-
SecuReporter and VPN user connections logging
It is important nowadays also to be able to see the VPN connections by date+timestamp, duration, username, from where- for a while back, eg a month. It is similar to ADP logs, it can help see if a sustained attack is occuring, and from where, and what is targeted. Given that the logfile capacities on firewall are…
-
IPSec VPN does not work with latest MacOS, restoring a configuration does NOT reinstall the VPN part
Hi all, I have seen the instructions posted in the VPN section and followed them to install IPSec VPN on the newest MacBook with newest MacOS. Older MacOS and notebooks worked fine with the IPSec VPN. Before: IPSec VPN works for Androids and Windows and older MacOS, but does not work with the newest MacBooks with newest…
-
Setting up Firewall USG60
When Im trying to connect to my USG60 it always shows HTTPS with a red text and with a line crossing those letters, port 8443 (https://192.168.0.1:8443/) is used as a default when I have typed in the IP address to my USG60. I dont know where to sort this, if its a security setting in the firewall or if its a security…
-
"Wrong CLI command, device timeout or device logout" after firmware update
I update firmware in USG Flex100W from 5.39(ABWC.0) to 5.39(ABWC.1) during the update I got error message "Wrong CLI command, device timeout or device logout". Despite this device rebooted and in system status screen it says "Firmware update ok". Same error message came when device was rebooted after this. Despite this…
-
SSL VPN slower after 5.39(ABUJ.1) firmware
Hi since upgrading our Zywall USG 500 FLEX to the latest 5.39(ABUJ.1) firmware I am finding SSL VPN performance is slower. Windows file transfers over VPN are intermittantly very slow as well as saving and opening Excel files etc. Has anyone else noticed this? Also can Zyxel support let us know why the SSL VPN client is…
-
zywall secueextendeur
Hello , I have a Zyxel USG FLEX 50 router (USG20-VPN) , for VPN connections , I use zywall secuextender 4.0.4.0 and depending on where I connect, it works well or not at all, a personal wifi access point, it works, a shared connection, it works from time to time or not at all, a public access point also. Do you have an…
-
VLAN on USG200
Hi everyone,I'm using a USG200 firewall to use a VLAN in my case Vlan 20.I configured it on the internal door Lan1 and assigned on the door of my Switch.Everything works if I go to Lan1 from Vlan20, it doesn't work if I go to Vlan20 from Lan1.What's wrong? Thank you
-
USG IPSEC VPN not working with new android 14
Hello, i found no way to have a working VPN between an Android 14 phone (or tablet) and my USG FLEX 200 Firewall. With IPSEC / PSK there is no way to insert username/password in the phone (no support for Xauth) so i tried MSCHAPv2 but even if i follow the step by step guide the VPN connection stop with a "phase 1 local id…
-
Access firewall configuration in bridge mode
Hello there, I am experiencing an issue with my Zyxel USGFLEX50AX firewall configured in bridge mode. The device is connected to a router (192.168.178.1) via the WAN port and has a static IP address of 192.168.178.10. Here are the details of the problem: 1) I am unable to access the web page configuration by navigating to…
-
New Support Center Rules?
Hello! I wrote two support requests on https://support.zyxel.eu. They were closed without comment. Has anything changed in the processing rules? Or am I blacklisted for some reason? The requests were for help setting up the Flex 700H paired with the USG 310.
-
USG flex 200 one core of cpu full
Router# show version Zyxel Communications Corp. image number model firmware version build date boot status1 USG FLEX 200 V5.39(ABUI.1) 2024-11-16 04:07:18 Running2 USG FLEX 200 V5.39(ABUI.1) 2024-11-16 04:07:18 StandbyRouter# Router# show cpu all CPU core 0 utilization: 37 % CPU core 0 utilization for 1 min: 27 % CPU core…
-
LTE firmware update for SBG3600
Hi The SBG3600 LTE performance seems to be much lower for me than it should be. Are there any firmware updates? This is what I've got now: Main Current Firmware Version: V1.00(AAKO.9) WWAN Current WWAN Package Version: 1.15 LTE Current Firmware Version: ALT3100_04_05_06_10_B8_LO kind regards, ArB
-
USG FLEX 50 log format for a Synology log server
Hi ! I'm trying to send my USG FLEX 50 logs to a Synology log server but I'm struggling with the format. Both "Syslog" and "CEF/Syslog" appear to not be supported by Synology, as values are not mapped properly. There is, in the Synology log server settings, an option for a custom format using a pattern parser (for example…
-
SSO entraID
hello, an other question, does nebula support SSO or SAML with Microsoft Entra?
-
Wan fail-over setup with site to site VPN
I have a test setup with dual wan (4 public IPs) and VPN setup with "Primary" and "Secondary". also setting the ip as 0.0.0.0 instead of interface. My understanding is with this setup wan should fail-over if one goes down. (Wan trunking is setup up as least load first) It seems to fail-over but when I ping the other site,…
-
IKEv2 Disable Split Tunneling not working
I want to set up IKEv2 VPN Connection where I want my cliënt to be able to use the remote internet connection, so we can use the fix WAN IP on the server side. I set SecuExtender to Disable Split Tunneling and I added a policy route on the flex with IKEv2_VPN as member, Source address the IKEv2 pool and as Next-Hop: Trunk,…
-
USG FLEX 500 HA mode
Hello, Does USG FLEX 500 support acitve/passive HA in none cloud mode? Cannot find any documentation on how to set it up, if anyone can share it please ? I know in Nebula it is not supported yet, but I've been told it can do HA in none cloud mode.
-
VPN with 2FA don't work
Once the VPN is set up, the screen asking for the verification code does not appear. How can I make the screen appear? I have already tried with different types of VPN and enabled the port. Can anyone suggest a solution? Thanks
-
LAN interface Failover
Hello guys I have an USG 1100 with an physic interface (internal) like 172.16.0.254 with a policy route that send all traffic to 172.16.0.1(another router) for all destination network 172.16.0.0/16 I want add a failover interface (172.16.0.253) that route a secondary router (172.16.0.2) when primary is down. I saw failover…
-
Dual networks - where WAN2 is simply the LAN of the other network - cant talk
Two companies in the same office both have their own networks, and their own (different) ISPs. Neither company is paying for static IPs from the ISPs, so they each only get only 1 dynamic IP. Thus, to have a backup Internet connection, I connected WAN2 of each company's firewall to the LAN of the other. These companies…
