Zywall USG FLEX Series, ATP Series & VPN Series - V5.37P1 Firmware Release

Options
Zyxel_Stanley
Zyxel_Stanley Posts: 1,367  Zyxel Employee
First Anniversary 10 Comments Friend Collector First Answer
Zywall USG FLEX Series, ATP Series & VPN Series Release Note Oct, 2023

Firmware Version on all models

USG FLEX

ATP

VPN

USG FLEX 50

V5.37(ABAQ.1)

ATP100

V5.37(ABPS.1)

VPN50

V5.37(ABHL.1)

USG FLEX 50W

V5.37(ABAR.1)

ATP100W

V5.37(ABRW.1)

VPN100

V5.37(ABFV.1)

USG FLEX 100

V5.37(ABUH.1)

ATP200

V5.37(ABFW.1)

VPN300

V5.37(ABFC.1)

USG FLEX 100W

V5.37(ABWC.1)

ATP500

V5.37(ABFU.1)

VPN1000

V5.37(ABIP.1)

USG FLEX 200

V5.37(ABUI.1)

ATP700

V5.37(ABTJ.1)

USG FLEX 500

V5.37(ABUJ.1)

ATP800

V5.37(ABIQ.1)

USG FLEX 700

V5.37(ABWD.1)

New Feature and Enhancements

CLD=Cloud mode, STD=Standalone mode

No.

Enhancement

CLD

STD

1

IP Reputation to scan device local in/out traffic.

V

2

Show allow action from SecuReporter including IP Reputation, DNS & URL Threat Filter.

V

3

New network tools - Speed Test.

V

4

Update OpenSSL package to 3.0.10 and not support TLS1.0/1.1 protocol anymore for these features:
a. AAA Server
b. SSL inspection
c. Web GUI
d. SecuManager
e. Certificate

V

5

To ensure the highest level of security, after the first login, it is not possible to set the password to "1234".

V

6

To increase session control “default session limit” to 20,000 and “create new object session limit” to 40,000.

V

7

eITS#230501617
Fine tune the CEF log format.

V

8

User Interface/Description change:
a. Remove "Cloud Email Security” icon in Email Security page.

V

9

Remove ZTP from ZLD5.37 Patch1:
a. For USG FLEX/ATP series, please go to Nebula Control Center deployment method and choose the “Nebula native mode”.

V

Bug Fix

CLD=Cloud mode, STD=Standalone mode

No.

Bug Fix

CLD

STD

1

eITS#221001398
a. Fix: Stability issue when "Failback to Primary Peer Gateway when possible" is enabled.

V

2

eITS#221001970
a. Fix: Many duplicated dynamic VPN routing entries are on the MAINTENANCE > Packet Flow Explore > Dynamic VPN > Routing Table.

V

3

eITS#230500501
a. Fix: Web authentication using External Web Portal with 3rd party App doesn't work.

V

4

eITS#230501662
a. Fix: Device reboots unexpectedly.

V

5

eITS#230600461
a. Fix: HA failover doesn't work.

V

6

eITS#230601375
a. Fix: The device lost all SSL Inspection Exclude List after it rebooted.

V

7

eITS#230700228
a. Fix: Move "Radius Server is enable" log to debug level.

V

8

eITS#230700420
a. Fix: DHCP server cannot release IP address.

V

9

eITS#230700642
a. Fix: Go to CONFIGURATION > Mgmt. & Analytics > Nebula but the page keeps loading.

V

10

eITS#230700646
a. Fix: The device rebooted unexpectedly.

V

11

eITS#230701080
a. Fix: When the VPN client uses domain user to login in, it can still be established without 2FA authentication even if the authentication is expired.

V

12

eITS#230701237
a. Fix: The SFP port with DHCP IP sometimes will lost WAN connection unless you manually release DHCP IP from Web-GUI or re-activate the SFP interface.

V

13

eITS#230701499
a. Fix: iOS device is not redirected to authentication page automatically.

V

14

eITS#230800292
a. Fix: The CSV file is not fully imported to the static DHCP table. Weird three lines appear at the bottom of the DHCP table and prevent saving any changes.

V

15

eITS#230800764
a. Fix: Incorrect status on login users page when SSH client closed the session.

V

16

eITS#230801489
a. Fix: The HTTPS Service control filter to access the administration interface from a particular Public IP does not work.

V

17

eITS#230900423
a. Fix: Once the based port of the VLAN interface is modified, the device will get stuck and need a reboot to recover.

V

18

eITS#230901380
a. Fix: The character comma is not supported in the log settings of email password but the i-note says it is supported.

V

19

eITS#231000246
a. Fix: DHCP lease time is expired but the expired IP address still exists in the DHCP table.

V

20

eITS#231000270
a. Fix: Configure a security policy rule to block devices with device insight but all devices are still able to access Internet.

V

21

eITS#231000905
a. Fix: Content Filter does not work correctly in certain condition.

V

22

eITS#230601419
a. Fix: Connectivity Status always shows "Success" even no IP is on wan interface.

V

23

eITS#230801049
a. Fix: The device is nebula mode but the web GUI shows on-premises style.

V

24

eITS#230801049
a. Fix: The device is nebula mode but the web GUI shows on-premises style.

V


Please refer to the Download Link for more details.