NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

xadd's avatar
xadd
Tutor
Apr 06, 2022

EX7300 and R7800 : Certificate Error (Server identity can't be verified)

Hi,   I have a R7800 router and EX7300 extender.    Regularly, I have an error message on IOS device "The Server identity can't be verified". This message is not linked to a specific site, even i...
xadd's avatar
xadd
Tutor
Apr 06, 2022

HI,

 

The Router is connected to a TPLink TL-R470T+ Hub, connected to 4G Box

The R7800 router's firmware is V1.0.2.90

The EX7300 Extender's firmware is 1.0.0.146

 

I don't really know what is the connexion when it happens. It seems both was I'm either closer to the router or the extender..

 

Thank you

plemans's avatar
plemans
Guru - Experienced User
Apr 06, 2022

the tplink is its own router. It causes a double nat if you're running that and the netgear in router mode. 

A double nat happens when you cascade more than 1 router.
https://kb.netgear.com/30186/What-is-Double-NAT
Fixes? There’s 3 options but only use 1.
1. Put the modem/gateway in modem only/pass through mode. This disables its routing functions. Kind of pointless with a load balancing router like the tp-link. 
2. Leave the modem/gateway in router mode but put the Netgears IP address into its DMZ. This forwards the data to the netgear. You can either leave the modem/gateway’s wireless enabled or disabled. Just make sure its using a different wifi channel to prevent interference
3. Put the Netgear into access point mode. This disables its routing functions. Wifi/ethernet still works but it does disable some features.
https://kb.netgear.com/26765/Which-features-are-disabled-on-my-NETGEAR-router-when-it-is-set-to-AP-Mode

  • xadd's avatar
    xadd
    Tutor
    Apr 06, 2022

    My R7800 is indeed in AP Mode. I'm so sorry not having clarified this before.

    • plemans's avatar
      plemans
      Guru - Experienced User
      Apr 06, 2022

      try it with the extender turned off. If you still get it, then its either the tplink load balancing router or the netgear router. then you can try different firmwares on the router and see what happens. 

      • xadd's avatar
        xadd
        Tutor
        Apr 07, 2022

        This problem is mainly occuring since I have installed the extender. I could of course make this confirmed by switching off the extender. But It could also be since iOS device alerts each time a self signed certificate is used.

         

        Nevertheless, as all devices are up-to-date in firmware version, the question is what can I do as I will have identified which device is does come from ?

         

        The other and main question : as my flow is supposed to be secured between my computer and the target site, why this routerLogin certificate is involved in the network flow ? Is this to be considered as a Man in The Middle issue ? 

         

        If we add the fact that the RouterLogin certificate is not certified, we could really consider this as a major security issue when this router is used out of private environment.