problem with Netgear R7900

Scripts to manage certificates or generate config files

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
onlysublime
OpenVpn Newbie
Posts: 2
Joined: Wed Apr 04, 2018 1:56 am

problem with Netgear R7900

Post by onlysublime » Wed Apr 04, 2018 5:33 pm

Hello, I'm trying to set up OpenVPN through the Netgear R7900 and would appreciate any assistance. I enabled the VPN service within the router menu and enabled VPN service. UDP port 12974. TCP. I installed openvpn-install-2.4.5-I601.exe. Within the router VPN page, I selected the option to have the router generate the configuration files. 4 files were generated (ca.crt, client.crt, client.key, client1.ovpn). These 4 files were copied over to the C:\Program Files\OpenVPN\config folder. The VPN interface name was changed to NETGEAR-VPN.

the client1.ovpn content is:
client
dev tap
proto udp
dev-node NETGEAR-VPN
remote 209.60.96.11 12974
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5

When OpenVPN launches, I get the error message "Connecting to client1 has failed."

The following is the log:
Wed Apr 04 10:27:05 2018 us=45481 Current Parameter Settings:
Wed Apr 04 10:27:05 2018 us=45481 config = 'client1.ovpn'
Wed Apr 04 10:27:05 2018 us=45481 mode = 0
Wed Apr 04 10:27:05 2018 us=45481 show_ciphers = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 show_digests = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 show_engines = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 genkey = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 key_pass_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=45481 show_tls_ciphers = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 connect_retry_max = 0
Wed Apr 04 10:27:05 2018 us=45481 Connection profiles [0]:
Wed Apr 04 10:27:05 2018 us=45481 proto = udp
Wed Apr 04 10:27:05 2018 us=45481 local = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=45481 local_port = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=45481 remote = '209.60.96.11'
Wed Apr 04 10:27:05 2018 us=45481 remote_port = '12974'
Wed Apr 04 10:27:05 2018 us=45481 remote_float = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 bind_defined = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 bind_local = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 bind_ipv6_only = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 connect_retry_seconds = 5
Wed Apr 04 10:27:05 2018 us=45481 connect_timeout = 120
Wed Apr 04 10:27:05 2018 us=45481 socks_proxy_server = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=45481 socks_proxy_port = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=45481 tun_mtu = 1500
Wed Apr 04 10:27:05 2018 us=45481 tun_mtu_defined = ENABLED
Wed Apr 04 10:27:05 2018 us=45481 link_mtu = 1500
Wed Apr 04 10:27:05 2018 us=45481 link_mtu_defined = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 tun_mtu_extra = 32
Wed Apr 04 10:27:05 2018 us=45481 tun_mtu_extra_defined = ENABLED
Wed Apr 04 10:27:05 2018 us=45481 mtu_discover_type = -1
Wed Apr 04 10:27:05 2018 us=45481 fragment = 0
Wed Apr 04 10:27:05 2018 us=45481 mssfix = 1450
Wed Apr 04 10:27:05 2018 us=45481 explicit_exit_notification = 0
Wed Apr 04 10:27:05 2018 us=45481 Connection profiles END
Wed Apr 04 10:27:05 2018 us=45481 remote_random = DISABLED
Wed Apr 04 10:27:05 2018 us=45481 ipchange = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=45481 dev = 'tap'
Wed Apr 04 10:27:05 2018 us=45481 dev_type = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 dev_node = 'NETGEAR-VPN'
Wed Apr 04 10:27:05 2018 us=46481 lladdr = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 topology = 1
Wed Apr 04 10:27:05 2018 us=46481 ifconfig_local = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 ifconfig_remote_netmask = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 ifconfig_noexec = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 ifconfig_nowarn = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 ifconfig_ipv6_local = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 ifconfig_ipv6_netbits = 0
Wed Apr 04 10:27:05 2018 us=46481 ifconfig_ipv6_remote = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 shaper = 0
Wed Apr 04 10:27:05 2018 us=46481 mtu_test = 0
Wed Apr 04 10:27:05 2018 us=46481 mlock = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 keepalive_ping = 0
Wed Apr 04 10:27:05 2018 us=46481 keepalive_timeout = 0
Wed Apr 04 10:27:05 2018 us=46481 inactivity_timeout = 0
Wed Apr 04 10:27:05 2018 us=46481 ping_send_timeout = 0
Wed Apr 04 10:27:05 2018 us=46481 ping_rec_timeout = 0
Wed Apr 04 10:27:05 2018 us=46481 ping_rec_timeout_action = 0
Wed Apr 04 10:27:05 2018 us=46481 ping_timer_remote = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 remap_sigusr1 = 0
Wed Apr 04 10:27:05 2018 us=46481 persist_tun = ENABLED
Wed Apr 04 10:27:05 2018 us=46481 persist_local_ip = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 persist_remote_ip = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 persist_key = ENABLED
Wed Apr 04 10:27:05 2018 us=46481 passtos = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 resolve_retry_seconds = 1000000000
Wed Apr 04 10:27:05 2018 us=46481 resolve_in_advance = DISABLED
Wed Apr 04 10:27:05 2018 us=46481 username = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 groupname = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 chroot_dir = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 cd_dir = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 writepid = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 up_script = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 down_script = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=46481 down_pre = DISABLED
Wed Apr 04 10:27:05 2018 us=47484 up_restart = DISABLED
Wed Apr 04 10:27:05 2018 us=47484 up_delay = DISABLED
Wed Apr 04 10:27:05 2018 us=47484 daemon = DISABLED
Wed Apr 04 10:27:05 2018 us=47484 inetd = 0
Wed Apr 04 10:27:05 2018 us=47484 log = ENABLED
Wed Apr 04 10:27:05 2018 us=47484 suppress_timestamps = DISABLED
Wed Apr 04 10:27:05 2018 us=47484 machine_readable_output = DISABLED
Wed Apr 04 10:27:05 2018 us=47484 nice = 0
Wed Apr 04 10:27:05 2018 us=47484 verbosity = 5
Wed Apr 04 10:27:05 2018 us=47484 mute = 0
Wed Apr 04 10:27:05 2018 us=47484 gremlin = 0
Wed Apr 04 10:27:05 2018 us=47484 status_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47484 status_file_version = 1
Wed Apr 04 10:27:05 2018 us=47484 status_file_update_freq = 60
Wed Apr 04 10:27:05 2018 us=47484 occ = ENABLED
Wed Apr 04 10:27:05 2018 us=47484 rcvbuf = 0
Wed Apr 04 10:27:05 2018 us=47484 sndbuf = 0
Wed Apr 04 10:27:05 2018 us=47484 sockflags = 0
Wed Apr 04 10:27:05 2018 us=47484 fast_io = DISABLED
Wed Apr 04 10:27:05 2018 us=47686 comp.alg = 2
Wed Apr 04 10:27:05 2018 us=47686 comp.flags = 1
Wed Apr 04 10:27:05 2018 us=47686 route_script = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47686 route_default_gateway = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47686 route_default_metric = 0
Wed Apr 04 10:27:05 2018 us=47686 route_noexec = DISABLED
Wed Apr 04 10:27:05 2018 us=47686 route_delay = 5
Wed Apr 04 10:27:05 2018 us=47686 route_delay_window = 30
Wed Apr 04 10:27:05 2018 us=47686 route_delay_defined = ENABLED
Wed Apr 04 10:27:05 2018 us=47686 route_nopull = DISABLED
Wed Apr 04 10:27:05 2018 us=47686 route_gateway_via_dhcp = DISABLED
Wed Apr 04 10:27:05 2018 us=47686 allow_pull_fqdn = DISABLED
Wed Apr 04 10:27:05 2018 us=47809 management_addr = '127.0.0.1'
Wed Apr 04 10:27:05 2018 us=47809 management_port = '25340'
Wed Apr 04 10:27:05 2018 us=47809 management_user_pass = 'stdin'
Wed Apr 04 10:27:05 2018 us=47809 management_log_history_cache = 250
Wed Apr 04 10:27:05 2018 us=47809 management_echo_buffer_size = 100
Wed Apr 04 10:27:05 2018 us=47809 management_write_peer_info_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 management_client_user = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 management_client_group = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 management_flags = 6
Wed Apr 04 10:27:05 2018 us=47809 shared_secret_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 key_direction = not set
Wed Apr 04 10:27:05 2018 us=47809 ciphername = 'AES-128-CBC'
Wed Apr 04 10:27:05 2018 us=47809 ncp_enabled = ENABLED
Wed Apr 04 10:27:05 2018 us=47809 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Wed Apr 04 10:27:05 2018 us=47809 authname = 'SHA1'
Wed Apr 04 10:27:05 2018 us=47809 prng_hash = 'SHA1'
Wed Apr 04 10:27:05 2018 us=47809 prng_nonce_secret_len = 16
Wed Apr 04 10:27:05 2018 us=47809 keysize = 0
Wed Apr 04 10:27:05 2018 us=47809 engine = DISABLED
Wed Apr 04 10:27:05 2018 us=47809 replay = ENABLED
Wed Apr 04 10:27:05 2018 us=47809 mute_replay_warnings = DISABLED
Wed Apr 04 10:27:05 2018 us=47809 replay_window = 64
Wed Apr 04 10:27:05 2018 us=47809 replay_time = 15
Wed Apr 04 10:27:05 2018 us=47809 packet_id_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 use_iv = ENABLED
Wed Apr 04 10:27:05 2018 us=47809 test_crypto = DISABLED
Wed Apr 04 10:27:05 2018 us=47809 tls_server = DISABLED
Wed Apr 04 10:27:05 2018 us=47809 tls_client = ENABLED
Wed Apr 04 10:27:05 2018 us=47809 key_method = 2
Wed Apr 04 10:27:05 2018 us=47809 ca_file = 'ca.crt'
Wed Apr 04 10:27:05 2018 us=47809 ca_path = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 dh_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 cert_file = 'client.crt'
Wed Apr 04 10:27:05 2018 us=47809 extra_certs_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 priv_key_file = 'client.key'
Wed Apr 04 10:27:05 2018 us=47809 pkcs12_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 cryptoapi_cert = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 cipher_list = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 tls_cert_profile = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 tls_verify = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 tls_export_cert = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 verify_x509_type = 0
Wed Apr 04 10:27:05 2018 us=47809 verify_x509_name = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 crl_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=47809 ns_cert_type = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku[i] = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku[i] = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku[i] = 0
Wed Apr 04 10:27:05 2018 us=47809 remote_cert_ku[i] = 0
Wed Apr 04 10:27:05 2018 us=48814 remote_cert_ku[i] = 0
Wed Apr 04 10:27:05 2018 us=48814 remote_cert_ku[i] = 0
Wed Apr 04 10:27:05 2018 us=48814 remote_cert_eku = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 ssl_flags = 0
Wed Apr 04 10:27:05 2018 us=48814 tls_timeout = 2
Wed Apr 04 10:27:05 2018 us=48814 renegotiate_bytes = -1
Wed Apr 04 10:27:05 2018 us=48814 renegotiate_packets = 0
Wed Apr 04 10:27:05 2018 us=48814 renegotiate_seconds = 3600
Wed Apr 04 10:27:05 2018 us=48814 handshake_window = 60
Wed Apr 04 10:27:05 2018 us=48814 transition_window = 3600
Wed Apr 04 10:27:05 2018 us=48814 single_session = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 push_peer_info = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 tls_exit = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 tls_auth_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 tls_crypt_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_protected_authentication = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_private_mode = 00000000
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_cert_private = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_pin_cache_period = -1
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_id = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 pkcs11_id_management = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 server_network = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 server_netmask = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 server_network_ipv6 = ::
Wed Apr 04 10:27:05 2018 us=48814 server_netbits_ipv6 = 0
Wed Apr 04 10:27:05 2018 us=48814 server_bridge_ip = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 server_bridge_netmask = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 server_bridge_pool_start = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 server_bridge_pool_end = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_pool_defined = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_pool_start = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_pool_end = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_pool_netmask = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_pool_persist_filename = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_pool_persist_refresh_freq = 600
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_ipv6_pool_defined = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_ipv6_pool_base = ::
Wed Apr 04 10:27:05 2018 us=48814 ifconfig_ipv6_pool_netbits = 0
Wed Apr 04 10:27:05 2018 us=48814 n_bcast_buf = 256
Wed Apr 04 10:27:05 2018 us=48814 tcp_queue_limit = 64
Wed Apr 04 10:27:05 2018 us=48814 real_hash_size = 256
Wed Apr 04 10:27:05 2018 us=48814 virtual_hash_size = 256
Wed Apr 04 10:27:05 2018 us=48814 client_connect_script = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 learn_address_script = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 client_disconnect_script = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 client_config_dir = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=48814 ccd_exclusive = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 tmp_dir = 'C:\Users\nguye\AppData\Local\Temp\'
Wed Apr 04 10:27:05 2018 us=48814 push_ifconfig_defined = DISABLED
Wed Apr 04 10:27:05 2018 us=48814 push_ifconfig_local = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=48814 push_ifconfig_remote_netmask = 0.0.0.0
Wed Apr 04 10:27:05 2018 us=49822 push_ifconfig_ipv6_defined = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 push_ifconfig_ipv6_local = ::/0
Wed Apr 04 10:27:05 2018 us=49822 push_ifconfig_ipv6_remote = ::
Wed Apr 04 10:27:05 2018 us=49822 enable_c2c = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 duplicate_cn = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 cf_max = 0
Wed Apr 04 10:27:05 2018 us=49822 cf_per = 0
Wed Apr 04 10:27:05 2018 us=49822 max_clients = 1024
Wed Apr 04 10:27:05 2018 us=49822 max_routes_per_client = 256
Wed Apr 04 10:27:05 2018 us=49822 auth_user_pass_verify_script = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=49822 auth_user_pass_verify_script_via_file = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 auth_token_generate = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 auth_token_lifetime = 0
Wed Apr 04 10:27:05 2018 us=49822 client = ENABLED
Wed Apr 04 10:27:05 2018 us=49822 pull = ENABLED
Wed Apr 04 10:27:05 2018 us=49822 auth_user_pass_file = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=49822 show_net_up = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 route_method = 3
Wed Apr 04 10:27:05 2018 us=49822 block_outside_dns = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 ip_win32_defined = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 ip_win32_type = 3
Wed Apr 04 10:27:05 2018 us=49822 dhcp_masq_offset = 0
Wed Apr 04 10:27:05 2018 us=49822 dhcp_lease_time = 31536000
Wed Apr 04 10:27:05 2018 us=49822 tap_sleep = 0
Wed Apr 04 10:27:05 2018 us=49822 dhcp_options = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 dhcp_renew = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 dhcp_pre_release = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 domain = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=49822 netbios_scope = '[UNDEF]'
Wed Apr 04 10:27:05 2018 us=49822 netbios_node_type = 0
Wed Apr 04 10:27:05 2018 us=49822 disable_nbt = DISABLED
Wed Apr 04 10:27:05 2018 us=49822 OpenVPN 2.4.5 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Mar 1 2018
Wed Apr 04 10:27:05 2018 us=49822 Windows version 6.2 (Windows 8 or greater) 64bit
Wed Apr 04 10:27:05 2018 us=49822 library versions: OpenSSL 1.1.0f 25 May 2017, LZO 2.10
Enter Management Password:
Wed Apr 04 10:27:05 2018 us=51826 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Wed Apr 04 10:27:05 2018 us=51826 Need hold release from management interface, waiting...
Wed Apr 04 10:27:05 2018 us=514346 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Wed Apr 04 10:27:05 2018 us=648235 MANAGEMENT: CMD 'state on'
Wed Apr 04 10:27:05 2018 us=648235 MANAGEMENT: CMD 'log all on'
Wed Apr 04 10:27:05 2018 us=999298 MANAGEMENT: CMD 'echo all on'
Wed Apr 04 10:27:06 2018 us=2307 MANAGEMENT: CMD 'bytecount 5'
Wed Apr 04 10:27:06 2018 us=4313 MANAGEMENT: CMD 'hold off'
Wed Apr 04 10:27:06 2018 us=7480 MANAGEMENT: CMD 'hold release'
Wed Apr 04 10:27:06 2018 us=7913 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Wed Apr 04 10:27:06 2018 us=42704 OpenSSL: error:140AB18E:SSL routines:SSL_CTX_use_certificate:ca md too weak
Wed Apr 04 10:27:06 2018 us=42704 MANAGEMENT: Client disconnected
Wed Apr 04 10:27:06 2018 us=42704 Cannot load certificate file client.crt
Wed Apr 04 10:27:06 2018 us=42704 Exiting due to fatal error

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: problem with Netgear R7900

Post by TinCanTech » Wed Apr 04, 2018 6:30 pm

onlysublime wrote:
Wed Apr 04, 2018 5:33 pm
OpenSSL: error:140AB18E:SSL routines:SSL_CTX_use_certificate:ca md too weak
MD5 is no longer supported for security reasons.

You need to download easyrsa (https://github.com/OpenVPN/easy-rsa/releases) and create a new PKI because your router is too old .. or update your router.

onlysublime
OpenVpn Newbie
Posts: 2
Joined: Wed Apr 04, 2018 1:56 am

Re: problem with Netgear R7900

Post by onlysublime » Mon Apr 09, 2018 8:28 pm

thank you!

sad about the router. this is a fairly new router. I'll try to figure out how to use easyrsa... thanks for the advice. :D

JustJoe
OpenVpn Newbie
Posts: 1
Joined: Sat May 26, 2018 5:34 pm

Re: problem with Netgear R7900

Post by JustJoe » Sat May 26, 2018 5:35 pm

They have a firmware update that worked for me.

https://www.netgear.com/support/product ... x#Firmware Version 1.0.9.30 - Hot Fix

Post Reply