USG FLEX H Series - Zyxel Community

[USG Flex H Series] - PPPoE over VLAN - Reference
Hello everyone, My ISP uses a PPPoE over a specified VLAN, so I need to create two interface types, one for the VLAN with DHCP (that obtain 0.0.0.0) and then a PPPoE that uses this VLAN Interface (and obtain the external IP). Now I have some NAT/Rules/BWM/Address to do. My question is: on what interface I need to configure…
1.35FW Patch2 - Missing MLO WiFi parameters
Hello everyone, I updated several H series FWs to latest firmware but I cannot see MLO options for WiFi managed: Where can I find it to use all the hardware options of the APs installed on Clients' sites?
1.35FW Patch2 - H series family has typo on notification
Hello everyone, I updated several H series FWs to latest firmware and I see that there is a typo in the emails sent as notification:
[USG Flex H] - Policy Control - Wrong Source/Destination Group
Hello everyone, I have created an group object that contains other groups. When I configure it as Source/Destination of a Policy Control, seems that is presented only one group of these (seems always the last group in the list). Seems that is disappeared the "ALWAYSDenyWAN" group and in this case I don't know if is only a…
FLEX700H Ignoring Routing Rule
I have a static route set to push traffic to a specific IP address down an IPSEC VPN connection but the firewall seems to be ignoring it entirely. If I do a traceroute to the destination using the network tool diagnostic I just get 30 lots of ***. Other static routes using this VPN are working. Anyone have any ideas?
Flex 200H IPSec Remote Access VPN
Hi I need help to set up Flex 200H IPSec Remote Access VPN. I have tried activating IPSec Remote Access VPN, and on the client chosen Get from server. But it won't finish seting up. Error: server not found. Manual setup won't work either. What can I have missed?
[USG Flex 100H] - Policy Control not working
Hello everyone, I have an USG Flex 100H with some custom Policy Control. I have a dedicated Wifi VLAN used for all my IoT devices, and one of the custom rule, deny all the traffic from this VLAN to "Any" (excluding ZyWall) for any service, in which the Source IP is an object (IP Address list) and the destination is Any.…
Flex H Models Routing Protocols e.g. BGP
I am missing routing. Static and Policy is just some basic stuff. Where are advanced routing protocols? BGP - really important since Internet standard!? Not even RIP? OSPF? In the old Flex 700, I had eg. BGP routing - although sadly only through the shell, but at least it was there AND working - in my case in conjunction…
USG FLEX 200HP - FTP open and exposed on WAN by default, it's a bug?
Yesterday I received a lot of warnings from my 200HP: Model Name: USG FLEX 200HP Host Name: usgflex200hp Event: Admin Login Fail Date/Time: 2025-09-21 18:29:16 +02:00 Account: admin Source: 5.56.9.84 Location: Italy Destioation: xxx.xxx.xxx.xxx Message: Failed login attempt to Device from ftp (incorrect password or…
how to limit the bandwidth of a VLAN
Hi, I have one more question. One of my WANs has a speed of 500Mb Full Duplex, and I would like 100Mb of that speed to be directed to a specific VLAN. How can I do this on the USG Flex 200?
Flex 100H IPSec Remote Access VPN windows config issue
Zyxel Community, I need help making VPN configuration adjustments. The scenario. I have a client using the new USG Flex 100H configured with IPSec Remote Access VPN. On the clients, I am using the Windows VPN utility and it was configured with the provided batch script and security certificate that was downloaded from the…
Nebula Registration pop-up window
Dear Team, I have a 200H, that is registered in Nebula, and I can see it there, still whenever I log in to the standalone GUI, I get this pop-up window: Is there a way to get rid of this somehow?
Interface offline after V1.35(ABZH.2) update
After the automatic firmware update to version V1.35(ABZH.2), clients connected to certain internal interfaces no longer had internet connectivity. I simply modified the "description" field of the internal interface and pressed “apply” and everything returned to normal. The customer's firewall is a 500H. We have…
[USG FLEX 100H] IP Reserved on local DHCP Server and NULL as HostName in the DHCP Log
Hello everyone, I have a problem into DHCP Log section. When a device with IP reservation try to obtain an IP from the interface's DHCP Servers, into the log appear the HostName as "(NULL)". For Example: DHCP server assigned 192.168.0.21 to (null)(AB:CD:EF:GH xxxx) DHCP server assigned 192.168.0.8 to (null)(AB:CD:EF:GH…
SSL VPN with multiple address pools on Zyxel USG Flex 100H
I have a Zyxel USG Flex 100H with an SSL VPN configured on the default pool. My LAN uses two separate subnets, each with a dedicated server. Is it possible to configure the SSL VPN to handle multiple address pools so that both subnets can be accessed?
FQDN Expire cache by TTL look back and questions
So I have used FQDN in the past a lot and back when it was released had asked for some changes some was done others were not. One of the changes was when FQDN TTL is 0 and gets removed from the Cache that the firewall session continues which I'm guessing hold true for FLEX H? The other problem was BWM like on my VPN300…
Flex 500H manual migration of user account configurations
This is already my second consultation regarding migrating the configuration from USG Flex 200 to Flex 500H. This time, I am trying to migrate part of the configuration related to user account definitions (including passwords). I have successfully extracted the necessary information from the Flex 200 configuration file and…
FLEX700H and IPSEC VPN with MFA via e-mail code
I have a Flex700H and i have setup IPSEC VPN for remote users to connect. When i turn on MFA for each user the only option that is available is Google Auth APP. I prefer MFA with a authorize e-mail sent to that users e-mail to click auth I do not user secure extender client due to cost and want to use the native IPSEC VPN…
Flex500H IPSec VPN Issue
Hi all, Here's my problem: It's not possible to connect remotely to the IPSec VPN (client to site) if the peer IP address is not the main one. (Configured as secondary in my scenario). Never had problem with usg/atp using wan virtual intercaces. Is it a normal behavior on H Series? Regards Lorenzo
[USG Flex 100H] - DHCP not release any IPs for Interface (randomly)
Hello everyone, I have an USG Flex 100H with the latest firmware, and in the night I always switch off my network devices (router, firewall, access point). In the morning, when I switch back its, sometimes - randomly - the firewall not release any IPs via DHCP for an Interface - also randomly - (sometimes no IPs for LAN…

Welcome!

It looks like you're new here. Sign in or register to get started.