Reboot USG110 + startup log

kyssling
kyssling Posts: 107  Ally Member
First Comment First Answer Friend Collector Sixth Anniversary
Hi, today USG110 (FW V4.65(AAPH.1)ITS-WK32) randomly restart, USB disk for log files not functioning (i must re-unplug flashdisk). Thats not my question, so, i see on log :
exception for sparklabs.com (log now is empty, i forget exception more info)
and alot of information
 System [SSI] Create the default trusted certificate's symbolic link: 681XXX -> abd256ed695df59XXX... What is this ? Is both correct and safe ?



Best Answers

  • Zyxel_Kevin
    Zyxel_Kevin Posts: 888  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
    Answer ✓
    Hi @kyssling,
    Thank your information.
    In order to decrypt SSL(TLS) connection between Client and External Server when enable SSL Inspection.Firewall will store a lot of Certificate.Like every OS have Certificate Center.  
    All behavoir are nessarary and normal.Please Ignore that. Thank you
    Kevin
  • Zyxel_Kevin
    Zyxel_Kevin Posts: 888  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
    Answer ✓
    Hi @kyssling
    Yes, Sparklabs is our Cooperative manufacturers.
    So you would find the domain in exception list.
    Thank you.
    Kevin
  • Gennaroq
    Gennaroq Posts: 6
    Answer ✓
    ZyWALL keeps some logs before it reboots.
    If the device reboots abnormally, you may download diag-info to check if there is any core file generated after device crashed.
    If yes, it means device crashed. Please forward this issue to ITS system
    But if there is no such core file, you may check if last logs exist on the USG.
    You can use this CLI command to show logs:
    Router> show logging last-boot entries

All Replies

  • Zyxel_Kevin
    Zyxel_Kevin Posts: 888  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
    Hi @kyssling,
    Could you kindly share the diag-info in Private Messages?
    And Does the message still pop-up? 
    Kevin
  • kyssling
    kyssling Posts: 107  Ally Member
    First Comment First Answer Friend Collector Sixth Anniversary
    Hi @kyssling,
    Could you kindly share the diag-info in Private Messages?
    And Does the message still pop-up? 
    Kevin
    Hello, I sent the diagnostic data via PM, after yesterday's upload of the new FirmWare V4.70 (AAPH.0) ITS-WK46 router restarted and following records appeared again: Info - SSL Inspection - Add Entry of exclude list: sparklabs.com
    Info - System - SSI Create the user trusted certificate's symbolic link ... Vaclav

  • Zyxel_Kevin
    Zyxel_Kevin Posts: 888  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
    Answer ✓
    Hi @kyssling,
    Thank your information.
    In order to decrypt SSL(TLS) connection between Client and External Server when enable SSL Inspection.Firewall will store a lot of Certificate.Like every OS have Certificate Center.  
    All behavoir are nessarary and normal.Please Ignore that. Thank you
    Kevin
  • kyssling
    kyssling Posts: 107  Ally Member
    First Comment First Answer Friend Collector Sixth Anniversary
    Hi @kyssling,
    Thank your information.
    In order to decrypt SSL(TLS) connection between Client and External Server when enable SSL Inspection.Firewall will store a lot of Certificate.Like every OS have Certificate Center.  
    All behavoir are nessarary and normal.Please Ignore that. Thank you
    Kevin

    you mean, including an exception on sparklabs.com ...
  • Zyxel_Kevin
    Zyxel_Kevin Posts: 888  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 500 Comments
    Answer ✓
    Hi @kyssling
    Yes, Sparklabs is our Cooperative manufacturers.
    So you would find the domain in exception list.
    Thank you.
    Kevin
  • Gennaroq
    Gennaroq Posts: 6
    Answer ✓
    ZyWALL keeps some logs before it reboots.
    If the device reboots abnormally, you may download diag-info to check if there is any core file generated after device crashed.
    If yes, it means device crashed. Please forward this issue to ITS system
    But if there is no such core file, you may check if last logs exist on the USG.
    You can use this CLI command to show logs:
    Router> show logging last-boot entries

Security Highlight