USG FLEX H Series - Zyxel Community

Flex 700H stops responding
Does anyone with a 700H have issues with the firewall just locking up and stop responding? Only way to recover it is to pull the plug and start again. Have the logs writing to USB and can see nothing in there that points to why it just locks up. Did have the firewall connected to a 3800 switch via DAC cable but recently…
Standalone and / or Nebula ?
I have been using the "Standalone" management believing I had to pick Standalone or Nebula and stick with that choice. Can I use either AND both Standalone and Nebula management styles at the same time, which ever one I want, anytime I want? Does Model matter, I have a 700 and a 700H.
CLI dhcp enabled false v GUI dhcp selected.
Maybe I'm reading the output of the CLI wrong. But my vlan12 has dhcp on, but the cli says false. Why does the CLI say "false"?
700H set SFP vlans to "Tagged"?
700H multiple vlans on a 10G sfp uplink. How or where do I make sure the SFP Port p14, is "tagged".. I do not see tagged or untagged anywhere, under the internal interfaces. I see "Trunk", but that appears to be WAN only. This 10G sfp is an uplink to a switch, with multiple vlans on the switch and the same vlans configured…
VPN migration USG Flex 700 to Flex 700H
Bonjour, With Flex 700, VPN, L2TP, site to site and client to site, with 30 users, how do you migrate VPN settings to 700H? Thank you for your help.
AD authentication problem
Good morning,after updating a usg-flex100h to the latest firmware, I configured access in vpnssl via AD authentication, I can join the domain, but if I do the test on a user it tells me that it is not part of the chosen CN group even though it is.
How do you setup BWM to reserv some BW for SSLVPN road warriors users ?
The Flex H interface doesn't have anymore a way to use "SSLVPN zone" as an interface to define BWM rules. We can only use WAN or LAN interface. What is the best way to define a BWM rule to catch all SSLVPN traffic ?
restore configuration
Hello, For example: let say i have an usg flex, and rearanged the ports. Like: ik gave p1 the name WAN, and further i configured P2, p3 p4 and p5 as LAN. Wan is dhcp, lan is 192.168.1.1 with dhcp server turned on. I make an backup from the config in nebula. When i do a factory reset of te flex50h. the orinal names and ip…
Import Part(s) of a converted configuration file?
I used the "Configuration Converter" USG Flex 700 to 700H. Could I manually edit the configuration file for only the items I want to import? For example, I would like to export only the ipsec-vpn tunnels from the working 700 and import those tunnels to the 700H. It would be easier to edit the tunnels then make them from…
AP Log Settings
Please add more detailed log categories to the "AP & APC" log settings (similar to the router's log category settings). Currently we can only enable/disable logging. When enabled, the APs spam my syslog collector with nuisance logs (like system monitoring, interface statistics). The USG and Flex routers allow for…
VPNSSL OpenVPN
Hello everyone, they can create multiple openvpn ssl vpns in order to access different subnets based on the account (in the classic firmware versions it was possible)
Inactivate Internal Interfaces
Is there a way to inactivate/disable internal interfaces? Out of the box, the H series has ge3 and ge4 interfaces. I usually want the same untagged interface across all ports. However, I am unable to inactivate the ge4 interface and I have to assign it to at lease one port so that port is stuck on a different subnet. On…
Feature Request: VPN Policy IP Address Objects
When setting up IPSec VPN Phase 2 policies, it gives an option to select an address object. However, it limits objects to a "Host" or "Subnet" objects. Please add the ability to select "Range" and "Interface Subnet" objects as well.
USG Flex 500H Passive device HA mode MFA error
Hello, We have enabled MFA for the admin user. When the Passive device becomes active we cannot access the gui because the MFA is not working. When the Primary device returns active, we can access the gui normally. Tried with firmware 1.32 ga and 132ABZH0ITS-0423-250300903 Thank you
H Series AP Controller Support
Can you please add support for some older APs on the AP controller. I have a bunch of WAC6103D-I and NWA5123-AC HD APs at customer sites that do not appear to be supported by the AP controller on the H series routers. This is problematic as I try to upgrade customers off of the USG series to the Flex H series.
BWM Multiple Priorities
The H series BWM rules allows for setting a Priority (0-7)as well as download and upload limits. Documentation says that any given BWM rule can use any available extra unused bandwidth. However, it is not clear on BWM conflict resolution. How is extra bandwidth divided between rules of differing priorities as well as rules…
Flex 200H 1.32 FW - Missing scheduled email
Hello everyone, I have different H series in production but with 200H firewall I have issues again for scheduled email with daily report. After updating it everything was good until 23rd day, this is the last email it sent: Now it is the 25th day and I missed 2 emails. How can I fix it? PS: No issues with 100H firewalls.
Will H-series support 2FA via email for SSL VPN?
With previous ZLD-based firewalls, we were able to use 2FA via email method for SSL VPN. It was very simple for the end-users and fulfilled the 2FA requirement of most business cyber insurance policies. On H-series with the free OpenVPN client, the end-user needs to manually open a web browser and navigate to the…
security policies
Hello, Not an big issue, but not handy… when you create an new object (service in my case). You click add, but nothing happens… at least… it is, but you first have to go to the last page, en there you have an new entry. Ok, you create an service, and now i want to add a new one. again nothing happens.. oh wait, there is…
DHCP client oddness in FLEX H
DHCP client oddness in FLEX H USG FLEX 200H V1.31(ABWV.0)ITS-0311-GUI Also to note DHCP client is slow to re-get a IP on unplug replug Ethernet plug routing rules with ping on the given interfere take time to enable the rules on ping success. So on FLEX H I have WAN2 on P2 that gets the WAN IP virgin media and VLAN31…

Welcome!

It looks like you're new here. Sign in or register to get started.