Look 4 stable OPENVPN w/Heartbleed fx Buffalo WZR-HP-AG300H

Post new topic   This topic is locked: you cannot edit posts or make replies.    DD-WRT Forum Index -> Atheros WiSOC based Hardware
View previous topic :: View next topic  
Author Message
donphillipe
DD-WRT User


Joined: 18 Jun 2008
Posts: 166
PostPosted: Thu Oct 23, 2014 15:07    Post subject: Look 4 stable OPENVPN w/Heartbleed fx Buffalo WZR-HP-AG300H Reply with quote
Buffalo WZR-HP-AG300H

Can anyone recommend a semi-stable release containing OPENVPN server which has the Heartbleed fix in it that is proved to be working on this device?

I downloaded DD-WRT v24-sp2 (06/23/14) std - build 24461 and while it seems to be routing, after configuring as per this guide http://www.teksec.org/2013/openvpn-tutorial-dd-wrt-howto-configure-properly-part-2/ I find that the Status, Openvpn shows this:
Serverlog dh /tmp/openvpn/dh.pem ca /tmp/openvpn/ca.crt cert /tmp/openvpn/cert.pem key /tmp/openvpn/key.pem keepalive 10 120 verb 3 mute 3 syslog writepid /var/run/openvpnd.pid management 127.0.0.1 14 management-log-cache 100 topology subnet script-security 2 port 443 proto udp cipher aes-256-cbc auth sha1 client-config-dir /tmp/openvpn/ccd comp-lzo adaptive tls-server ifconfig-pool-persist /tmp/openvpn/ip-pool 86400 client-to-client push "redirect-gateway def1" fast-io tun-mtu 1500 mtu-disc yes server 172.16.1.0 255.255.255.0 dev tun2 tun-ipv6 verb 5 push "route 192.168.2.0" push "redirect-gateway def1 bypass-dhcp" push "dhcp-option DNS 208.67.222.222" keepalive 10 20 Clientlog

There is also no tunX listed from an ipconfig command.
Back to top View user's profile Send private message
Sponsor
donphillipe
DD-WRT User


Joined: 18 Jun 2008
Posts: 166
PostPosted: Fri Oct 24, 2014 17:20    Post subject: Reply with quote
Humm .... not too encouraging.
Back to top View user's profile Send private message
MongooseProXC
DD-WRT User


Joined: 24 May 2012
Posts: 235
PostPosted: Fri Oct 24, 2014 18:54    Post subject: Reply with quote
You might have to use a little trial and error with different builds to find what works best. Have you tried asking in the Atheros forum? They may have more information for that router.
Back to top View user's profile Send private message
js1662
DD-WRT Guru


Joined: 23 Jul 2014
Posts: 1237
Location: BC, CA
PostPosted: Fri Oct 24, 2014 19:45    Post subject: Reply with quote
Check which version of OpenSSL is used in your router by telnet or ssh to the router and type openvpn --version. If it has OpenSSL 1.0.1g or higher, then it should be safe. My F5D8235-4 v2 with latest dd-wrt has openvpn 2.3.4 and OpenSSL 1.0.1j
Back to top View user's profile Send private message
donphillipe
DD-WRT User


Joined: 18 Jun 2008
Posts: 166
PostPosted: Sat Oct 25, 2014 2:16    Post subject: Reply with quote
Woops thought this was Broadcom. Will move to Atheros.

From what I hread 19163-23882 have Heartbleed exposure. That doesn't leave too many. Thanks!
Back to top View user's profile Send private message
donphillipe
DD-WRT User


Joined: 18 Jun 2008
Posts: 166
PostPosted: Sat Nov 01, 2014 3:40    Post subject: Reply with quote
Discussion moved here:

http://www.dd-wrt.com/phpBB2/viewtopic.php?t=261011&highlight=
Back to top View user's profile Send private message
donphillipe
DD-WRT User


Joined: 18 Jun 2008
Posts: 166
PostPosted: Sun Nov 02, 2014 16:39    Post subject: Reply with quote
Issue resolved, check here:

http://www.dd-wrt.com/phpBB2/viewtopic.php?p=931272#931272
Back to top View user's profile Send private message
Display posts from previous:    Page 1 of 1
Post new topic   This topic is locked: you cannot edit posts or make replies.    DD-WRT Forum Index -> Atheros WiSOC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum