NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

j4x4's avatar
j4x4
Aspirant
Oct 15, 2021

Orbi CBR 750 with OpenVPN for home setup?

Hello, I got some great help from Netgear on my OpenVPN install. It's up and running on my Orbi. Next step is to install certificate authentication to secure the connection. Does anyone have experi...
michaelkenward's avatar
michaelkenward
Guru - Experienced User
Oct 15, 2021
j4x4 wrote:

 

I got some great help from Netgear on my OpenVPN install. It's up and running on my Orbi.

Next step is to install certificate authentication to secure the connection. Does anyone have experience with this step? I cannot find anything on the community pages here.

 

This one comes up from time to time. I don't know where you looked –but I found several other messages on the community pages here. This might help:

 

Search - NETGEAR Communities – OpenVPN certificate

 

As that search shows, it is a generic issue that a[p[lies to all routers. that support OpenVPN.

 

PS Unless you hit a brick wall and hit something specific to your hardware, please don't waste your, and anybody else's, time chasing off into other areas of this community. Life's too short. Next to no one follows the section you were directed to. The answers you get there, if there are any, will be the same as you get here. As the link above shows, it is a generic router issue. Best dealt with here first. It is the busiest section for router issues.

j4x4's avatar
j4x4
Aspirant
Oct 21, 2021

Hello,

Thanks for getting back to me. When I run the OpenVPN GUI I get these error messages in red:
Wed Oct 20 19:07:02 2021 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
Wed Oct 20 19:07:02 2021 DEPRECATED OPTION: --cipher set to 'AES-128-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-128-CBC' to --data-ciphers or change --cipher 'AES-128-CBC' to --data-ciphers-fallback 'AES-128-CBC' to silence this warning.
Wed Oct 20 19:07:03 2021 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Wed Oct 20 19:07:04 2021 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options
Wed Oct 20 19:07:04 2021 OpenVPN ROUTE: failed to parse/resolve route for host/network: 192.168.1.0
Wed Oct 20 19:07:09 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
***
I am not sure where to make these fixes ... do I need to add these lines to the actual code? Just not sure how to fix this one ...