USG FLEX H Series - V1.30Patch 0 Firmware Release

Zyxel_Melen
Zyxel_Melen Posts: 2,409  Zyxel Employee
Zyxel Certified Network Engineer Level 1 - Switch Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate

Zywall USG FLEX H Series Release Note 

October 2024

Firmware Version on all models

  • Please use the cloud firmware upgrade function to upgrade USG FLEX H Series
USG FLEX H SeriesFirmware Version
FLEX100HV1.30(ABXF.0)C0
FLEX100HPV1.30(ACII.0)C0
FLEX200HV1.30(ABWV.0)C0
FLEX200HPV1.30(ABXE.0)C0
FLEX500H1.30(ABZH.0)C0
FLEX700HV1.30(ABZI.0)C0

Note 1: For the initial installation of the USG FLEX H Series firewall, please using the firmware wizard to upgrade to uOS 1.08 Patch 1 firmware first, and then proceed with the upgrade to uOS1.10 firmware. The device becomes unreachable if you upgrade USG FLEX H directly from the factory default version to 1.10 P1 or later firmware version directly.

Note 2: If you are using a date code firmware, please contact @Zyxel_Melen to get the firmware file and upgrade via local upload.
 

New Feature and Enhancements

1. [Enhancement] Support Nebula Topology.

2. [Enhancement] Support Nebula Security Profile Sync.

3. [Enhancement] Support Nebula Site-wide management Device Status feature for comprehensive network oversight.

4. [Enhancement] Support Nebula site-wide management Event Log.

5. [Enhancement] The USG FLEX H series now supports the Entry Defense Pack license, which includes Reputation Filter, SecuReporter, and Priority Support features.

6. [Enhancement] Support Source IP Spoofing Prevention (IP/MAC binding). [eITS#240300026, 210300781]

7. [Enhancement] Support FQDN Address Object. [eITS#230800339, 230900214, 221001833, 221200385, 230600766, 240500098]

8. [Enhancement] BWM support Bridge (Routing mode), PPPoE and VTI interface.

9. [Enhancement] Support Web Console.

10. [Enhancement] Remote Access IPsec VPN support behind NAT scenario.

11. [Enhancement] Support Password complexity for Local user and admin.

12. [Enhancement] Support Scheduling Reboot.

13. [Enhancement] Support PoE power reset at Dashboard > Port Status.

14. [Enhancement] Support sending of scheduled backup configuration via email.

15. [Enhancement] Support "Drop Invalid TCP Flags Packet" at System > Advanced.

16. [Enhancement] Support “Drop TCP SYN Packet” with abnormal payload at System > Advanced.

17. [Enhancement] Support Proton VPN to the APP patrol category "Tunneling". [eITS#221000252]

18. [Enhancement] Support email configuration file with Encryption function. [eITS#240500775]

19. [Enhancement] Support Bridge-Routing mode scenarios. [eITS#230700789]

20. [Enhancement] Support 802.1P Priority on VLAN interface. [eITS#240501460, 240500746]

21. [Enhancement] Support USB Storage log rotate function. [eITS#160301602]

22. [Enhancement] Support more troubleshooting diagnostic files at Diagnostic > System log: apply-config-error, boot-config-error, ipsecvpn.

23. [Enhancement] Diagnostic > Network Tool add IPsec Trace Log for IPsec VPN troubleshooting.

24. [Enhancement] Diagnostic > Network Tool add Nebula Connection Status check.

25. [Enhancement] Support firmware automatic fallback mechanism.

26. [Enhancement] Add Priority Support at Tool Bar > Help, that user can open support tickets for prioritized assistance with Licenses.

27. [Enhancement] Add VLAN ID information in the DHCP Table. [eITS#231101504]

28. [Enhancement] Improve the IPS signature searching efficiency. [eITS#230900165]

29. [Enhancement] Change Dashboard Virtual Device style and add the link speed by colors.

30. [Enhancement] Support USB Storage status at Dashboard.

31. [Enhancement] Usability enhancements: a. Add check and validation of the Reserved IP Hostname at DHCP Table. b. Add Security Profile Sync reminding message when use edit or remove Security services at local GUI. c. The Tx and Rx values should be displayed at the same time point in the flowchart. [eITS#231000421] d. The log settings display a minus circle, indicating that some log categories are selected.

32. [Feature Change] change the "myZyxel.com" log category name to "License".

33. [Feature Change] Change the default enabled log categories.

34. [Feature Change] Default enable the LLDP function (System > Advanced).

35. [Feature Change] move myZyxel.com log to cloud-helper category.

Bug Fix

1. [Bug Fix][eITS#230500151] Once too many objects are configured in App Patrol profile, it will cause the device to get stuck.

2. [Bug Fix][eITS#230701453] Duplicate packets when capturing ICMP packets.

3. [Bug Fix][eITS#231201131] When users login to device with 2FA, event logs shows “0.0.0.0” in both source and destination IP address. There is no destination IP in the log of Administrator login.

4. [Bug Fix][eITS#240400191] It takes a long time for the interface to get the IP.

5. [Bug Fix][eITS#240400563] High memory usage.

6. [Bug Fix][eITS#240500400] SNMP query is not responding.

7. [Bug Fix][eITS#240500775] Unable to e-mail the configuration backup from the H series firewall. The sender field in the configuration backup mail is root, not the email address.

8. [Bug Fix][eITS#240600660] If connecting the Zyxel SFP 10G-T (RJ45), P13 or P14 of USG FLEX 700H become port down.

9. [Bug Fix][eITS#240601179] The dashboard memory usage and SNMP query do not match.

10. [Bug Fix][eITS#240601626] Deleting default Security Policy for SSL VPN will be re-created after a reboot.

11. [Bug Fix][eITS#240700792] Device hang up

12. [Bug Fix][eITS#240700915] In Network status > DHCP table > Click Add, the Host name shows the remind message as “The value in this field is duplicate"" even there is no duplicated host name.

13. [Bug Fix][eITS#240700919] If specific characters is configured in DHCP IP reservation, it causes DHCP function stop to work.

14. [Bug Fix][eITS#240701396] 2FA doesn't work after the power cord is removed and reconnected.

15. [Bug Fix][eITS#240701628] (Sweep) UDP Sweep should be in uppercase.

16. [Bug Fix][eITS#240701749] Change IPS signature GUI style.

17. [Bug Fix][eITS#240701765] Virtual server is not working after firewall reboot.

18. [Bug Fix][eITS#240701793] DHCP process stop to work if specific HOST character in reserved hosts.

19. [Bug Fix][eITS#240701946] Fail to capture ICMP packet when split threshold value is not the default.

20. [Bug Fix][eITS#240800592] It takes a long time for the interface to get the IP.

21. [Bug Fix][eITS#240800778] If specific characters are configured in DHCP IP reservation, it will cause DHCP function stop to work.

22. [Bug Fix][eITS#240800822] In VPN Status > SSL VPN, there is “Disconnect” button but it is always greyed out.

23. [Bug Fix][eITS#240800866] The memory usage on the USG FLEX 700H reached 91% after running for 9 days.

24. [Bug Fix][eITS#240801054] Static DHCP entries cannot be edited.

25. [Bug Fix][eITS#240801364] If the referenced IP address group includes any "empty" address object, the policy control rule will behave unexpectedly.

26. [Bug Fix][eITS#240801540, 240801470] Main Route should involve Active interface regardless static IP or DHCP and even if not the trunk member.

27. [Bug Fix][eITS#240801732] Network is instable when MTU lower 1500.

28. [Bug Fix][eITS#240801834] On dashboard CPU% chart, it shows core1 to core4. However, in diagnostics > CPU/Memory Status, it shows CPU0 to CPU3.

29. [Bug Fix][eITS#240801834] On dashboard CPU% chart, it shows core1 to core4. However, in diagnostics > CPU/Memory Status, it shows CPU0 to CPU3.

30. [Bug Fix][eITS#240900132] When you download multiple VPN profiles on iOS, a new file removes the existing profile.

31. [Bug Fix][eITS#240900141] The SSL VPN connection cannot be blocked from accessing the defined Local Network by the security policy's default rule.

32. [Bug Fix][eITS#240900292] Cannot join the domain because the NetBIOS domain name starts with a number, such as 123zyxel.com.

33. [Bug Fix][eITS#240901043] There are many “Two-factor Auth. daemon: uam_read_event error, ret = - 1” logs on the collected USB log file.

34. [Bug Fix][eITS#240901052] Unable to change DNS order.

35. [Bug Fix][eITS#240901130] Device rebooted unexpectedly since lock incorrect parameters.

36. [Bug Fix][eITS#240901316] Unable to add VLAN to the port interface.

37. [Bug Fix][eITS#240901822, 241000471] Unable to delete an empty user group; the GUI becomes unresponsive and freezes.

38. [Bug Fix][eITS#241000008] DHCP reservation keeps loading continuously when clicking the ""Reserve"" button. The issue can be seen in remote site.

39. [Bug Fix][ZNGA-5381] Disable Force change password will reset the Default Authentication Timeout Settings.

40. [Bug Fix][ZNGA-5378] From tooltip to edit Zone will not show any Interface in the selection list.

41. [Bug Fix][ZNGA-5458] The display of what's new content will run into auto refresh loop if opened from the dashboard.  Upgrade your devices to uOS1.30 for enhanced protection against the CVE references listed, as uOS1.30 is no longer vulnerable to them. - CVE-2024-6387 - CVE-2024-9677

Please refer to the Download Link for more details.

Comments