MikeForshock  Freshman Member

As of yet, no solution. All the other non-VLAN routers updated without issue. Luckily!

How can I send this over with the credentials stripped? Literally has every password, two-step, psk, certificate, etc. I would be okay with a remote session so you can see the config via my system, only with a tool we can limit file & clipboard sharing. Contact and we can work that out.

Negative, custom trunk. Each connection has connection checking, primary (VLAN) as active, secondary (WAN2/opt) as passive. As specified in guides.

Create a policy entry and it does work, but is has to use the specific interface. This unfortunately will remove our redundant connection (cellular modem, WAN2/opt). So there is certainly an issue with the update, hopefully gets fixed quickly. Will possible revert back to 5.38 and disable auto update. The consequences of…

It appears it may be related to VLAN WAN connections. Our primary connection is sent via VLAN from a head router at this location. The USG can ping, trace, lookup, speed test, etc. Anything "behind" the USG will not access any external/WAN connections. Making this much odder is that the log shows no entries for…

Critical Infrastructure projects, so is very, very zero trust as the buzzwords go. We segment the network heavily and use the firewall to assign allowed inter vlan networking. Was attempting to use the USG as a central firewall/router (router on a stick, non-routed network) versus multiple, separately managed units. We use…

Thanks for the very precise answer. Disappointing, will have to go another direction on this. Even the 100 is underutilized in this deployment, so anything larger is more waste.

If they are the same IP range it may not.

This is the main questions, why was it not mentioned? https://arstechnica.com/information-technology/2022/05/zyxel-silently-patches-command-injection-vulnerability-with-9-8-severity-rating/

So I have figured out what is the most likely cause each time, based on it happening 4 times in total. On Security Policy, I click Clone, enter the priority, it pops up the editor for the new (cloned) entry. It doesnt happen every time I use it, but every lockup has been when doing this action. Two times it required a…

Came back this time on reboot .Applying system configuration file, please wait... ...................ZyWALL system is configured successfully with startup-config.conf /etc/zyxel/conf/ZLDconfig: line 1114: 3060 Segmentation fault (core dumped) /usr/sbin/firewalld > /dev/null 2> /dev/null

Tried config on both flash images, appears to be constant issue.

Locked it up again... Unable to connect ZySH daemon command function history: 0x104a40b0 argc:5 args:show dns-content-filter profile all 0x1025c980 argc:4 args:show security-service status 0x100103e8 argc:2 args:exit 0x10010578 argc:1 args: 0x1000fb78 argc:1 args: 0x100101c0 argc:1 args: 0x1031ea20 argc:4 args:show app…

More debugging getting these as well: Unable to connect ZySH daemon command function history: 0x102f27a0 argc:4 args:11 to ZyWALL 0x102f27a0 argc:4 args:11 sourceip AGRP_Z1 0x102f27a0 argc:4 args:11 service Z1-Device_Allow 0x102f27a0 argc:3 args:11 log 0x102f27a0 argc:4 args:11 action allow 0x102ffdc8 argc:3 args:11 exit…

A completely waste of a few hours getting entries all lined up, all a waste...