NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

ssl

7 Topics

Add the SHA256 Hash algorithm to VPN Firewall FVS336Gv3
Hi, I just got a certificate which the hash algorithm is SHA256. But my vpn firewall only allows SHA1. Can you please fix this? Thank you very much. Best regards
Guardian2100
Nov 14, 2018 Place Feature Requests
106KViews
10likes
14Comments
Support HTTPS oin GS1xxE web Managet Switches
Please consider using HTTPS for the web management of the GS1xxE line of switches. Especially the smaller models need a secure way to configure them as there are no real replacements for in-field deployments outside special technical rooms where is no room to fit an entire rack into... As the current state of security of many of the embedded or IoT thingis is sub-optimal it is crucial to prevent login credential sniffing via other pOwnd network devices within the same subnet. Thanks, Stefan Seide
sseide
Nov 14, 2018 Place Feature Requests
12KViews
8likes
1Comment
Unable to renew letsencryt certificate due to python installation
Hi, I used to have a SSL certificate from letsencrypt to access my NAS from outside with my domain. Recently my certificate expire and now when I try to run the Cerbot im getting an error with python packages: Creating virtual environment... Installing Python packages... Had a problem while installing Python packages. pip prints the following errors: ===================================================== Collecting argparse==1.4.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 11)) Downloading argparse-1.4.0-py2.py3-none-any.whl Collecting pycparser==2.14 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 17)) Downloading pycparser-2.14.tar.gz (223kB) Collecting asn1crypto==0.22.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 21)) Downloading asn1crypto-0.22.0-py2.py3-none-any.whl (97kB) Collecting cffi==1.10.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 24)) Downloading cffi-1.10.0.tar.gz (418kB) Collecting ConfigArgParse==0.12.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 61)) Downloading ConfigArgParse-0.12.0.tar.gz (41kB) Collecting configobj==5.0.6 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 63)) Downloading configobj-5.0.6.tar.gz Collecting cryptography==2.0.2 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 65)) Downloading cryptography-2.0.2.tar.gz (427kB) Collecting enum34==1.1.2 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 96)) Downloading enum34-1.1.2.tar.gz (46kB) Collecting funcsigs==1.0.2 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 99)) Downloading funcsigs-1.0.2-py2.py3-none-any.whl Collecting idna==2.5 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 102)) Downloading idna-2.5-py2.py3-none-any.whl (55kB) Collecting ipaddress==1.0.16 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 105)) Downloading ipaddress-1.0.16-py27-none-any.whl Collecting linecache2==1.0.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 108)) Downloading linecache2-1.0.0-py2.py3-none-any.whl Collecting ordereddict==1.1 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 111)) Downloading ordereddict-1.1.tar.gz Collecting packaging==16.8 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 113)) Downloading packaging-16.8-py2.py3-none-any.whl Collecting parsedatetime==2.1 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 116)) Downloading parsedatetime-2.1-py2-none-any.whl Collecting pbr==1.8.1 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 119)) Downloading pbr-1.8.1-py2.py3-none-any.whl (89kB) Collecting pyOpenSSL==16.2.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 122)) Downloading pyOpenSSL-16.2.0-py2.py3-none-any.whl (43kB) Collecting pyparsing==2.1.8 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 125)) Downloading pyparsing-2.1.8-py2.py3-none-any.whl (54kB) Collecting pyRFC3339==1.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 134)) Downloading pyRFC3339-1.0-py2.py3-none-any.whl Collecting python-augeas==0.5.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 137)) Downloading python-augeas-0.5.0.tar.gz (90kB) Collecting pytz==2015.7 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 139)) Downloading pytz-2015.7-py2.py3-none-any.whl (476kB) Collecting requests==2.12.1 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 153)) Downloading requests-2.12.1-py2.py3-none-any.whl (574kB) Collecting six==1.10.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 156)) Downloading six-1.10.0-py2.py3-none-any.whl Collecting traceback2==1.4.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 159)) Downloading traceback2-1.4.0-py2.py3-none-any.whl Collecting unittest2==1.1.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 162)) Downloading unittest2-1.1.0-py2.py3-none-any.whl (96kB) Collecting zope.component==4.2.2 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 165)) Downloading zope.component-4.2.2.tar.gz (546kB) Collecting zope.event==4.1.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 167)) Downloading zope.event-4.1.0.tar.gz (476kB) Collecting zope.interface==4.1.3 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 169)) Downloading zope.interface-4.1.3.tar.gz (141kB) Collecting mock==2.0.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 187)) Downloading mock-2.0.0-py2.py3-none-any.whl (56kB) Collecting letsencrypt==0.7.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 198)) Downloading letsencrypt-0.7.0-py2-none-any.whl Collecting certbot==0.19.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 202)) Downloading certbot-0.19.0-py2.py3-none-any.whl (279kB) Collecting acme==0.19.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 205)) Downloading acme-0.19.0-py2.py3-none-any.whl (99kB) Collecting certbot-apache==0.19.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 208)) Downloading certbot_apache-0.19.0-py2.py3-none-any.whl (141kB) Collecting certbot-nginx==0.19.0 (from -r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 211)) Downloading certbot_nginx-0.19.0-py2.py3-none-any.whl (65kB) Requirement already satisfied: setuptools in /opt/eff.org/certbot/venv/lib/python2.7/site-packages (from zope.component==4.2.2->-r /tmp/tmp.BwSUX02mT7/letsencrypt-auto-requirements.txt (line 165)) Installing collected packages: argparse, pycparser, asn1crypto, cffi, ConfigArgParse, six, configobj, idna, enum34, ipaddress, cryptography, funcsigs, linecache2, ordereddict, pyparsing, packaging, parsedatetime, pbr, pyOpenSSL, pytz, pyRFC3339, python-augeas, requests, traceback2, unittest2, zope.interface, zope.event, zope.component, mock, acme, certbot, letsencrypt, certbot-apache, certbot-nginx Found existing installation: argparse 1.2.1 Not uninstalling argparse at /usr/lib/python2.7, outside environment /opt/eff.org/certbot/venv Running setup.py install for pycparser: started Running setup.py install for pycparser: finished with status 'done' Running setup.py install for cffi: started Running setup.py install for cffi: finished with status 'error' Complete output from command /opt/eff.org/certbot/venv/bin/python2.7 -u -c "import setuptools, tokenize;__file__='/tmp/pip-build-qToB2P/cffi/setup.py';f=getattr(tokenize, 'open', open)(__file__);code=f.read().replace(' ', ' ');f.close();exec(compile(code, __file__, 'exec'))" install --record /tmp/pip-kRuwQ_-record/install-record.txt --single-version-externally-managed --compile --install-headers /opt/eff.org/certbot/venv/include/site/python2.7/cffi: /usr/bin/ld: cannot find crt1.o: No such file or directory /usr/bin/ld: cannot find crti.o: No such file or directory collect2: error: ld returned 1 exit status Note: will not use '__sync_synchronize()' in the C code ***** The above error message can be safely ignored. running install running build running build_py creating build creating build/lib.linux-armv7l-2.7 creating build/lib.linux-armv7l-2.7/cffi copying cffi/cffi_opcode.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/error.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/setuptools_ext.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/ffiplatform.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/cparser.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/vengine_cpy.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/__init__.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/verifier.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/commontypes.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/api.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/backend_ctypes.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/recompiler.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/model.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/lock.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/vengine_gen.py -> build/lib.linux-armv7l-2.7/cffi copying cffi/_cffi_include.h -> build/lib.linux-armv7l-2.7/cffi copying cffi/parse_c_type.h -> build/lib.linux-armv7l-2.7/cffi copying cffi/_embedding.h -> build/lib.linux-armv7l-2.7/cffi running build_ext building '_cffi_backend' extension creating build/temp.linux-armv7l-2.7 creating build/temp.linux-armv7l-2.7/c arm-linux-gnueabi-gcc -pthread -DNDEBUG -g -fwrapv -O2 -Wall -Wstrict-prototypes -fno-strict-aliasing -D_FORTIFY_SOURCE=2 -g -fstack-protector-strong -Wformat -Werror=format-security -fPIC -DUSE__THREAD -I/usr/include/ffi -I/usr/include/libffi -I/usr/include/python2.7 -c c/_cffi_backend.c -o build/temp.linux-armv7l-2.7/c/_cffi_backend.o c/_cffi_backend.c:2:20: fatal error: Python.h: No such file or directory #include <Python.h> ^ compilation terminated. error: command 'arm-linux-gnueabi-gcc' failed with exit status 1 ---------------------------------------- Command "/opt/eff.org/certbot/venv/bin/python2.7 -u -c "import setuptools, tokenize;__file__='/tmp/pip-build-qToB2P/cffi/setup.py';f=getattr(tokenize, 'open', open)(__file__);code=f.read().replace(' ', ' ');f.close();exec(compile(code, __file__, 'exec'))" install --record /tmp/pip-kRuwQ_-record/install-record.txt --single-version-externally-managed --compile --install-headers /opt/eff.org/certbot/venv/include/site/python2.7/cffi" failed with error code 1 in /tmp/pip-build-qToB2P/cffi/ ===================================================== Certbot has problem setting up the virtual environment. We were not be able to guess the right solution from your pip output. Consult https://certbot.eff.org/docs/install.html#problems-with-python-virtual-environment for possible solutions. You may also find some support resources at https://certbot.eff.org/support/ . Any suggestion?
osilvab
Nov 18, 2017 Place Use your ReadyNAS
1.4KViews
0likes
2Comments
FVS336Gv3 PPTP VPN for macOS Sierra
Hi Netgear community, One of our sites has a NETGEAR ProSafe™ Gigabit Dual WAN SSL VPN Firewall FVS336Gv3 which has PPTP Server enabled and setup with working users for Windows OS, there is 1 user that uses MAC OS. Since that 1 user upgraded their macOS to Sierra the option for PPTP has been removed (Apple reports the reason is for security). I have tried enabling SSLVPN in the firewall but have struggled to get that working. As a fallback, we are looking at 3rd party clients that can create the VPN using PPTP again. I've looked at some suggested clients (FlowVPN, VPN Tracker, user is trying TunnelBlick) but not getting very far. Ideally, we want a freeware that can do PPTP (unless there is a free SSLVPN option). Any suggestions or if you have got around this issue with macOS Sierra. Many thanks in advance.
sedcom_pm
Aug 24, 2017 Place Business Pro Routers
6.6KViews
0likes
10Comments
SSL Cert not secure
The SSL cert (to manage NAS) was good until I changed the NAS from "local users" to "Active Directory". *The SSL Key Host is the IP address of the NAS, and the cert is still in the Trustede Root Certification Authorities for Chrome Firmware is 6.7.1 I have the same issue on a ReadyNAS 4312 Anyone have a suggestion on what I can check?
Retired_Member
May 14, 2017 Place Use your ReadyNAS
4.7KViews
0likes
8Comments
Turn off ssl
is there any way i can turn the ssl off ? I want to buid a website fot my vlog but i dont want that every new user haf to accept the self signd certificate. I have a readynas 102 wit OS 6.6.1 Thx in advance
Solved
mikedhooer
Jan 21, 2017 Place Use your ReadyNAS
4.9KViews
0likes
5Comments
Owncloud Appache Configuration
My apache configuration is a bit broken now. fortunately the admin page works well. I installed the owncloud add-on and it was working perfectly on the local host. Then I wanted to have access to it from public internet. Initially I set up a DDNS in no-ip.com then I just change the etc/apache2/sites-available/default file where I added the virtualhost for ports 80 and 443, I am not sure this was the file I had to edit, i also set-up the port forwarding in the router. After this I could access the owncloud from my local network and from internet through the no-ip domain. Then I wanted to create the SSL certificate and I tried using the cerbot, but it failed in different ways. One of the error was that the port 443 was being used, then I kill apache by console but still the error was there. The problem was that after that I couldn’t start apache, was getting some code error. I just did a reboot to the whole NAS and apache started but the owncloud connection was broken. ThenI tried local.ip/owncloud I get “The requested URL /owncloud/ was not found on this server.” But when I tried my local.ip I get to the readynas admin site as expected and the owncloud is up and running. I brought back the original default etc/apache2/sites-available/default but it did'nt work. I found out that owncloud is still accessible using http://local.ip/owncloud/index.php/login and also https. I tried different things found in the apache forums and owncloud forums, but somehow the file system is different and they hace other files and other configuration files. then i think i was starting to get the things worse and I decided to stop and ask for help. Right now the things are like this: http://local.ip/owncloud goes to http://local.ip/owncloud/index.php/login and works well https://local.ip/owncloud shows text that starts with "* author Lukas Reschke <lukas@statuscode.ch> * author Morris..... " certificate not working http://no-ip.domain/owncloud works well https://no-ip.domain/owncloud works well, certificate not working I also tried to use my owndomain that I have in godaddy but i couldnt make it connect to the no-ip domain. I created a masked forwarding but I dont know why it doesnt reach. I just don’t know how to fix the local.ip and how to add ssl cerfiticates without messing up the rest, should i add virtualhosts for the no-ip domain and the godaddy domain? I have spent some days on it, but cleary im still beginner to this things. thanks a lot for any help! /Oliver
osilvab
Jan 17, 2017 Place ReadyNAS Storage Apps - Current Apps
5.1KViews
0likes
7Comments