Orbi WiFi 7 RBE973
Reply

MD5-Signed Certificate Warning with OpenVPN on iOS

jg121234
Tutor

R6700v3 OpenVPN fix firmware released

It looks like R6700v3 firmware fixing this issue was released on 6/1/18.

  • Added support for SHA256 certificates in lieu of MD5 for OpenVPN

https://kb.netgear.com/000058850/R6700v3-Firmware-Version-1-0-2-56

 

Hopefully Netgear can release R6700v2 now that they already released v1 and v3...

Message 101 of 109
jg121234
Tutor

R6700v2 Firmware Version 1.2.0.24 OpenVPN MD5 fix released

R6700v2 Firmware Version 1.2.0.24 OpenVPN MD5 fix released

https://kb.netgear.com/000059475/R6700v2-Firmware-Version-1-2-0-24

 

Going to give it a try, hopefully everything is good to go!

Message 102 of 109

Re: R6700v1 OpenVPN fix firmware released

Hi!

 

    I installed the latest firmware for R6700 v1, downloaded and installed the scripts and files for Windows PC.  Took awhile to search and understand an error:  "TAP-Windows adapter 'NETGEAR-VPN' not found".  The solution is to be sure to rename the Windows TAP adapter to "NETGEAR-VPN" inside Control Panel, otherwise the login will fail because OpenVPN cannot find the TAP adapter.  Works great so far, glad to have the added measure of security.  Will try to install the files for iOS next for iPhone X.

 

Model: R6700|Nighthawk AC1750 Smart WiFi Router
Message 103 of 109
mike406
Apprentice

Re: R6700v1 OpenVPN fix firmware released


@gramercyradio wrote:

Hi!

 

    I installed the latest firmware for R6700 v1, downloaded and installed the scripts and files for Windows PC.  Took awhile to search and understand an error:  "TAP-Windows adapter 'NETGEAR-VPN' not found".  The solution is to be sure to rename the Windows TAP adapter to "NETGEAR-VPN" inside Control Panel, otherwise the login will fail because OpenVPN cannot find the TAP adapter.  Works great so far, glad to have the added measure of security.  Will try to install the files for iOS next for iPhone X.

 


Open clientx.ovpn in Notepad and remove the line "dev-node NETGEAR-VPN" or comment it out by putting a semi-colon in front of it ";dev-node NETGEAR-VPN" and you won't have to name the adapter.

Message 104 of 109

Re: R6700v1 OpenVPN fix firmware released

Hi Mike406,

 

   Yes!  Thank you for the word of advisement, I appreciate it.  I had also  downloaded the client configuation and key files to iPhone X, use the latest OpenVPN app for iPhone (and accept the new configuration and key files on the app), works great on iPhone X.

 

Thanks!

 

 

Model: R6700|Nighthawk AC1750 Smart WiFi Router
Message 105 of 109
993TT
Aspirant

Re: MD5-Signed Certificate Warning with OpenVPN R7000P



So the R7000P had a hot fix beta firmware available 1.3.2.34, but it has been pulled when they updated the firmware to 1.3.1.44 and the 1.3.1.44 does not support SHA256,  what up with that?

 

Model: R7000P|Nighthawk AC2300 Smart WiFi Router with MU-MIMO
Message 106 of 109
schumaku
Guru

Re: MD5-Signed Certificate Warning with OpenVPN R7000P


@993TT wrote:

So the R7000P had a hot fix beta firmware available 1.3.2.34, but it has been pulled when they updated the firmware to 1.3.1.44 and the 1.3.1.44 does not support SHA256,  what up with that?
@JamesGL wrote:

Resolution will be released prior to the deadline.

So dear @JamesGL, whats the deal here? Deadline passed months ago.

Message 107 of 109
993TT
Aspirant

Re: MD5-Signed Certificate Warning with OpenVPN R7000P

Hah!  Turns out the new R7000P firmware does have the SHA256 support.  The release notes just don't mention it.

 

Message 108 of 109
mike406
Apprentice

Re: MD5-Signed Certificate Warning with OpenVPN R7000P


@993TT wrote:

Hah!  Turns out the new R7000P firmware does have the SHA256 support.  The release notes just don't mention it.

 


Yes, and since they fail to mention it. People are going to wonder why their clients no longer connect to the VPN since they have to re-acqurie the new certs for each device.

Message 109 of 109
Top Contributors
Discussion stats
Announcements

Orbi 770 Series