USG Flex 500H - Problems with Services that require authentification
We have a new USG Flex 500H.
It is set up as firewall and gateway, connected via a known to be stable modem on a stable 1GBit/s fiber optic line.
With the new firewall we now have issues with some services like Outlook, Teams and Jira (Atlassian) where they randomly will no longer load/authentification will fail.
On the firewall we only use the default security policy control rules.
For debugging purposes I have turned of all security services. The issue persists.
In the log (debug) we see a lot of packages from Microsoft servers dropped with the message: "invalid state detected DROP". Connections are usually to ports above 5000 but a lot are also to port 443.
All Replies
-
Have you disabled DoS Prevention
0 -
Yes I have, as I said, everything is turned of except policy control.
0 -
Hi @Niklas_Lauf,
May I know if your firmware version is the latest version? Could you provide the diagnostic info for me to check? I will DM you for the request.
Zyxel Melen0 -
A long shot, but is DoS Prevention loging enabled in "Log & Report → Log Settings → Log Category Settings" under "Security"?
0 -
Hi @bbp,
You can enable logging in Security Policy > DoS Prevention > Profile > each profile. You may reference the screenshot below:
Zyxel Melen1 -
Hi @Zyxel_Melen
You can also disable/enable what get logged in "Log Settings"
1 -
Feel free to close this. We have given up on our usg flex 500h
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 146 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight