NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
RBR750P - No IP address for VPN Connection
I have configured OpenVPN as per Netgear's instructions and it believes it connects from a laptop running Windows, but I cannot access anything on the LAN (e.g., RDP or router via browser). Also, wh...
My situation remains the same (RBR750, v7.2.6.31). I downloaded the smartphone ovpn file and installed it on a Samsung tablet (Android) using OpenVPN Connect v3.2.0 (8367). Opened a VPN connection to the Orbi with this result:
The significant difference between OpenVPN Windows and Apple/smartphone is that:
- Windows defaults to a tap connection (short for "line tap"?) which puts the VPN device on the same IP subnet as other devices on the VPN server, whereas
- Apple/smartphone uses a tun connection (short for "tunnel"). This is also one of the major differences between OpenVPN version 2 and version 3. Version 3 no longer supports tap connections, which is why posts appear on the forum from users who are unable to get OpenVPN version 3 to work with the default client profile. Apple and smartphone have never supported tap connections.
So, this tablet has been given the IP address 192.168.254.2 because the default for Orbi AX routers is to put VPN tap connections in the 192.168.254.x IP subnet. I believe Netgear engineers chose this because they had already decided to use 192.168.2.x subnet for Guest devices.
Using the tablet, I opened a browser connection to 192.168.2.1 (the 750 router) which shows the same information as the screen shot above.
Although this seems like beating a dead horse, all I can suggest is installing OpenVPN Connect on some non-Windows computer/laptop/smartphone/tablet, importing the *.ovpn file designed for smartphone from the RBR750P and see if it will connect and be assigned an IP address.
I would install that version 6 firmware on my RBR750 except that Netgear never released that version of firmware for the 750 (non 'P') product.
If VPN access into the Orbi LAN is a serious requirement, it may be necessary to install a separate VPN server on the LAN. For example, the GL-Net Brume 2 can be installed on the Orbi LAN and can perform two functions:
- Bundle client devices on the LAN into a VPN pipe to an internet VPN host (which the Orbi router cannot), and
- Act as either an OpenVPN Host or a Wireguard Host for connections from the internet to the LAN.
https://www.gl-inet.com/products/gl-mt2500/
I have also set up Wireguard host on a Raspberry Pi to accept connections from the internet. (a bit more technical than plugging a Brume 2.)
I tried via android phone and was able to connect and access RDP services and router interface on LAN via VPN. Was assigned a 192.168.3.x local IP address according to the app. But, connection was not listed in connected devices.
Any way to get it functioning on Windows PC laptop with the VPN built into the RBR750P, instead of adding another one?
FYI, seems open VPN did release a new version yesterday (with some bug fixes), but it didn't resolve my issue.
I think I found a solution. I downloaded the OpenVPN Connect v3 for Windows and used the android config file. Then, I was able to connect and get an IP. I was able to connect with the router webpage as if I was on the LAN as well. Was able to RDP to one computer, but not another (but I think that's another issued).
I don't know why Netgrear doesn't just point to the newer Connect v3, as it is much simpler to setup and works.
Glad that OpenVPN 3 worked for you with the tun configuration. (Internet discussions of tap vs. tun seem to lean towards tun connections being a better balance of capability and performance than tap connections.)
Netgear does not release information about internal decisions, so customers are left to wonder and speculate. One aspect might be a cost/benefit analysis of which projects have a greater potential return on investment. Will the company get more from investment in new products and new features or making changes to existing products? There appear to be a number of ways to remotely connect to a computer on the LAN that were not commonly available 10-15 years ago. Maybe the number of customers who want a classic VPN into the LAN is not as significant as it once was?
The original Orbi router included a USB port with the intention of supporting network storage and network printing. Those capabilities never materialized and newer Orbi products no longer include the USB port at all.
I hear you, but the capability is there. They could use the same method/software/config files for both mobile and PC. All they need to do is tell people to download the newer OpenVPN software. Not much research/time there. Just include the update instructions in the next firmware update. Can even leave the code in place for people who have it working on v 2.