USG FLEX H Series - Zyxel Community

restore configuration
Hello, For example: let say i have an usg flex, and rearanged the ports. Like: ik gave p1 the name WAN, and further i configured P2, p3 p4 and p5 as LAN. Wan is dhcp, lan is 192.168.1.1 with dhcp server turned on. I make an backup from the config in nebula. When i do a factory reset of te flex50h. the orinal names and ip…
Import Part(s) of a converted configuration file?
I used the "Configuration Converter" USG Flex 700 to 700H. Could I manually edit the configuration file for only the items I want to import? For example, I would like to export only the ipsec-vpn tunnels from the working 700 and import those tunnels to the 700H. It would be easier to edit the tunnels then make them from…
AP Log Settings
Please add more detailed log categories to the "AP & APC" log settings (similar to the router's log category settings). Currently we can only enable/disable logging. When enabled, the APs spam my syslog collector with nuisance logs (like system monitoring, interface statistics). The USG and Flex routers allow for…
VPNSSL OpenVPN
Hello everyone, they can create multiple openvpn ssl vpns in order to access different subnets based on the account (in the classic firmware versions it was possible)
Inactivate Internal Interfaces
Is there a way to inactivate/disable internal interfaces? Out of the box, the H series has ge3 and ge4 interfaces. I usually want the same untagged interface across all ports. However, I am unable to inactivate the ge4 interface and I have to assign it to at lease one port so that port is stuck on a different subnet. On…
Feature Request: VPN Policy IP Address Objects
When setting up IPSec VPN Phase 2 policies, it gives an option to select an address object. However, it limits objects to a "Host" or "Subnet" objects. Please add the ability to select "Range" and "Interface Subnet" objects as well.
USG Flex 500H Passive device HA mode MFA error
Hello, We have enabled MFA for the admin user. When the Passive device becomes active we cannot access the gui because the MFA is not working. When the Primary device returns active, we can access the gui normally. Tried with firmware 1.32 ga and 132ABZH0ITS-0423-250300903 Thank you
H Series AP Controller Support
Can you please add support for some older APs on the AP controller. I have a bunch of WAC6103D-I and NWA5123-AC HD APs at customer sites that do not appear to be supported by the AP controller on the H series routers. This is problematic as I try to upgrade customers off of the USG series to the Flex H series.
BWM Multiple Priorities
The H series BWM rules allows for setting a Priority (0-7)as well as download and upload limits. Documentation says that any given BWM rule can use any available extra unused bandwidth. However, it is not clear on BWM conflict resolution. How is extra bandwidth divided between rules of differing priorities as well as rules…
Flex 200H 1.32 FW - Missing scheduled email
Hello everyone, I have different H series in production but with 200H firewall I have issues again for scheduled email with daily report. After updating it everything was good until 23rd day, this is the last email it sent: Now it is the 25th day and I missed 2 emails. How can I fix it? PS: No issues with 100H firewalls.
Will H-series support 2FA via email for SSL VPN?
With previous ZLD-based firewalls, we were able to use 2FA via email method for SSL VPN. It was very simple for the end-users and fulfilled the 2FA requirement of most business cyber insurance policies. On H-series with the free OpenVPN client, the end-user needs to manually open a web browser and navigate to the…
security policies
Hello, Not an big issue, but not handy… when you create an new object (service in my case). You click add, but nothing happens… at least… it is, but you first have to go to the last page, en there you have an new entry. Ok, you create an service, and now i want to add a new one. again nothing happens.. oh wait, there is…
DHCP client oddness in FLEX H
DHCP client oddness in FLEX H USG FLEX 200H V1.31(ABWV.0)ITS-0311-GUI Also to note DHCP client is slow to re-get a IP on unplug replug Ethernet plug routing rules with ping on the given interfere take time to enable the rules on ping success. So on FLEX H I have WAN2 on P2 that gets the WAN IP virgin media and VLAN31…
Security Policies geo blocking
hello, Hmm again a feature i'm missing in de security policies. something what was just there with the flex 200. i cannot use geo blocking. (like i allow this only from germany for example). I really hope this will be possible soon. yours dennis
200H IPSec VPN remote access authorization failure
200H firmware V1.21(ABWV.0)ITS-24WK37-0909-240801054 On 1.21 series firmware I'm getting IPSecVPN authorization failure. It worked on 1.20 with same settings. From 200H logs: generating INFORMATIONAL response 2 [ N(AUTH_FAILED) ] parsed INFORMATIONAL request 2 [ N(AUTH_FAILED) ] generating IKE_AUTH response 1 [ IDr CERT…
USG Flex 500H HA mode firmware upgrade with MFA
Hello, We have two 500H in HA mode and we would upgrade the firmware. We are trying to follow these instrutions from the manual: Firmware Upgrade on Paired Zyxel Devices 1First, upgrade the firmware to the passive device. 2After upgrade, the passive device becomes the active device and handles all traffic during the…
H-series missing VPN 2FA option for external(AD/LDAP) users
Is there a timeframe to add back the ability to enable VPN 2FA for External-Users on the H-series? We normally use external-users/external-groups to centrally manage the allowed VPN users. On the H-series, there is no way to do 2FA for these external users without using an (expensive) 3rd party service such as DUO. The…
Guest Network
I see the option Guest Network isn't available for the Flex H series anymore. While this this very handy to Use. I hope it will come back in an future update!
It is possible to have vlan associated with the 2 fiber ports.
It is possible to have vlan associated with the 2 fiber ports, p13 and p14. When I go to configure the vlan I can only select the p13 or p14 port, on the copper port instead it is possible to associate it on multiple ports.
Please reboot the device first, then perform the firmware upgrade.
I have a USG FLEX 200H running Firmware V1.32. When I tried to upgrade to the latest version, the web GUI showed that the device needs to be rebooted beforehand. I'm not sure why a reboot is required before upgrading the firmware. Could you please clarify?" Here is my current resource usage 2. The device has been…

Welcome!

It looks like you're new here. Sign in or register to get started.