kaika313  Freshman Member

Ok, now I've moved lan1 to p3 so I can group it with p4 as I need. I was scared because as soon as I moved cables and grouped p3 and p4 both ports showed 0.0.0.0 and all network went offline but fortunately after a firewall reboot everything went back to normal and the grouped interface started working again. Thank you for…

Even if I change both ports to 1Gb speed it doesn’t work. Yes, if I try to group P3 and P4 it allows me to do that. But I need to use P2 and P4. Why it doesn’t allow me?

I've disabled Poe because right now is not a necessity and it doesn't work. But if I try to group for example p2 and p7 (or any other unused port) it does the same. As per references p4 has no References, only lan1 (p2) has:

Hi @Zyxel_Emily, thank you, this solved my problem. I have another issue regarding SSL VPN, there’s no way to make it work. I'm using a custom port because it doesn't allow me to use same HTTPS port. Strange thing is that if I download SSL VPN configuration and use it with OpenVPN it works. If I try tu use SecuExtender…

Hi @USG_User, thank you for your advice. I've tried to set the session limit to 1000 per host and it seems that for now, active sessions stay within a normal range. Some devices went far beyond 1000 sessions each so I think they were causing the USG to crash. Most of these sessions were multiple UDP connections toward…

Hi @Zyxel_Can, in both sections they're already removed. But, if I try to remove EZMODE from VPN Connection nothing happens. I click Yes when the warning appears but EZMODE VPN stays there... is there a way to remove it manually as suggested by @PeterUK ? Thank you

I've just tried. When I choose the alternative VPN connection (here named "Default_L2TP_VPN_Connection") and everything else related to it and click on Apply nothing happens. The firewall ignores it so I cannot test it.

It redirects me to VPN→ L2TP VPN. Here, if uncheck Enable L2TP Over IPSec, in VPN Connection I select none and then click on Apply it doesn't apply so probably this is the reason it doesn't let me to delete it because it remains enabled. What other options I have?

@PeterUK Ok for the idle detection but (sorry for the stupid question) won't the reduced lease time disconnect the user or disturb active connections? Thank you

Hi @Zyxel_Jerry, thank you for your reply and for the info. Kind Regards

Well, after hours spent searching throughout business support forum last Saturday night I finally reach this post that shed light on our problem. https://businessforum.zyxel.com/discussion/2519/no-default-dns-for-wan1-on-usg40/p2 The environment is identical to the user’s who post the question, in fact I have the 1:1 NAT…

UPDATE: now our ISP has removed any block and I can establish the L2TP VPN connection! Thank you for your support

Hi @Zyxel_Cooldia, this is the result from CLI packet capture: 10:47:57.000665 IP External IP > USG public IP: icmp: echo request 10:47:57.001126 IP USG public IP > External IP: icmp: echo reply 10:47:58.001636 IP External IP > USG public IP: icmp: echo request 10:47:58.002127 IP USG public IP > External IP: icmp: echo…

Hi @Zyxel_Cooldia, I cannot connect physically to ISP's gateway and If I set ISP's gateway in USG connection does not work so I'm forced to use these settings and go through Public IP 1.

HI @Zyxel_Cooldia, here's the complete topology. I have to keep them both connected as the ISP router manages some IP phones connected to the network and we we tried to leave it connected just to the USG they didn't worked anymore. Please let me know if you need further information. Thank you