Security - Zyxel Community

USG FLEX H Series
Security Ideas
Your ideas could be new features for Security!

RAW performance of USG FLEX 200
V5.35(ABUI.0) I have disabled all logging and disabled all security services testing locally with a bridge between two PC's one with a HTTP server and the other downloading with Free Download Manager with many threads the best I get is around 440Mb and I'm sure my Zywall 110 is faster then that when I least tested and…
Resolution dns
Hi all, I would like to know how to resolve the resolution of a domain name that must point to an internal ip. I configured in the dns but as a result it points to the firewall ip. Do I have to create some specific rule? can you help me please? Thank you so much
USG FLEX 200 with choppy video on-demand
Hi all... I upgraded my old Zyxel USG50 with the FLEX 200 and have 1 issue with my tv service (Verizon FIOS) and the "VOD" (video on-demand) feature of the STB boxes. With the FLEX 200 the video is streamed in a random pixelated mess. I have tried the basic troubleshooting steps but if I just swap back to the USG50, the…
no official thread for FW4.73 release ?
no official thread for FW4.73 release ?
Are technical specifications reduced in new ATP500 datasheet?
Hello, I was reviewing the new datasheet of ATP500 firewall uploaded on 29-Dec-2022. https://download.zyxel.com/ATP500/datasheet/ATP500_16.pdf Few changes observed: * Zywall word is removed from product name. * Subscription-based licensing kicks in. 1-year gold security pack gets included. * SecuReporter Premium is no…
nested user group not working for l2tp authentication
HelloIMHO nested user groups do not work for L2TP authentication. Let me explain:Say I have 4 users: * l2tpUserHome1 * l2tpUserHome2 * l2tpUserWork1 * l2tpUserWork2 and the following groups:* l2tpGroupHome containing users l2tpUserHome1, l2tpUserHome2 * l2tpGroupWork containing users: l2tpUserWork1, l2tpUserWork2 *…
Rules for drop dns bypass, vpn, TeamViewer
Hello, With which rule can I avoid : Dns bypass on usgflex50w? How to avoid the use of VPNs of the following type ? : . OpenVPN . Wireguard How to avoid using TeamViewer ? Thanks for your suggestions
SSL-Inspector and Emails
Hello, is it true, that the SSL inspector still cant decrypt Emails with SSL? (refenece, Handbook ATP200, version 5.0, 5/2021) So that means, If i want a security scan of my emails with the apt200 i need to deactivate SSL for Emails.
SecureExtender connection is not stable only with wireless connection ATP100W
I installed a new ATP100W and configured the VPN with SSL. Connecting from a wired network the connection works correctly. When I connect via wireless the connection drops after a few seconds. I've tried both from the cell phone hotspot and from different access points. I have verified that the MTU of the card is 1370. The…
SecuReporter Report via download link? - Spam or valid?
Presently we're commissioning our USG700Flex in "on premise" mode. The USG is not yet in production system and most of the time still switched off. SecuReporter is also not activated. Today we've received an emailfrom: <do-not-reply@secureporter.cloudcnm.zyxel.com>subject: SecuReporter Schedule Report (Organization: our…
SecuReporter
Hi all, I would like to know if it is possible to configure my usg flex100 by associating a user or mac address to a client ip in order to analyze the web traffic of the device. I kindly ask for your help. Thank you so much
SSL VPN still available?
Knowledge Base | Zyxel I was wondering if this option is still available with the newest firmware and an zyxel usg flex 500. I would like to use this for users who want to connect to an internal website with their mobile devices. I cannot find it anymore i the settings. (SSL vpn of course there is, but the next part i…
HOW TO BLOCK TIKTOK WITH ZYXEL USG USING APP PATROL?
Hello, I have tried to prevent users from access tiktok but i cann't. When I go to : SETTING -> OBJECT -> APPLICATION -> SOCIAL NETWORK Tiktok is not listed. How do I prevents using tiktok app from their mobile phone? Employees spent most of their time on tiktok using company wifi. I have attached list of social network on…
Help setting up a site-to-site VPN with VTI
Hi all, I need to set up a route-based site-to-site VPN from my ZyWall 310 with a supplier company so they can provide some services to us. This is not my skill area so I'm feeling my way and looking for some help! The supplier has sent me details and it will be connecting to Azure so I have been using the guide here How…
Connection Site to site Ipsec VPN
Hello everybody I have a site to site Ipsec VPN connection between 2 Zywall 110 How can I activate ICMP trough this tunnel ? I have the same Problem on many site 2 site with Zyxel Firewall. Thanks
What is IP Reputation Hits in SecuReporter App?
Hi, I use Genuine windows 11 laptop OS. I have installed ATP200 firewall with latest firmware in my office. and I have noticed slow wifi connections. So, I configured my laptop WiFi IP with a static IP, instead of usual DHCP IP. My problem: Whenever I browse through various websites mainly for customer support. There are…
USG FLEX 50W Not Following Allow Policy
I have a USG FLEX 50W (USG20W-VPN) running V5.32(ABAR.0) that was just installed in front of a PBX. Initially all went well. After installation, we could make calls in and out. Now, for some reason, it is dropping packets due to the default rule when it should not. I pulled a packet capture and see the packets for a new…
HTTPS virtual server - requests coming in on different ports?
Hello all, I'm trying to configure an ATP500 to pass https traffic to a FileMaker Pro server. I have everything set properly as far as I can tell, but when I look in the logs I see: Match default rule, DNAT Packet, DROP Source=IP of Source Server:5103 Destination= IP of internal FMP server:443 ACCESS BLOCK I can't figure…
USG Flex Arp Table Flushing Issue
I had a few extra devices added to a vlan to configure them to deploy elsewhere, and then removed them and released the ip addresses assigned to them. I just tried to add another to configure and received an ip conflict error from the previous device I had added and removed 2 weeks ago. I used the cli to view the arp…
x2 usg100 vpn site-to-site question
Hi all I have read this guide for site to site VPN https://support.zyxel.eu/hc/en-us/articles/360001378873-VPN-Configure-IPSec-Site-To-Site-VPN#h_01GM2RA8B5PS1XV4HBQXRYSEVQ What I want to do is connect x3 sites (one central and x2 branches) together but my question is will each site use the gateway/dns of the central site…

Welcome!

It looks like you're new here. Sign in or register to get started.

Security Highlight

[2025 March Spotlight] USG LITE 60AX Shines Bright with Media Acclaim and Awards 🌟
The Zyxel USG LITE 60AX has quickly risen to prominence, earning enthusiastic praise from tech media and prestigious industry awards 🏆. Designed for small businesses and teleworkers, this WiFi 6 security router has struck a chord with reviewers and experts alike. We deeply thank the following media and organizations for…
[2024 Oct Notification] Boost Your Network with the Latest ZLD5.39 Updates
Enjoy stronger traffic control with a new CLI command to drop TCP SYN packets with data, faster filtering, and a fix for Chrome’s TLS 1.3 content filter bug. Update today for seamless protection. Zyxel is committed to continuously updating your devices for important maintenance information. This latest release also…
[2024 Sept Notification] SecuExtender SSL VPN macOS and Windows Clients: EOL and Upgrade Options
SecuExtender SSL VPN macOS and Windows Clients: EOL and Upgrade Options We want to inform you that the SecuExtender SSL VPN macOS and Windows clients have reached their end of life (EOL). Zyxel is no longer selling, maintaining or supporting these products. However, for those who recently purchased a license, we understand…

View All