-
USG40w config conversion to USG100felx
Hi alltogether, I'm going to migrate from usg40w to usg100flex and am about to use the config conversion tool on the website. But I haven't yet beacause I'm a bit concerned to upload all my VPN an very security sensitive data up to ab website to let the conversion happen. What do you guys think about my concerns? BR zyx…
-
Reboot USG without web interface
How can I reboot the USG (Flex 700) without the web interface? We have tried to press the reset button without success. Regrading the app patrol signature problem we were not able to access the web interface. In the recovery instructions, it says to restart the device. But not how.
-
ZYWALL 8443 NOT ACCESSIBLE
Good evening everyone, we have an ATP100 that works correctly for ports napped to a NAS TCP 20001 TCP 80 and TCP 443 based on the policies chosen by limiting reachability to my FQDN because I have a dynamic IP connection in the office. The reachability problem of port 8443 configured for the firewall GUI occurred after the…
-
USG500H - SSL VPN connection impossible
Hello, I need to set up the SSL VPN through port TCP 10443 but cannot make it work. This is our configuration: USG FLEX 500H FLEX V1.31(ABZH.0) ISP ROUTER 192.168.1.1 (public static IP address, integrated firewall switched off, map forwarding active for some ports including 10443 TCP pointing to firewall, any other mapped…
-
ZYSH scripts in USG FlexH
In the original version of Flex there was a Maintenance-Shell Script function from the beginning, this was very important for transferring parts of configurations between different boxes. In the new Flex H uOS 1.31 series this is no longer there, and it is reportedly not planned for version 1.32 (04/2025). Is there any…
-
DHCP CSV IMPORT on USG flex 500 (V5.10(ABUJ.0))
Hello The DHCP table has an import button to upload a csv file with IP addresses and the corresponding mac addresses to create dhcp reservations. After fiddling around this for 2 hours.... I conclude it does not work?? IP address, mac address, description (less then 16 chars a-z,A-Z,0-9, - and _ ) Is there anyone able to…
-
Nebula Monitoring Mode Issues | Post Signature Firmware Fix
Recently recovered a UFG FLEX 500 that was affected by the signature issues. When the issue arose, the device was showing as offline constantly in Nebula (other affected devices would periodically go online & offline). However, since the firmware patch was applied, the device still showed as offline. So, I went to the…
-
Secu Extender 4.0.4.0 Snapdragon
Hi, I have tried to install secuextender 4.0.4.0 on a surface laptop 7th. The processor is a Snapdragon ARM. The installation goes through, but secuextender does not open. I suspect it is due to the ARM processor. Does anyone have similar problems or is there a solution? The helper service is started. The user log shows…
-
Latests Logs Dashboard widget empty
Hi, This area remains empty. Can't find how to view activity in that widget. Logs correctly recorded in Monitor→Log, but useful to have it in the Dashboard. Thanks for your help, Jean-Pierre
-
ATP 500 and Web Gui unusable
I have an ATP 500 that is not directly exposed on the Internet. Since this morning I can no longer reach the configuration web interface. It remains loading with Firmware 5.39 ABFU 1. And even some sites no longer load correctly. Restoring the previous firmware version (5.39 ABFU 0) everything is OK. To restore I used…
-
Recovery Steps for USG FLEX/ATP Series Application Patrol Signature Issue en HA
Hi, I have several affected ATPs in HA, especially ATP800. How do I try to perform the recovery process? Same as a single ATP? Is there a different protocol? Thanks.
-
Zywall 310 update a certificate
I need to update the certificate because it's expiring, the new certificate is the same as the old one except for the expiry date. If I try to upload it says to me it already exists. I deleted the old certificate and deleted it in all the services linked but I still have the error -17018 PKI certificate already exists How…
-
Zyxel USG Flex H series - How to configure route from VPN client (Site A vpn server) to Site B
Hey dear community, can't figure out how to configure this scenario Site A - Zyxel USG 100H series (configured Remote Access VPN for client, configured Site to Site VPN from site A to site B) Site B - Zyxel USG 100 series (configured Site to Site VPN from site B to site A) Site to site VPN works perfectly in both ways.…
-
USG Flex IKE v1 VPN connection to Fritz!Box
Hi! First post as the community and the help posts have been very helpful throughout the past years. We do have a setup with an USG Flex on our company site. Due to lack of time we didn't implement network segregation in the past and it was configured recently. The USG would provide multiple interfaces (most of the virtual…
-
IPSEC VPN behind a NAT
I am try to setup an IPSEC VPN, between and USG 310 and USG 20W. But the USG 20W is behind a NAT, because the internet provider give the service behind a NAT. I try to setup but even in the NAT Traversal flag is on I cannot make it working. Below the logs, do you you have any suggestion? No. Date/Time Source Destination…
-
Create policy rules VPN Access for different Geolocations
A client has 2 IPSEC VPN USers: 1 works from Belgium, other 1 from USA He wants the useraccounts only to work from their own region. So I create 2 policy rules WAN → ZyWALL, IPv4 source GEO_BELGIUM, Service IKE and User: belgium ext-group-user(AD User!) WAN → ZyWALL, IPv4 Source, GEO_USA, Service IKE and User: USA…
-
CDR Testing
Hello, my first post in this section… We want to setup CDR for customers, but first want to get familiar with it, and find out how we configure it, it does what we want. Is there a method to test it? Like download some (innocent) files but files what triggers CDR? I know Microsoft has some test files, but do they trigger…
-
I have a question about an IPSEC with VTI.
I have a question about an IPSEC with VTI. I have two routers (USG FLEX 700H AND USG FLEX 500) with dual wan I have made an IPSEC from ROUTER-1 WAN 1 to ROUTER-2 WAN 1 I have made an IPSEC from ROUTER-1 WAN 2 to ROUTER-2 WAN 2 Remote LAN Router 1: 192.168.100.0/24 Remote LAN Router 2: 192.168.1.0/24 Router 1: VTI1(via…
-
IP range
On the Flex 200 firewall, can I increase the IP range from 254 to 512 leaving the same current network submask, in this case 255.255.255.0? Is there a possibility to increase my IPs without changing the submask?
-
Device error, Wrong CLI command, device timeout or device logout.
Since this morning I get the above error when I log on to the Zyxel USG Flex 200 via the web interface. And the web display is empty, nothing can be displayed or operated. What can I do to resolve this error?
