NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

User00's avatar
User00
Star
Mar 15, 2020
Solved

Smart Managed Pro Switch and TLS 1.2 support

With the recent release of Firefox (v74) any SSL connection that's not connecting at TLS 1.2 is flagged.  I don't believe the Smart Managed Pro models support 1.2 (not even 1.1, just 1.0), do they?  ...
Security
  • User00's avatar
    User00
    Jul 02, 2022

    Well, it took long enough - but FINALLY!!!

    v6.3.1.43 now supports TLS 1.2

     

     

     

     

User00's avatar
User00
Star
Mar 15, 2020
@schumaku wrote:
The GS716Tv3, GS724Tv4 and GS748Tv5 line is a little aged - appears Netgear has not cared yet for updating these devices core code including TLS 1.2 or newer support.  @YeZ please assist.

They might be aged, but as of the 2020 Product Catalog - they are still listed.  Seems strange that they would abandon the line - but if the entire product suite can't support secure communications using a protocol that was released back in 2008 - maybe they should.

 

DaneA's avatar
DaneA
NETGEAR Employee Retired
Mar 17, 2020

User00,

 

I suggest you to post your concern as feature request in the Idea Exchange for Business board here.  

 

 

Regards,

 

DaneA

NETGEAR Community Team

  • schumaku's avatar
    schumaku
    Guru - Experienced User
    Mar 17, 2020

    DaneA this is not a featue request - much more a standard product maintenance process. Wake-up the product managment please!

  • User00's avatar
    User00
    Star
    Mar 17, 2020

    If Netgear needs a feature request from the community to even consider implementing TLS 1.2 on their business line of switches, then maybe Netgear is in the wrong business.  Securing communication between client and switch interface should not be an afterthought.

     

    Here's the most recent RFC about the IETF completely deprecating TLS 1.0 and 1.1:

    https://datatracker.ietf.org/doc/draft-ietf-tls-oldversions-deprecate/

     

    ... and TLS 1.2 has been around since 2008:

    https://tools.ietf.org/html/rfc5246

     

    However, while suggesting TLS 1.3 might be appropriate for a feature request, it's only very embarassing for Netgear that their switches only support up to TLS 1.0.

    • schumaku's avatar
      schumaku
      Guru - Experienced User
      Mar 17, 2020

      Could be my words - almost convinced Netgear would find the similar text in the email archives several years ago already 8-) 

      User00 wrote:

      However, while suggesting TLS 1.3 might be appropriate for a feature request, it's only very embarassing for Netgear that their switches only support up to TLS 1.0.

      Gee, many newer Netgear switch model lines support TLS 1.2 for a long time.

      Also missing is the ability to create CSR, to upload certificate and private key in a reasonable way.

    • RickW80's avatar
      RickW80
      Initiate
      Jul 07, 2020

      I have 4 of the S3300 with the newest available firmware 6.6.4.21. They're less than a year old.  None of them is providing TLS newer than 1.0.  I also consider this a defect in the product.  It's not something we should have to request as a feature to get fixed.

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More