NightHawk R8000 & OpenVPN 2.4.8-I602

This forum is for general conversation and user-user networking.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
AATW_82nd
OpenVpn Newbie
Posts: 2
Joined: Sat Mar 28, 2020 10:39 am

NightHawk R8000 & OpenVPN 2.4.8-I602

Post by AATW_82nd » Sat Mar 28, 2020 11:49 am

I know this is a rather old subject, however, I can't find a solution that works. As you may be able to tell Certs are just not up my alley. I've tied EasyRSA, but to me it's not that easy, download easy RSA and then OpenSSL plus make all these complex config changes. I'm hoping for a much easier way to get the VPN working again, maybe just maybe I've missed the easy step by step pages. Below is what I posted on the Netgear page.

After installing OpenVPN 2.4.8 I can no longer connect. When trying to connect I receive the following error in the client log file:

WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.

Going to that page didn't actually tell me much besides putting: remote-cert-tls server in my ovpn file. That solved the issue above, but now I see: OpenSSL: error:140AB18ESmiley FrustratedSL routinesSmiley FrustratedSL_CTX_use_certificate:ca md too weak

Every page I've found says upgrade your NightHawk Firmware to the latest and that will fix the signing issue. My current Firmware 1.0.4.46_10.1.63, but no such luck fixing the problem.

Crossing my fingers someone has the answers.

thanks in advance.
Top
TinCanTech
OpenVPN Protagonist
Posts: 11139
Joined: Fri Jun 03, 2016 1:17 pm

Re: NightHawk R8000 & OpenVPN 2.4.8-I602

Post by TinCanTech » Sat Mar 28, 2020 12:41 pm

Delete all your certificates and keys and then download EasyRSA3 and create a new PKI.

If EasyRSA is to difficult for you then I can do it for you .. for a fee.
Top
AATW_82nd
OpenVpn Newbie
Posts: 2
Joined: Sat Mar 28, 2020 10:39 am

Re: NightHawk R8000 & OpenVPN 2.4.8-I602

Post by AATW_82nd » Sun Mar 29, 2020 10:20 pm

I'm sure I can fumble through using EasyRSA, however, I'm not sure I understand. If my router is generating the certificates how does the router get the certs I generated from my OpenVPN server? Sorry as I said I'm no certificate expert.
Top
TinCanTech
OpenVPN Protagonist
Posts: 11139
Joined: Fri Jun 03, 2016 1:17 pm

Re: NightHawk R8000 & OpenVPN 2.4.8-I602

Post by TinCanTech » Sun Mar 29, 2020 10:28 pm

AATW_82nd wrote:
Sat Mar 28, 2020 11:49 am
 now I see: OpenSSL: error:140AB18ESmiley FrustratedSL routinesSmiley FrustratedSL_CTX_use_certificate:ca md too weak
That is a Deal breaker.

Use:
AATW_82nd wrote:
Sun Mar 29, 2020 10:20 pm
 If my router is generating the certificates how does the router get the certs I generated from my OpenVPN server?
Magic .. :shock:
Top
Post Reply

Return to “Off Topic, Related”