 60
Good morning, I need some advice from someone who is more experienced than me. We are changing the internet connection and moving to a 2.5 Giga connection. We currently have a Zyxell USG 60 with two WAN interfaces (we also have a backup internet connection). Can anyone advise me on which product to think about?
USG Flex H country label
I noticed that in the USG Flex 200H and 500H the country label is not shown in the Logs
Zywall 110 killing RDP session
Hi, I have taken over a network from another company and on this network there is a Zywall 110 configured as a L2TP VPN router. Everything worked well till this morning where suddenly no one was able to login remotely with RDP. If I use RDP locally it works, but through VPN I get a credential error. I am not a VPN/Firewall…
USG40w config conversion to USG100felx
Hi alltogether, I'm going to migrate from usg40w to usg100flex and am about to use the config conversion tool on the website. But I haven't yet beacause I'm a bit concerned to upload all my VPN an very security sensitive data up to ab website to let the conversion happen. What do you guys think about my concerns? BR zyx…
Reboot USG without web interface
How can I reboot the USG (Flex 700) without the web interface? We have tried to press the reset button without success. Regrading the app patrol signature problem we were not able to access the web interface. In the recovery instructions, it says to restart the device. But not how.
ZYWALL 8443 NOT ACCESSIBLE
Good evening everyone, we have an ATP100 that works correctly for ports napped to a NAS TCP 20001 TCP 80 and TCP 443 based on the policies chosen by limiting reachability to my FQDN because I have a dynamic IP connection in the office. The reachability problem of port 8443 configured for the firewall GUI occurred after the…
USG500H - SSL VPN connection impossible
Hello, I need to set up the SSL VPN through port TCP 10443 but cannot make it work. This is our configuration: USG FLEX 500H FLEX V1.31(ABZH.0) ISP ROUTER 192.168.1.1 (public static IP address, integrated firewall switched off, map forwarding active for some ports including 10443 TCP pointing to firewall, any other mapped…
ZYSH scripts in USG FlexH
In the original version of Flex there was a Maintenance-Shell Script function from the beginning, this was very important for transferring parts of configurations between different boxes. In the new Flex H uOS 1.31 series this is no longer there, and it is reportedly not planned for version 1.32 (04/2025). Is there any…

Welcome!

It looks like you're new here. Sign in or register to get started.

Security Highlight

[2024 Sept Notification] SecuExtender SSL VPN macOS and Windows Clients: EOL and Upgrade Options
SecuExtender SSL VPN macOS and Windows Clients: EOL and Upgrade Options We want to inform you that the SecuExtender SSL VPN macOS and Windows clients have reached their end of life (EOL). Zyxel is no longer selling, maintaining or supporting these products. However, for those who recently purchased a license, we understand…
[2025 May Tips & Tricks] Blocking AI Risks Before They Spread — App Patrol Now in Action
Recent reports from South Korea allege that DeepSeek has been transmitting user data to servers in China and the U.S., raising further concerns about its security. To help mitigate potential cybersecurity risks posed by generative AI applications like DeepSeek, Nebula’s App Patrol now supports the ability to restrict its…
[2025 May Spotlight] Smarter and Faster: Discover What’s New with SecuPilot!
If you’ve been using Zyxel SecuReporter, you probably already know SecuPilot — our AI-powered helper that enhances SecuReporter to make network security management smarter and easier for SMBs and managed service providers (MSPs). 👉 Just to quickly recap: SecuPilot lets you ask security questions in plain language,…

View All