USG FLEX H Series - Zyxel Community

FLEX 100H firewall zone bug
We ran into some odd behavior that appears to be a bug on a FLEX 100H running latest 1.32 firmware. We have a firewall rule which blocks NetBIOS packets from ANY-to-WAN, and another rule which allows all packets from LAN-to-IPSec. For some reason, the ANY-to-WAN rule is blocking packets that are supposed to be sent over…
Email from not accepted
FLEX200H V1.32(ABWV.0)ITS_719_20250606 Email Daily Report then I tried admin@zyxel-router.ddns.net and that worked but then could not change it any more went to Notification and changed Send From to admin@zyxel-router7.ddns.net and it accepted went back to Email Daily Report and it shows this
AD Authentication: Invalid DN syntax
Hello. Just update to 1.20 firmware to enable AD authentication. The firewall FLEX500H is allready joined to AD and I can see it as Computer in Active Directory users and computers. When I try to test the configuration I get the error "Invalid DN syntax". What's wrong? thank you
Nat rule creation issue on our 500H
Hello, Firmware: V1.32(ABZH.0)ITS-0423-250300903 I'm here again... I don't wkonw what excactly is going on our 500H, and sincerly I don't have the time to waste on this....but… This is the third NAT rule I created that freezed the device and I had to reboot it To summarize action made: Create a new NAT rule What happened…
Boot Loop & Firmware Download
Hello, I factory reset a 100h and now it's stuck in a boot loop. Where can I download the firmware so I can load it on a USB? Are there particular instructions for the Flex 100h to boot from USB?
VPNSSL AD authentication problem
Good morning,I can't add an "ext-group-users" with AD authentication, in the access user to a vpnssl, I can insert a group that contains "ext-group-users" but I am not authenticated
Full VPN tunnel from FlexH 1.32 FW to Nebula Org firewall
Hello everyone, I have a FlexH configured on prem since months ago but where it is installed I have limited connection, blocked ports and useless filters. I need to create a full tunnel VPN with another Org that I have configured on Nebula so all the traffic from the FlexH goes to that Org in Nebula where I have NO filters…
Support Request: Disable SSL VPN Gateway on USG FLEX 100H
Hello, I have a Zyxel USG FLEX 100H and I'm currently using SSL VPN. I would like to ask if it's possible to configure the VPN so that connected clients use their own public IP address for internet access, rather than routing traffic through the firewall's public IP (gateway). Essentially, I'm looking for a way to disable…
IPS iSCSI warnings.
What is this warning telling me? I am familiar with both the source and the destination machines. Is this reporting that the source "192.168.11.13" is doing something to the destination that is harmful or unwanted? I am very familiar with the source, and I would like to assume it is clean an safe. What is IPS detecting…
Wireless clients do not get a DHCP address unless I set the SSID to vlan 1?
I have VLan id 12 setup for wifi across 2 PoE switches. Everything seems to be working fine. BUT. If I configure the "SSID" to vlan "12", which is where I think it should be. Then my wifi clients "time out" waiting for an IP Address. Yet, if I set the "SSID" to vlan 1, then wife clients get a dhcp address from the vlan 12…
No puedo actualizar Firmware de firewall usg flex 200H por primera vez
Buenas tardes algun usuario de la comunidad que pueda enviarme los firmware uOS 1.08 (ABWV.1)C0 y 1.10 ya que estoy configurando por primera vez, y me indica que no son compatible lo que estan en el portal zyxel ni los que descargo por my zyxel. muchas gracias
Zyxel 500H – Help Setting Up Internet Failover
Hello, I have a Zyxel 500H firewall. Today, a second backup internet line was activated, and I would like to enable failover mode. However, I can't find any guides on how to configure this feature on the firewall. Could you help me with the setup? Thank you!
700H Problem IPS "Security Service" and IPSEC
IPsec-VPN tunnels, the tunnel traffic gets clobber by the IPS Security Service "Prevention" feature. If I un "Enable" IPS, the vpn tunnels function fine. Specifically running SSH connections over the VPN to or from remote servers. If I "Enable" IPS the tunnels drop SSH traffic, then SSH starts throwing errors:…
VLANs Setup on Flex 500H
I am trying to set up my Flex 500H with 5 Vlans, all using separate ports instead of router-on-a-stick style. Can someone assist me with the setup on the Flex 500H (I am a previous Cisco guy). How do I setup the base ports (ip addresses, etc)? I will use one vlan for management, and can set up the vlans but do not know how…
SSLVPN Issue HA
Hi all, I am trying to setup a remote SSLVPN access with an OpenVPN client, but I always get a timeout error. My scenario: 2 Flex 500H in HA mode. A simple IPsec IKE2 remote access (with a self-signed certificate) works as well. Now I would setup a SSLVPN access. Related WAN-to-device security policy is correct. USG is…
Console web blocked
Hello, A customer who recently purchased an USG FLEX 700H encounters an error when accessing the administration page. Different web browsers have been evaluated. The problem remains the same. No error is visible, but it returns to the original page. I found no information. Thank you for your help. Greetings. Philippe…
WAN Trunk for backup option?
Hello everyone, I went on the webUI with 1.32 version and I see this: and when I try to select the desired trunk I see these options: I cannot see where I can say to the firewall that a specific WAN is only for backup. For example you have WAN1, WAN2, WAN3. WAN3 has a limited amount of GBs for the internet traffic so I…
Feature Request: BWM QoS
Can you add the ability to set 802.1p and DSCP tagging on BWM rules?
bug nat rules
ik think i found a small bug in nebula. I'm configuring nat rules when i create an rule, i see External port and Internal port filled in onpremise, but when i look in nebula, those 2 are empty. when i edit the settings of this rule, i don't see external port and internal port they are called external and internal service.…
200H - No WAN from ISP modem
Hi, I am installing the firewall in question to a client of mine, replacing an old NSG50. Unfortunately, by connecting from the modem to the p1 (GE1) port of the firewall, either in dhcp or static, I cannot get ip from the modem. The old NSG50 was configured in static mode and reconnecting it I have no problem. The P1 port…

Welcome!

It looks like you're new here. Sign in or register to get started.