USG_User  Master Member

Hi Jeff, Thanks for your reply. I've already read the linked Zyxel article. Unfortunately, beside a short list of advantages of IPSec in opposition to SSLVPN, this article do not mention IPSec SecuExtender as alternative client for Windows PCs. Further it's not clearly described under which circumstances the new…

Despite the EOL of the SSL VPN SecuExtender Client Software for all clients, Will the IPSec SecuExtender still be supported? Or is it recommended to forget all SecuExtender client software and move to build-in VPN clients of the different OS?

Thanks Peter, In the meantime our ISP has not longer follow that issue. It seems that the problem is gone. However, nice to know that the USG is able to capture also its own outgoing packets. This is not clearly described in the manual (or I was too blind to find it 😎) Greetings from Germany

I reactivate this old thread. We tried to release an assigned IP address on our USG Flex 700 (v5.38). Therefore we went to CONFIG > Network > Interface > Ethernet > Static DHCP Table and tried to remove the corresponding MAC/IP entry from static DHCP table of the affected subnet. Unfortunately this was not possible and USG…

Hi Kay, A PM has been sent.

Hi Ivan, Thanks a lot for the explanations. Now I've found the little, light grey "edit" button for changing the licence type. From my point of view the entire licence selection and purchasing procedure is not enough intuitiv, especially when we use it once a year only, when the licence needs to be renewed. Additionally I…

Hi Gerhard, At the first glance it looks similar to mine, including the same Security Policy rules from WAN to ZyWall, from SSLVPN to LAN1 and from LAN1 to SSLVPN. Only one difference … we are not using IPs from the LAN1 subnet also for the SSLVPN clients. For example, our LAN1 subnet is 192.168.21.x and we assign IPs from…

Moin Gerhard, Properly adjusted, there are no problems with RDP over SSL-VPN. In past we used it on an USG110, and this time over an USG Flex 700. If you are not able to solve the problem, taking into account Jeff's hints, please let us know and we go through our config step by step. Gruss aus Rostock

I've done it and it works. Thanks But I'm a little bit concerned that we have to set this threat ID to the allow list since this ID is originally intended for "VLC Media Player RTSP Plugin Stack Buffer-Overflow" and not for ordinary RTSP camera streams.

After further investigation we found a Custom Signature Rule named "Cs" with this ID. But we cannot remember established this custom rule by ourselves: Has anybody an idea whether this has been added automatically by the last FW updates, or what sense such a rule should have? Therein is nothing ticked.

Hi guys, Could you kindly respond whether all in this thread reported issues of the ABWD.0 are gone with 5.36 ABWD.1 patch? Or have the VPN issues only been replaced by other new problems?

Thanks Cooldia, appreciated.

@Zyxel: Is it planned to release a new official update soon? Or should all affected customers ask for the ITS lab version now?

Thanks a lot Agor. Indeed, normally not more than 3 streetworkers are connecting simultaneously to our Flex700.

Has already been turned out which special configuration is responsible for the issue? Our USG Flex 700, configured with 15 SSL VPN Users, is still running fine without problems or permanent reboots, but we are concerned nevertheless.