Best Of
Re: Организация VPN Site-To-Site
onatoli4
Re: NWA-1123-AC-HD: OK to upgrade 5.46 directly to 6.00?
We will retain the recent 3 firmware versions on our official website. Version 6.00 could be found.
https://www.zyxel.com/support/download_landing/product/nwa1123_ac_hd_13.shtml?c=gb&l=en&pid=20170106200003&tab=Firmware&pname=NWA1123-AC%20HD
Here are the firmware links.
5.50
http://ftp2.zyxel.com/NWA1123-AC_HD/firmware/NWA1123-AC HD_5.50(ABIN.3)C0.zip
6.10
http://ftp2.zyxel.com/NWA1123-AC_HD/firmware/NWA1123-AC HD_6.10(ABIN.2)C0.zip
Joslyn
Re: Previous firmware upgrade failed - ERROR: bwm control-tcp-ack
Re: ContentFilter availability
Hi @kyssling,
Thanks for the remote session.
I add DNS Address/PTR Record “webres.2.geo.ctmail.com=216.163.188.49”.
You can monitor Content Filter and see if the issue is resolved.
Re: Zywall 110 Inter-VLAN (intra-Zone) routing problem
Hi @Matthias_AUT,
About the symptom "devices from other VLANs cannot connect to VLAN587 devices", try to use the following steps for troubleshooting.
PC1 in vlan587: 128.130.77.67
PC2 in vlan883: 128.130.77.99
Step 1: Go to Diagnostics > Network Tool. Select PING IPv4 and enter the IP address of PC1 128.130.77.67.
Remember to disable Windows firewall on PC1. Check if ping PC1 from ZyWALL successfully.
Step 2:
On PC2 (128.130.77.99), ping vlan587’s gateway 128.130.77.65.
Check if PC2 is able to ping vlan587’s gateway IP address.
Re: Locked out of USG210
Hi @jw708,
If you have the latest backup configuration file "startup-config.conf", search for the following CLI.
username admin encrypted-password $4$encryptedpasswordencryptedpassword$ user-type admin
Then set a new password and replace the following CLI with the original one.
In this example, 12345678 is the temporal password.
Save and rename startup-config-back.conf. Upload this configuration file to device and apply it.
Re: VPN100: Repetitively error: myZyXEL.com Certificate download has failed
Hi @Dany,
The error comes from "Certificate Update" in Configuration > Security Service > SSL Inspection > Certificate Update.
We have fixed the issue on the update server.
Try to click "Update Now" and SSL certificate is able to be downloaded successfully.
Re: NWA1123-AC-HD vs Samsung TV
Welcome to ZYXEL Community.
Connecting to which radio is decided by the station. If Samsung TV only supports 2.4G, it should only hear 2.4G beacon, no 5G beacon even though the SSID service with 2.4G and 5G. We tested for thousands devices with 2.4G only, but did not see the same symptom as yours. According to your description, it seems the Samsung TV might not know which beacon is correct to connect. Maybe you can ask for Samsung if they meet the similar symptom before.
Joslyn
Re: For Zywall 110 usg
Hi @dragonsyr,
DHCP
Table
On dashboard, go to System Status > DHCP Table and click the number to view DHCP table.
Drop button for wan interface
Click Renew to send a new DHCP request to a DHCP server.
Custom Filtering
For new USG/ZyWALL devices, you need to purchase valid license of "Content Filter " to block/allow websites no matter you use “managed categories” or “custom rules”.
Re: Remote access over VPN
Hi @dejmal69,
On SBG, select “Any” as Remote IP Type in IPSec policy.
On USG, set local policy of VPN tunnel as 0.0.0.0/0.
Add a policy route for traffic from SBG.
Incoming: tunnel
Source Address: SBG LAN subnet (ex: 192.168.1.0/24)
Next-Hop: USG’s wan interface
Add a NAT rule.
In this example, the PC in SBG’s LAN has IP address 192.168.1.3.
Add a security policy rule.
