nielsscheldeman  Ally Member

Bump

Hello, local policy set to 0.0.0.0 did indeed the trick, thank you! But what if I want only certain users to do full tunnel? I see that in SecuExtender if I turn off or on "Disable Split Tunneling", it doesn't make any difference. The client keeps using the internet connection of the VPN. I only want certain users to do…

Ok, before I answer your questions, I have made improvement, but still not how it has to be. Situation: 1 Site to Site VPN-Gateway / VPN Connection 1 Client to Site VPN-Gateway / VPN Connection Both IKEv2 If I make Site to Site VPN-Gateway / VPN Connection with static peer, I am able to also connect my client to site…

To continue on this, I'm not sure if what I want is possible, but I'll try. Another client with Guestwifi has now a music installation with wireless controller for that music. I added MAC Address from that wireless controller to Layer 2 isolation, but it was still not visible for other wireless cliënts until I turned off…

So the new models (Flex H series) are released. However in the specs page I only see IKEv2, IPSec, SSL… So it's still not possible? I currently use IKEv2, but the client is awful and 2FA through Google Authenticator is not supported when using AD Integration(only through mail, so I can live with it for now). Creating local…

Found a way to see those schedules. Bit dirty, but in config file I can see "Schedule-run 1 nointernet.zysh daily 18:00" Schedule-Objects are defined in "schedule-object…"

Yes, I am aware of that. But my customer doesn't want to enable the policy at given times. He enabled the policy sometimes when internet needed(can happens once a month) through putty script. But if he forgets, I want the system to disable it automatically. In regular schedule you can't just turn on a policy. It has to be…

Maybe thinking in another way before setting up test environment. Is it possible with SSL VPN and AD Integration to set up 2FA? What are the benefits of SSL vs IKEv2?

Really struggling with it. Previous things didn't work, also because I wanted to use different DNS Servers then the ZyWALL I Guess. For the whitelist I have 2 computers that may only access 2 websites 1 Computer in separate VLAN which i gave DNS address to ZyWALL → works fine now with only DNS Filter on it. Another…

Yes it is worth the try, but I see same behaviour when I connect a ZyXEL NWA130BE with a HP Probook 450 G10 and Intel AX210 card in it. Connected to SSID 6 GHz (okay only 802.11axe, not 802.11BE) and I get upload speeds to 200 MB/s, but downloadspeeds (same server) at only 120 MB/s But I see if I can get 2 2.5 Gb cliënt…

Now I'm trying to work with a whitelist for 2 computers within the same LAN. I gave them fix IP and added a rule with higher priority then LAN1_Outgoing with only category filter. But the devices are still able to surf to any website? These are my settings below

Server = Intel X520 SFP+ / 2*Intel D3S4520 3.84 TB RAID1 on Adaptec 3101e-4I / Windows Server 2022 VM on Hyper-V Core Client1=Intel I225v / Samsung 980 1 TB Client2= Intel X520 SFP+ / Samsung 980 1 TB —Client1 upload to Server : 280 MB/s | Client1 download from server : 120 MB/s Client2 upload to Server: 1 GB/s | Client2…

Hello, Yes I've set DNS Filter also and works much better now. Would it work even better if I use DNS Server from ZyWALL then since I see u set also a policy for DNS to ZyWALL

The content filter still not working fine… Added a rule with priority 1 for QUIC Ports Some sites are blocked, mostly not. For example, customer wants me to block wps.com So in that filter which is applied to LAN1 outgoing, I added in Forbidden websites *.wps.com or wps.com. But still accessible?

Ok, it goes better now, but not steady results. When I for example transfer a file of 12 GB now, it goes 280 MB/s, but after 80% it goes down to 75 MB/s. Restarting the test after few minutes still remains at 75 MB/s until I reboot the switch. Copper to Fiber upload always goes fine. I see now something else strange. I…