NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

chopin70's avatar
chopin70
Virtuoso
Nov 11, 2017
Solved

OpenVPN update breaks R7000 and probably other routers VPN implementation

Affected plateforms: Android
https://play.google.com/store/apps/details?id=net.openvpn.openvpn
 
 
Spoiler
Change log that fixed the issue:
Changes from 1.1.23 to 1.1.24:
* relax the certificate validation in mbedTLS to allow certificates with broken date format to connect
* re-enabled deprecated and insecure md5 signature algorithm. Support for md5 will be officially DROPPED on Apr 31st 2018
 
 
The previous update broke OpenVPN ability to connect to R7000 VPN.
This last 1.1.24 update of OpenVPN made it again able to connect to R7000 VPN
I am worried about the md5 dropped warning on 31 april 2018.
 
Are we concerned and is Netgear aware of it so that we do not loose OpenVPN for months before it is fixed on routers ?
 
 
 
Apps
Features
Firmware
Security
Troubleshooting
  • JamesGL's avatar
    JamesGL
    Nov 16, 2017

    Hi chopin70,

     

    NETGEAR is already aware of it. We will provide an update on this concern.

4 Replies

  • JamesGL's avatar
    JamesGL
    Master
    Nov 16, 2017

    Hi chopin70,

     

    NETGEAR is already aware of it. We will provide an update on this concern.

    • JamesGL's avatar
      JamesGL
      Master
      Nov 24, 2017

      Hi chopin70,,

       

      Engineering team is working on this but no ETA yet for the release.

      • chopin70's avatar
        chopin70
        Virtuoso
        Nov 24, 2017

        Thank you

        As soon as we have it working before 31 april 2018, it is ok. So that OpenVPN is not broken