Zywall USG FLEX Series, ATP Series & VPN Series - V5.37P1 Firmware Release

Zyxel_Stanley

Zywall USG FLEX Series, ATP Series & VPN Series Release Note Oct, 2023

Firmware Version on all models

USG FLEX		ATP		VPN
USG FLEX 50	V5.37(ABAQ.1)	ATP100	V5.37(ABPS.1)	VPN50	V5.37(ABHL.1)
USG FLEX 50W	V5.37(ABAR.1)	ATP100W	V5.37(ABRW.1)	VPN100	V5.37(ABFV.1)
USG FLEX 100	V5.37(ABUH.1)	ATP200	V5.37(ABFW.1)	VPN300	V5.37(ABFC.1)
USG FLEX 100W	V5.37(ABWC.1)	ATP500	V5.37(ABFU.1)	VPN1000	V5.37(ABIP.1)
USG FLEX 200	V5.37(ABUI.1)	ATP700	V5.37(ABTJ.1)
USG FLEX 500	V5.37(ABUJ.1)	ATP800	V5.37(ABIQ.1)
USG FLEX 700	V5.37(ABWD.1)

New Feature and Enhancements

CLD=Cloud mode, STD=Standalone mode

No.	Enhancement	CLD	STD
1	IP Reputation to scan device local in/out traffic.		V
2	Show allow action from SecuReporter including IP Reputation, DNS & URL Threat Filter.		V
3	New network tools - Speed Test.		V
4	Update OpenSSL package to 3.0.10 and not support TLS1.0/1.1 protocol anymore for these features: a. AAA Server b. SSL inspection c. Web GUI d. SecuManager e. Certificate		V
5	To ensure the highest level of security, after the first login, it is not possible to set the password to "1234".		V
6	To increase session control “default session limit” to 20,000 and “create new object session limit” to 40,000.		V
7	eITS#230501617 Fine tune the CEF log format.		V
8	User Interface/Description change: a. Remove "Cloud Email Security” icon in Email Security page.		V
9	Remove ZTP from ZLD5.37 Patch1: a. For USG FLEX/ATP series, please go to Nebula Control Center deployment method and choose the “Nebula native mode”.	V

Bug Fix

CLD=Cloud mode, STD=Standalone mode

No.	Bug Fix	CLD	STD
1	eITS#221001398 a. Fix: Stability issue when "Failback to Primary Peer Gateway when possible" is enabled.		V
2	eITS#221001970 a. Fix: Many duplicated dynamic VPN routing entries are on the MAINTENANCE > Packet Flow Explore > Dynamic VPN > Routing Table.		V
3	eITS#230500501 a. Fix: Web authentication using External Web Portal with 3rd party App doesn't work.		V
4	eITS#230501662 a. Fix: Device reboots unexpectedly.		V
5	eITS#230600461 a. Fix: HA failover doesn't work.		V
6	eITS#230601375 a. Fix: The device lost all SSL Inspection Exclude List after it rebooted.		V
7	eITS#230700228 a. Fix: Move "Radius Server is enable" log to debug level.		V
8	eITS#230700420 a. Fix: DHCP server cannot release IP address.		V
9	eITS#230700642 a. Fix: Go to CONFIGURATION > Mgmt. & Analytics > Nebula but the page keeps loading.		V
10	eITS#230700646 a. Fix: The device rebooted unexpectedly.		V
11	eITS#230701080 a. Fix: When the VPN client uses domain user to login in, it can still be established without 2FA authentication even if the authentication is expired.		V
12	eITS#230701237 a. Fix: The SFP port with DHCP IP sometimes will lost WAN connection unless you manually release DHCP IP from Web-GUI or re-activate the SFP interface.		V
13	eITS#230701499 a. Fix: iOS device is not redirected to authentication page automatically.		V
14	eITS#230800292 a. Fix: The CSV file is not fully imported to the static DHCP table. Weird three lines appear at the bottom of the DHCP table and prevent saving any changes.		V
15	eITS#230800764 a. Fix: Incorrect status on login users page when SSH client closed the session.		V
16	eITS#230801489 a. Fix: The HTTPS Service control filter to access the administration interface from a particular Public IP does not work.		V
17	eITS#230900423 a. Fix: Once the based port of the VLAN interface is modified, the device will get stuck and need a reboot to recover.		V
18	eITS#230901380 a. Fix: The character comma is not supported in the log settings of email password but the i-note says it is supported.		V
19	eITS#231000246 a. Fix: DHCP lease time is expired but the expired IP address still exists in the DHCP table.		V
20	eITS#231000270 a. Fix: Configure a security policy rule to block devices with device insight but all devices are still able to access Internet.		V
21	eITS#231000905 a. Fix: Content Filter does not work correctly in certain condition.		V
22	eITS#230601419 a. Fix: Connectivity Status always shows "Success" even no IP is on wan interface.	V
23	eITS#230801049 a. Fix: The device is nebula mode but the web GUI shows on-premises style.	V
24	eITS#230801049 a. Fix: The device is nebula mode but the web GUI shows on-premises style.	V

Please refer to the Download Link for more details.