-
[Trade-Up Program] 🔄 Time to Trade Up: Say Goodbye to Legacy USG, Hello to Next-Level Securi…
Time to Trade Up: Upgrade Your Legacy USG and Unlock a Powerful New Experience.
-
Recovery Steps for USG FLEX/ATP Series Application Patrol Signature Issue (Jan. 2025)
Symptom: The App Patrol signature release V1.0.0.20250123.0 may create parsing error on device for On-premises mode, application patrol daemon will not work well after updating this new signature though the rest of UTM features keep running. However, the worst case is that device may get stuck if device did rebooting…
-
Zyxel USG FLEX and ATP series – Upgrading your device and ALL credentials to avoid hackers' attack
Zyxel team has been tracking the recent activity of threat actors targeting Zyxel security appliances that were previously subject to vulnerabilities and admin passwords have not been changed since then. Users are advised to update ALL administrators accounts for optimal protection. Based on our investigation, the threat…
-
Important Reminder for your Content Filter Service
At Zyxel, we are committed to providing you with the most advanced and secure services possible. In line with this commitment, we continuously enhance our Content Filter service to ensure top-notch security detection from Trellix. To ensure your service running stable and efficiently, please upgrade firmware to the latest…
-
How to solve the issue "ZTP is already enabled" on VPN series?
Symptom: Unable to access the web GUI. Access the web GUI but the page "ZTP is already enabled" appears. The device is on-premises mode and never deployed using ZTP. Q1. What are the impact model and version for this issue? Affected model Affected version VPN50 5.00 through 5.36(ABHL2)C0 VPN100 5.00 through 5.36(ABFV.2)C0…
-
What should I do if the device failed to be upgraded to the latest firmware?
Please follow the procedure to upgrade the firmware Step 1. Make sure you have on-site local support that able to reach the device Step 2. Unplug all WAN connections. Step 3. Access the device via LAN IP. Step 4. Copy startup-config.conf to recover.conf. Download "recover.conf" to your PC. Step 5. Switch to standby…
-
AD Authentication Failed after upgrade to 5.40 on USGFLEX700 model only
hi everybody, after upgrading to ZLD 5.40 on USGFLEX700 (Standalone mode) we got systematic authentication failure using AD Authentication against windows server 2019 Domain Controllers (so this shouldn't have nothing to do with the Windows Server 2025's problem as of Zyxel's advisory of last April) We've verified that on…
-
VPN typu site-to-site and remote access (server role) USG20-VPN
Hello I have 2 problems: I have a site-to-site configuration and remote access (server role) I have the same USG20 models in the headquarters of companies A and B. After changing the Internet provider and adding a new WAN IP address in the configuration. site-to-site establishes a connection, but the devices do not…
-
Flex 200 - Email Two Factor Auth
Want to get the facts about 2 Factor Auth using email. Does it work? If anyone has this working, or a link to the steps, would be interested.
-
Zyxel Flex -Turn off Web Page Blocked!!
How do I figure out what setting is causing this message? You have tried to access a web page which belongs to a DNS Filter category that is blocked.
-
VPN client-to-site settings for MacOS 15 (Sequoia)
Hi, I'm currently using these settings for a working VPN connection from Windows native clients: Gateway: - SA Lifetime: 86400 - Negotiation mode: Main - Proposal (enc/auth): 3DES/SHA1 - Key Group: DH2 Connection: - SA Lifetime: 3600 - Active Protocol: ESP - Encapsulation: Transport (L2TP/IPSec) or Tunnel (IKEv2) -…
-
Cannot send mail to two-factor authentication for SSL VPN
Hi, I would like to use two-factor authentication for SSL VPN access but from the logs I see this error and I can't understand what I should do. Thanks Max
-
IKEv2 and Windows 11 on standalone ATP500
Hi there, because the actual IPSec client from Zyxel does not support ARM proccessors, i had to configure VPN IPSec IKEv2 to use the buildin Windows 11 VPN client. That raises a bunch of questions: How can i use a trusted certificate instead of the "buildin". I cannot use the official bought FQDN based cert, because while…
-
how to create vpn ssl with client openvpn
-
Insert a list of URLs in the content filtering of an ATP200
Hi everyone, I need to insert about 200 URLs to block into the content filtering profile of a ZYXEL ATP200. How should I do it if possible? Thank you and best regards.
-
2FA Remote Access VPN (Flex 200H V1.32(ABWV.0) )
Hi! My client has a Flex 200H V1.32(ABWV.0) firewall and we - the network administrators - are using/enabling IPSec VPN for the networks users to access the network remotely. (Also using SSL VPN with OpenVPN.) From the beginnings we used "native clients built into Windows" in win10/11 for "home office" users. They are…
-
Configuration of USG LITE 60AX with external Router
Hey there, first - thanks for ur help! My setup: Ive got a router / modem which connects me with the internet. I get a dynamic ip from my provider. This router itself has got an internaly static lan interface: 192.168.178.1 And this router is also my dhcp server from 192.168.178.4 till 192.168.178.100 So, i connected the…
-
Change certificate of a managed AP?
Is it possible to add a new certificate to a AP (WAX650S) managed by a USGFlex200? When I'm connecting direct to the AP, I will get a “not secure” message of the browser. I have added the cert and give the rights, but the browser says: This server could not prove that it is 192.168.xxx.xxx. Its security certificate is from…
-
IPSec VPN does not work with latest MacOS, restoring a configuration does NOT reinstall the VPN part
Hi all, I have seen the instructions posted in the VPN section and followed them to install IPSec VPN on the newest MacBook with newest MacOS. Older MacOS and notebooks worked fine with the IPSec VPN. Before: IPSec VPN works for Androids and Windows and older MacOS, but does not work with the newest MacBooks with newest…
-
Urgent: Lack of VLAN over LAG functionality on USG FLEX 700H
Hello, We are deeply disappointed that the USG FLEX 700H, despite being a high-tier and newer product, does not support publishing VLANs over LAG—a feature that was readily available on older devices, such as the ATP500. This omission severely impacts our deployments, and our client has expressed significant…
-
config convert problem Flex500 -> Flex 500H
We tried to convert a config from a Flex 500 to a Flex 500H. It failed, we got the following error log. What could be the problem?
-
admin password
Change admin password
-
Change admin password on USG Flex 100H
-
How to activate SecuExtender VPN
I'm having trouble activating the VPN, It says error code: 70. Upon checking it has a problem with administrative rights on the computer. I checked, and my computer is already an administrator. I'm not the one who bought the VPN and my client sent me a link to install it. Kindly please help me. Thank you
-
Enabling "Community Zyxel Forum" to accept .tar.bz2 files
Hello everyone, if you try to attach a diag file from Zyxel products you get an error message: Please consider to allow to upload also .tar.bz2 files
-
USG 200 firmware download
where can i get the firmware for USG 200 ?
