NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Enabling VPN on R7000 using IPv6
Hello Community, regarding FAQ VPN should work with the R7000 with IPv6. From https://kb.netgear.com/23794/R7000-FAQs: "Should the VPN feature still work if I have IPv6 connection? It shoul...
Hello,
because I wasn't able to get VPN (with IPv6) running with Genie I decided,
after reading much about the alternatives, to install FreshTomato.
Now VPN is working like a charme, the only issue still exists is,
that I do not get an /56 prefix, too. But I hope I can fix this, too.
Best regards,
el Blocco
I was able to find a guide on how to setup Open VPN this may help you.
DarrenM
Hello Darren,
thank you very much for the reply. I checked it out...
I built up a similiar test environment:
- Router 1: 192.168.1.X
- Router 2: 10.0.0.X
- Client connected to router1 tries to connect to router2 by VPN.
This works pretty forward with IPv4, but my internet provider doesn't provide a public IPv4 adress. So, as far as I understand, I have to use IPv6 to connect by VPN.
And this still doesn't work :(.
I was able to enable telnet by downgrading the firmware to 1.0.9.42. So I could check the configuration of the router:
- There are running two OpenVPN services:
- /usr/local/sbin/openvpn /tmp/server_tap.conf (for Windows clients?)
- /usr/local/sbin/openvpn /tmp/server_tun.conf (for Smartphone clients?)
Here's the content of server_tap.conf:
dh /tmp/openvpn/dh1024.pem
ca /tmp/openvpn/ca.crt
cert /tmp/openvpn/server.crt
key /tmp/openvpn/server.key
dev tap
server-bridge
proto udp
port 12974
keepalive 10 120
verb 5
mute 5
log-append /tmp/openvpn_log_tap
status /tmp/openvpn-status_tap.log
writepid /tmp/openvpnd_tap.pid
mtu-disc yes
topology subnet
script-security 2
cipher AES-128-CBC
auth sha1
tls-server
client-to-client
duplicate-cn
comp-lzo
fast-io
Push "route 10.0.0.0 255.255.255.0"
Push "route-delay 5"
As far as I can see there are missing at least two settings for IPv6:
server-ipv6 2a03:4000:6:11cd:bbbb::/112
push "route-ipv6 2000::/3 2a03:4000:6:11cd:bbbb::1 1"
I searched in this forum and found that in 2016 Netgear didn't support IPv6 at all:
But then I found the FAQ where IPv6 is mentioned as possible:
https://kb.netgear.com/23794/R7000-FAQs
So I had hope that this has changed in the last 3 years...
I expect I have to investigate OpenVPN configuration files in more detail, now...
Any hints or information on this topic is welcome :).
Best regards,
el Blocco
Hello,
it took a while to establish a working test environment, because the Nighthawk only gets a /64 prefix when working with IPv6 as DHCP (auto detect). A Fritzbox, e.g gets a /56 prefix, which enables me to build up subnets in an easy way. Does anybody know how to get a /56 prefix with the R700, too?
But now it seems I noticed the problem, seems for me like an error in the firmware:
When enabling VPN and activating IPv6 the VPN ports are not opened, so I'm not able to connect via IPv6.
On the other hand, when I activate the remote control on the router, port 8443 (default) is opened for IPv4 and IPv6.
This works for both, IPv4 and IPv6.
Does anybody know how to open the VPN ports for IPv6, too?
Otherwise I will not be able to use VPN on my R7000 :(...
Thanks in advance and best regards,
el Blocco
Hello,
because I wasn't able to get VPN (with IPv6) running with Genie I decided,
after reading much about the alternatives, to install FreshTomato.
Now VPN is working like a charme, the only issue still exists is,
that I do not get an /56 prefix, too. But I hope I can fix this, too.
Best regards,
el Blocco