this is not allowed or?
is it defined per hardware or can it be set via software?
Cause if i set up same SSID on this interfaces i have same two networks with same SSID+BSSID.
Which causes troubles if i use WPA-TKIP as encryption. There are two parallel eapol 4way handshakes in the air which triggers the mic replay protection at my client and kicks all out.
wpa supplicant log from client trying to connect:
wlan0: Michael MIC failure detected
wpa_supplicant: wlan0: WPA: Sending EAPOL-Key Request (error=1 pairwise=0 ptk_set=1 len=99)
wpa_supplicant: wlan0: WPA: Key negotiation completed with xx:xx:xx:xx:xx:xx [PTK=TKIP GTK=TKIP]
wpa_supplicant: wlan0: Michael MIC failure detected
wpa_supplicant: wlan0: WPA: Sending EAPOL-Key Request (error=1 pairwise=0 ptk_set=1 len=99)
wpa_supplicant: wlan0: TKIP countermeasures started
wpa_supplicant: wlan0: CTRL-EVENT-DISCONNECTED bssid=xx:xx:xx:xx:xx:xx reason=14 locally_generated=1
Joined: 04 Aug 2018 Posts: 1447 Location: Appalachian mountains, USA
Posted: Fri Jul 31, 2020 15:24 Post subject:
I'm no expert, but my impression was that one should not use TKIP in dd-wrt, because the implementation has issues. Usually the recommendation is to use CCMP-128 (AES). _________________ 2x Netgear XR500 and 3x Linksys WRT1900ACSv2 on 53544: VLANs, VAPs, NAS, station mode, OpenVPN client (AirVPN), wireguard server (AirVPN port forward) and clients (AzireVPN, AirVPN, private), 3 DNSCrypt providers via VPN.