WPA && bridge_packets dont work

Jouni Malinen jkmaline at cc.hut.fi
Wed Sep 8 02:09:57 EDT 2004


On Tue, Sep 07, 2004 at 11:44:52AM +0200, Gunter Burchardt wrote:

> I'm using WPA-EAP with TKIP. 

> wep_key_len_broadcast=13
> wep_key_len_unicast=13
> wep_rekey_period=300

> wpa_pairwise=TKIP CCMP

You should not mix TKIP with dynamic WEP keys. This configuration is
likely to break your broadcast keys every 300 seconds.. You can verify
with 'hostap_crypt_conf -l wlan0' and 'cat /proc/net/hostap/wlan0/crypt'
that the broadcast keys (the once with non-zero keyidx; in
hostap_crypt_conf listing they are actually keys 2 and 3, in procfs file
1 and 2) look valid.

Some client implementations may have problems with mixed mode
configuration that allows both TKIP and CCMP for pairwise keys. If you
still see problems after removing those wep_* lines, I would also
consider disabling CCMP.

-- 
Jouni Malinen                                            PGP id EFC895FA



More information about the HostAP mailing list