Orbi WiFi 7 RBE973
Reply

Re: BR500 VPN Router Issues

hattac
Initiate

BR500 VPN Router Issues

I have the BR500 VPN Router, connected to the outside world through a Motorola MB8611. Wireless networking is provided by Netgear WAC devices situated throughout the house. All the WAC devices are wired (Ethernet) to the router, some via switches and some direct. All has worked well and still basically is. Problem is that the BR500 is at end of life and no longer supported. Although it has never been completely essential for me to do so, I have used Insight to manage all my devices.

As of yesterday, looking at the network through my Insight app, the BR500 is shown as disconnected, and if I log directly onto the router from my PC on the same internal network, it also has a banner that says "Access to cloud is not available." I guess that message is consistent with the lack of ability to see the router via Insight. My home network seems to be otherwise working, but I cannot get the BR500 to show as connected in Insight. I have rebooted the modem, followed by rebooting the router, but to no avail.

I'm guessing the Netgear is basically phasing out the BR500 and this symptom is just the first of many that I will experience.

Since Netgear doesn't seem to have a replacement for the BR500, and seems to only push the Orbi systems for home use, I'm kinda inclined to go elsewhere like Ubiquiti.

Any ideas?

Message 1 of 14
BrendanM
NETGEAR Expert

Re: BR500 VPN Router Issues

Hi @hattac - I'm sorry about the problem with your BR500 failing to connect to Insight. We are urgently working on a fix to address this problem. 

Message 2 of 14
bhinkston
Tutor

Re: BR500 VPN Router Issues

I received the attached email from Netgear ... But, the BR500 Firmware V5.10.0.6 isn't available on the support page (only V5.10.0.5).  AND, there's no way to upgrade the BR500 through Insight because it has been disconnected because of the expired SSL certs.

 

BR200 Support Page Download Link:  https://www.netgear.com/support/product/br200/?utm_source=contactus&utm_medium=website-internal&utm_...

 

I assume that since Insight won't work with the BR200 router going forward without the updated firmware, we must have the firmware to get the BR200 connected back to Insight ... and this MUST be done direct on the BR200 UI (not through insight).

 

When can we expect to see the updated Firmware loaded to the support page above?

 

-Brent

Message 3 of 14
bhinkston
Tutor

Re: BR500 VPN Router Issues

 

Dear Brent,

The following firmware is available to upgrade your device:

Firmware Details:

Model BR200

Firmware Version: 5.10.0.6

Release notes:

Insight Managed Business Router BR200 Firmware Version 5.10.0.6

Bug Fix

This firmware addresses the following bug:

  • Fixes the issue where SSL certificate for cloud connection has expired. Please follow the local GUI firmware update instructions to update to this firmware.

Known Issues

This firmware contains the following known issues:

  • The BR200 UI cannot be reached through VPN, through a static route from a different subnet, or by LAN users from a VLAN other than the default management LAN (VLAN 1). Workaround: Access the local browser UI from the BR200 default management LAN.
  • NAT loopback does not work in this release. NAT loopback is useful for accessing internal resources by public domain name. Workarounds: Use one of these workarounds:

o Change device hosts file to map public domain name to local IP when working on the same subnet as a public server.

o Use a separate DNS server that can handle accessing public resources from an internal network.

o Downgrade to a previous released firmware with NAT loopback support.

  • IPsec issues

o Different IPsec policies (Rules) have to use the same Pre-Shared Key (PSK).

o When applying the Disable, Enable, and Add IPsec policy features to a new routing table and firewall rules, an established IPsec connection briefly disconnects.

Workaround: Change the IPsec policy only when a brief disconnect is acceptable.

o NAT-T cannot be disabled with IPsec IKEv1.

o Wrong subnet is displayed in the IPsec VPN log.

o Some supported IPsec policies (Rules) are not available in the local browser UI.

Workaround: Use Insight to choose from all supported policies.

  • OpenVPN is missing the remote-cert-tls server in the client.opvn export.

Workaround: If “No server certificate verification method has been enabled' error is shown in the Open VPN client status window, add a new line at the end of the client.ovpn configuration file with this text:

remote-cert-tls server

  • DHCP server max client limited to 254 addresses.
  • DHCP reservation for non-default subnet may be lost after power cycle.
  • IPv6 passthrough doesn't work.
  • Unable to change name in IP/MAC Reservations or on Insight Cloud Portal.
  • After the firmware update, GUI access through the Firefox browser is slow. The root cause of this issue is that Firefox does not update the certificate properly.

Workaround: Remove all old BR200 certificates:

  1. Launch Firefox.
  2. Select Options > Privacy & Security.
  3. Scroll down to the Security section.
  4. Click the View Certificates button.
  5. Delete all certificates named www.routerlogin.net.

Firmware Update Instructions

To preserve your current configuration, it is always a good practice to create a backup of your device settings before a firmware update.

To back up the BR200 configuration to the Insight Cloud:

  1. Log in to your Insight account.
  2. Find the BR200 in the Devices list.
  3. Edit the BR200.
  4. Select the Configuration Backup & Restore tab to create a configuration backup.

To back up settings from the local browser UI:

  1. Log in to the BR200 UI.
  2. Select Advanced > Backup Settings.

If the BR200 is connected to the Insight cloud, schedule or perform an update using the Insight app or through the Insight Cloud Portal.

To update the BR200 firmware from the local browser UI, follow the instructions in your product’s user manual. To view your product’s user manual, visit https://www.netgear.com/support/product/BR200.aspx#docs.

After updating to the latest firmware, make sure to update to the latest version of the NETGEAR Insight app for the best functionality and user experience.

 

 

Sincerely,

 

The NETGEAR Insight Team

Do not reply to this message. This message is automatically generated.

 

You are receiving this e-mail because of your notification settings in NETGEAR Insight. To manage your Insight notification settings, visit How do I view and manage Insight notifications?

 

©2024 NETGEAR, Inc. NETGEAR, the NETGEAR logo and NETGEAR Insight are trademarks of NETGEAR, Inc. 350 E. Plumeria Drive, San Jose, CA 95134 USA.

Message 4 of 14
BrendanM
NETGEAR Expert

Re: BR500 VPN Router Issues

The BR500 firmware is available to download at the link below:

https://kb.netgear.com/000066359/BR500-Firmware-Version-5-10-0-6

 

If you have a BR200, then use:

https://kb.netgear.com/000066360/BR200-Firmware-Version-5-10-0-6

Message 5 of 14
bhinkston
Tutor

Re: BR500 VPN Router Issues

Work great!  Thank Brendan!

 

-Brent

Message 6 of 14
JEDIV
Apprentice

Re: BR500 VPN Router Issues

After trying to upload the new 5.10.0.6 firmware using browsers Brave and Firefox, I successfully updated it using Edge.

 

Now I am having a problem with the router showing "CPU Occupancy Rate is high.  Check the Router."  The CPU usage is 57.36%.  I will reboot it to see if it settles down.

Message 7 of 14
JEDIV
Apprentice

Re: BR500 VPN Router Issues

After reboot, CPU usage is back down to 14.8%.  Maybe all is well again.  Yes, now cloud access and Insight Management app recognizes it as alive.  yeah!  Thank.

Message 8 of 14
bhinkston
Tutor

Re: BR500 VPN Router Issues

For the record, I used Firefox.  Another thread said that "2 browsers" were causing a problem... but, it wasn't clear which ones.

Message 9 of 14
JEDIV
Apprentice

Re: BR500 VPN Router Issues

Sorry there were two different threads.  I was piggybacking on two different ones without thinking.  Things seemed to have finally resolved themselves.

 

1.  I used Edge that finally worked for me.  Brave and Firefox did not.

2.  After the first reboot with the new firmware the CPU usage was way to high.

3.  After a second reboot the CPU usage went back down to normal and cloud access and Insight Management is now functional again.

 

 

Message 10 of 14
gwp1965
Tutor

Re: BR500 VPN Router Issues

I upgraded to the latest FW and while that resolved my insight connection, it broke my ipsec setup between two BR200 routers. The ipsec makes a connection but I can no longer map drives via their local subnet. I can ping the other subnets ip addresses, but cant access, map, or connect to network shares on the other subnet.

This use to work with the 5.0.7.10.4 fw. If I downgrade, again, I will lose insight connection!

Any suggestions

Message 11 of 14
c3po2
Star

Re: BR500 VPN Router Issues

Are you setting IPsec tunnel through Insight, or GUI? The new firmware should not change IPsec settings, would you please open support ticket with NETGEAR support and enable SDM for both sites, so that we can debug why working IPsec broken after firmware update. Thanks.

Message 12 of 14
gwp1965
Tutor

Re: BR500 VPN Router Issues

Setting IPsec in GUI. IPsec connects green on both ends and log shows connection. The issue is with fw newer than 5.07.10.4. I have tried each as they are released. While the routers connect they don't allow lan access to each subnet. Downgraded fw and I can browse subnets with no issues. This is a known Netgear issue, I was hoping this release fixed it but once again Netgear let me down!
Message 13 of 14
c3po2
Star

Re: BR500 VPN Router Issues

Sent you a private message for either creating support ticket, or enable SDM. Thanks.

Message 14 of 14
Top Contributors
Discussion stats
  • 13 replies
  • 1316 views
  • 3 kudos
  • 6 in conversation
Announcements