Not able to log in to the VPN2S after Firmware upgrade

13»

All Replies

  • Josta
    Josta Posts: 2
    Hi, can someone provide an updated URL for the updated firmware?
  • PeterUK
    PeterUK Posts: 2,655  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    Josta said:
    Hi, can someone provide an updated URL for the updated firmware?
    https://download.zyxel.com/VPN2S/hotfix/V1.20(ABLN.2)_00210624C1.zip
  • HI, 

    Please also send me firmware link as facing same issue.

    Thanks
  • Zyxel_Stanley
    Zyxel_Stanley Posts: 1,361  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Hi @Foursheep
    You can download the same version for VPN2S by click it.
  • mMontana
    mMontana Posts: 1,298  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    PeterUK said:
    Josta said:
    Hi, can someone provide an updated URL for the updated firmware?
    https://download.zyxel.com/VPN2S/hotfix/V1.20(ABLN.2)_00210624C1.zip

    This firmware is not reported on MyZyxel. Why?
  • PeterUK
    PeterUK Posts: 2,655  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    mMontana said:
    PeterUK said:
    Josta said:
    Hi, can someone provide an updated URL for the updated firmware?
    https://download.zyxel.com/VPN2S/hotfix/V1.20(ABLN.2)_00210624C1.zip

    This firmware is not reported on MyZyxel. Why?
    Because its not a release? 
  • Zyxel_Stanley
    Zyxel_Stanley Posts: 1,361  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    We have apologized confusing you. The patch include some of issues those we found in 1.20P2 formal version. If the fixes confirmed by requester, then fixes will include in next formal version.
  • mMontana
    mMontana Posts: 1,298  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    If the fixes confirmed by requester, then fixes will include in next formal version.
    This is quite strange, @Zyxel_Stanley ... There's a bugfix version defined "20210624" which according to release notes addresses issues for CVE-2021-35027 and CVE-2021-35028. Definition recalls 2021 june...

    The post address a subsequent issue for access to VPN2S. MyZyxel reports version 1.20(ABLN.2) dated november 2020.

    After a official release 18 months old
    After a vulnerability bugfix (not official) release 11 months old
    After a bugfix release after the vulnerability bugfix

    what's next? Official release (ETA is a necessory)? Or EOS listing for the device?

    It's getting harder and harder believe in Zyxel capabilities to not mess up instead of fixing.
    I remember the lack of fix about FragAttack for 6.10 P8 firmware version for NWA-1123v2. Not Fixed and declared "wontfix"  after 6 "only" months.
    I remember quite well the tough talking from my customers on ZLD 4. crater hole about credentials (even admin) creation.
    And I'm worried the wait for post-ZLD5.30 patch coming next week. Which already was a "SWAT action" for addressing CVEs and need more fixing...

    This platform acts more as a PR department than a community. There's a gazilion of devices with Zyxel brand, it's understandable that something goes wrong. Problem is that IMO this company put too many dishes on the kitchen, and most of them are burning, smoking, stinking and thrashing.
    As 15 years customers trust and faith.

    Maybe this it's only a consequence of this huge Nebula of smoke and fake.
  • Zyxel_Vic
    Zyxel_Vic Posts: 281  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Hi @mMontana
    Thanks for your feedback and yes we do have room (big room) for improvement regarding to the formal releasing plan. Your concerns will be well delivered to the team.

    Regarding to FragAttack issue on wifi, unfortunately those vulnerable products with chips and drivers no longer supported by WiFi chip vendors so that the hotfix is still unavailable, instead, some general security practice is suggested so that the wifi device should be able to avoid from this vulnerability.
    More information is mentioned in the advisory

    Appreciate for your always honest suggestions.

Security Highlight