Re: iwn0: no link after 6.1 upgrade
On 2017-08-19, Stefan Sperling wrote: >> Yes, I have double-checked, this is what is shown in the Web GUI. >> "Authentication PassPhrase Settings" : "WPA-Personal" >> "WPA Mode" : "WPA2 Only" >> "Cipher Type" : "TKIP" > > Please set Cipher Type to 'AUTO' or 'AES'. Then it should work. > TKIP is used with WPA1 only. The cheat sheet I kept for my DAP-2310 says: ... - Wireless Settings SSID Authentication WPA-Personal WPA ModeWPA2 only Cipher Type AES PassPhrase ... -- Christian "naddy" Weisgerber na...@mips.inka.de
Re: iwn0: no link after 6.1 upgrade
On 08/19/17 16:16, Stefan Sperling wrote: On Sat, Aug 19, 2017 at 03:51:32PM +0200, Alexis de BRUYN wrote: Yes, I have double-checked, this is what is shown in the Web GUI. "Authentication PassPhrase Settings" : "WPA-Personal" "WPA Mode" : "WPA2 Only" "Cipher Type" : "TKIP" Please set Cipher Type to 'AUTO' or 'AES'. Then it should work. Force AES works. I will test on other AP. Thanks Stefan. TKIP is used with WPA1 only. -- Alexis de BRUYN
Re: iwn0: no link after 6.1 upgrade
On Sat, Aug 19, 2017 at 03:51:32PM +0200, Alexis de BRUYN wrote: > Yes, I have double-checked, this is what is shown in the Web GUI. > "Authentication PassPhrase Settings" : "WPA-Personal" > "WPA Mode" : "WPA2 Only" > "Cipher Type" : "TKIP" Please set Cipher Type to 'AUTO' or 'AES'. Then it should work. TKIP is used with WPA1 only.
Re: iwn0: no link after 6.1 upgrade
On 08/19/17 15:02, Stefan Sperling wrote: On Sat, Aug 19, 2017 at 02:54:05PM +0200, Alexis de BRUYN wrote: On 08/19/17 11:35, Stefan Sperling wrote: On Sat, Aug 19, 2017 at 11:12:04AM +0200, Alexis de BRUYN wrote: After an 6.1 upgrade (from 6.0-release to 6.1-release) on my Lenovo X230 laptop, I can't get my wireless connection working anywore on different kind of access points or ISP boxes. Same problem on 6.1-current My guess is that your AP is using WPA1. Is this correct? On my DLINK DAP-2310 with the last firmware, the WPA mode is WPA2 Only. I cannot check with other AP today. Are you really sure about that? Yes, I have double-checked, this is what is shown in the Web GUI. "Authentication PassPhrase Settings" : "WPA-Personal" "WPA Mode" : "WPA2 Only" "Cipher Type" : "TKIP" WPA1 has been disabled by default because it is not secure. Make sure your AP is using WPA2 (sometimes called "AES" by vendors). Only if you cannot change the AP, try: ifconfig iwn0 wpaprotos wpa1,wpa2 $ sudo ifconfig iwn0 wpaprotos wpa1,wpa2 $ sh /etc/netstart iwn0 DHCPREQUEST on iwn0 to 255.255.255.255 DHCPREQUEST on iwn0 to 255.255.255.255 DHCPACK from 192.168.0.51 (ec:a8:6b:ff:15:4e) bound to 192.168.0.9 -- renewal in 900 seconds. But not working with $ sudo ifconfig iwn0 wpaprotos wpa2 $ sudo sh /etc/netstart iwn0 iwn0: no link ... sleeping This implies that the AP is using WPA1, no? Yes it seems so. Please also show the output of 'ifconfig iwn0 scan' and show any additional messages produced in /var/log/messages after running 'ifconfig iwn0 debug'. $ sudo ifconfig iwn0 scan iwn0: flags=8843 mtu 1500 lladdr 60:67:20:43:86:aa index 2 priority 4 llprio 3 groups: wlan media: IEEE802.11 autoselect (autoselect mode 11a) status: no network ieee80211: nwid my_ssid wpakey [...] wpaprotos wpa2 wpaakms psk wpaciphers ccmp wpagroupcipher ccmp And there were no lines here showing access points? These lines would probably tell us which WPA version is used by your AP, if you had shown them. Yes sorry, there is just mine listed: nwid my_ssid chan 1 bssid 54:b8:0a:39:df:48 -20dBm 54M privacy,short_preamble,short_slottime,wpa2 $ sudo ifconfig iwn0 debug $ tail -f /var/log/messages Aug 19 14:48:29 lt4-alexis /bsd: iwn0: end passive scan Aug 19 14:48:29 lt4-alexis /bsd: - 54:b8:0a:39:df:481! +233 54M ess privacy rsn! "my_ssid" This shows the AP is not being selected because it has the wrong channel (channel 1 when we expected something else, probably cause the scan was currently scanning 11a mode which only supports channels >= 36, nothing to worry about) and the wrong encryption settings (rsn!) (so again, this indicates AP is using WPA1). -- Alexis de BRUYN
Re: iwn0: no link after 6.1 upgrade
On Sat, Aug 19, 2017 at 02:54:05PM +0200, Alexis de BRUYN wrote: > On 08/19/17 11:35, Stefan Sperling wrote: > > On Sat, Aug 19, 2017 at 11:12:04AM +0200, Alexis de BRUYN wrote: > > > After an 6.1 upgrade (from 6.0-release to 6.1-release) on my Lenovo X230 > > > laptop, I can't get my wireless connection working anywore on different > > > kind > > > of access points or ISP boxes. Same problem on 6.1-current > > > > My guess is that your AP is using WPA1. Is this correct? > On my DLINK DAP-2310 with the last firmware, the WPA mode is WPA2 Only. I > cannot check with other AP today. Are you really sure about that? > > WPA1 has been disabled by default because it is not secure. > > Make sure your AP is using WPA2 (sometimes called "AES" by vendors). > > Only if you cannot change the AP, try: ifconfig iwn0 wpaprotos wpa1,wpa2 > $ sudo ifconfig iwn0 wpaprotos wpa1,wpa2 > $ sh /etc/netstart iwn0 > DHCPREQUEST on iwn0 to 255.255.255.255 > DHCPREQUEST on iwn0 to 255.255.255.255 > DHCPACK from 192.168.0.51 (ec:a8:6b:ff:15:4e) > bound to 192.168.0.9 -- renewal in 900 seconds. > > But not working with > $ sudo ifconfig iwn0 wpaprotos wpa2 > $ sudo sh /etc/netstart iwn0 > iwn0: no link ... sleeping This implies that the AP is using WPA1, no? > > Please also show the output of 'ifconfig iwn0 scan' and show any > > additional messages produced in /var/log/messages after running > > 'ifconfig iwn0 debug'. > > $ sudo ifconfig iwn0 scan > iwn0: flags=8843 mtu 1500 > lladdr 60:67:20:43:86:aa > index 2 priority 4 llprio 3 > groups: wlan > media: IEEE802.11 autoselect (autoselect mode 11a) > status: no network > ieee80211: nwid my_ssid wpakey [...] wpaprotos wpa2 wpaakms psk > wpaciphers ccmp wpagroupcipher ccmp And there were no lines here showing access points? These lines would probably tell us which WPA version is used by your AP, if you had shown them. > $ sudo ifconfig iwn0 debug > $ tail -f /var/log/messages > Aug 19 14:48:29 lt4-alexis /bsd: iwn0: end passive scan > Aug 19 14:48:29 lt4-alexis /bsd: - 54:b8:0a:39:df:481! +233 54M ess > privacy rsn! "my_ssid" This shows the AP is not being selected because it has the wrong channel (channel 1 when we expected something else, probably cause the scan was currently scanning 11a mode which only supports channels >= 36, nothing to worry about) and the wrong encryption settings (rsn!) (so again, this indicates AP is using WPA1).
Re: iwn0: no link after 6.1 upgrade
On 08/19/17 11:35, Stefan Sperling wrote: On Sat, Aug 19, 2017 at 11:12:04AM +0200, Alexis de BRUYN wrote: After an 6.1 upgrade (from 6.0-release to 6.1-release) on my Lenovo X230 laptop, I can't get my wireless connection working anywore on different kind of access points or ISP boxes. Same problem on 6.1-current My guess is that your AP is using WPA1. Is this correct? On my DLINK DAP-2310 with the last firmware, the WPA mode is WPA2 Only. I cannot check with other AP today. WPA1 has been disabled by default because it is not secure. Make sure your AP is using WPA2 (sometimes called "AES" by vendors). Only if you cannot change the AP, try: ifconfig iwn0 wpaprotos wpa1,wpa2 $ sudo ifconfig iwn0 wpaprotos wpa1,wpa2 $ sh /etc/netstart iwn0 DHCPREQUEST on iwn0 to 255.255.255.255 DHCPREQUEST on iwn0 to 255.255.255.255 DHCPACK from 192.168.0.51 (ec:a8:6b:ff:15:4e) bound to 192.168.0.9 -- renewal in 900 seconds. But not working with $ sudo ifconfig iwn0 wpaprotos wpa2 $ sudo sh /etc/netstart iwn0 iwn0: no link ... sleeping Please also show the output of 'ifconfig iwn0 scan' and show any additional messages produced in /var/log/messages after running 'ifconfig iwn0 debug'. $ sudo ifconfig iwn0 scan iwn0: flags=8843 mtu 1500 lladdr 60:67:20:43:86:aa index 2 priority 4 llprio 3 groups: wlan media: IEEE802.11 autoselect (autoselect mode 11a) status: no network ieee80211: nwid my_ssid wpakey [...] wpaprotos wpa2 wpaakms psk wpaciphers ccmp wpagroupcipher ccmp $ sudo ifconfig iwn0 debug $ tail -f /var/log/messages Aug 19 14:48:29 lt4-alexis /bsd: iwn0: end passive scan Aug 19 14:48:29 lt4-alexis /bsd: - 54:b8:0a:39:df:481! +233 54M ess privacy rsn! "my_ssid" -- Alexis de BRUYN
Re: iwn0: no link after 6.1 upgrade
On Sat, Aug 19, 2017 at 11:12:04AM +0200, Alexis de BRUYN wrote: > After an 6.1 upgrade (from 6.0-release to 6.1-release) on my Lenovo X230 > laptop, I can't get my wireless connection working anywore on different kind > of access points or ISP boxes. Same problem on 6.1-current My guess is that your AP is using WPA1. Is this correct? WPA1 has been disabled by default because it is not secure. Make sure your AP is using WPA2 (sometimes called "AES" by vendors). Only if you cannot change the AP, try: ifconfig iwn0 wpaprotos wpa1,wpa2 Please also show the output of 'ifconfig iwn0 scan' and show any additional messages produced in /var/log/messages after running 'ifconfig iwn0 debug'.
