Muy buenas tardes, he pasado un buen rato tratando de configurar mi dispositivo wireles intel 3945abg y he logrado hacerlo funcionar descargando los paquetes necesarios.. pero ahora necesito que esa conexión sea segura, para lo cual el access point esta configurado con wpa-psk con encripcion tkip, trato de realizar la configuración en el archivo /etc/wpa_supplicant/wpa_supplicant.conf
<br><br>/*************************************************************************/<br>wpa_supplicant.conf<br>/*************************************************************************/<br>
ctrl_interface=/var/run/wpa_supplicant<br>ctrl_interface_group=wheel<br>network={<br> scan_ssid=1<br> ssid="cartman-network"<br> key_mgmt=WPA-PSK<br> proto=WPA <br> psk=8e0de13fd65abcaf4e5ba959612e95739709cf41df23a7067fc51b3adf990a8d
<br>}<br>/*************************************************************************/<br>El valor para psk lo genere mediante el comando wpa_passphrase<br><br>Luego de esto intento activar mi interfaz de red que se encuentra configurada de la siguiente forma:
<br><br>/*************************************************************************/<br>ifcfg-eth1<br>/*************************************************************************/<br># Please read /usr/share/doc/initscripts-*/sysconfig.txt
<br># for the documentation of these parameters.<br>TYPE=Wireless<br>DEVICE=eth1<br>HWADDR=00:19:d2:8a:1c:30<br>BOOTPROTO=dhcp<br>NETMASK=<br>DHCP_HOSTNAME=<br>IPADDR=<br>DOMAIN=<br>ONBOOT=yes<br>USERCTL=no<br>IPV6INIT=no
<br>PEERDNS=yes<br>AP=00:19:5B:E7:03:30<br>MODE=Auto<br>ESSID=cartman-network<br>CHANNEL=6<br>RATE='54 Mb/s'<br>DEFAULTKEY=1<br>KEY=8e0de13fd65abcaf4e5ba959612e95739709cf41df23a7067fc51b3adf990a8d<br>SECURITYMODE=on
<br>/*************************************************************************/<br><br>se presenta esto en la consola<br><br>/*************************************************************************/<br>Activando interfaz eth1:
<br>Determinando la información IP para eth1...PING <a href="http://205.205.205.5">205.205.205.5</a> (<a href="http://205.205.205.5">205.205.205.5</a>) from <a href="http://205.205.205.1">205.205.205.1</a> eth1: 56(84) bytes of data.
<br><br>--- <a href="http://205.205.205.5">205.205.205.5</a> ping statistics ---<br>4 packets transmitted, 0 received, +3 errors, 100% packet loss, time 2999ms<br>, pipe 3<br> falló.<br> [FALLÓ]
<br>[root@centos5-cartman ~]# <br>/*************************************************************************/<br><br>y se muestra el siguiente log en el /var/log/messages<br><br>/*************************************************************************/
<br>Nov 12 12:48:24 centos5-cartman kernel: ADDRCONF(NETDEV_UP): eth1: link is not ready<br>Nov 12 12:48:25 centos5-cartman kernel: ADDRCONF(NETDEV_CHANGE): eth1: link becomes ready<br>Nov 12 12:48:25 centos5-cartman dhclient: DHCPREQUEST on eth1 to
<a href="http://255.255.255.255">255.255.255.255</a> port 67<br>Nov 12 12:48:27 centos5-cartman avahi-daemon[2914]: New relevant interface eth1.IPv6 for mDNS.<br>Nov 12 12:48:27 centos5-cartman avahi-daemon[2914]: Joining mDNS multicast group on interface
eth1.IPv6 with address fe80::219:d2ff:fe8a:1c30.<br>Nov 12 12:48:27 centos5-cartman avahi-daemon[2914]: Registering new address record for fe80::219:d2ff:fe8a:1c30 on eth1.<br>Nov 12 12:48:32 centos5-cartman dhclient: DHCPREQUEST on eth1 to
<a href="http://255.255.255.255">255.255.255.255</a> port 67<br>Nov 12 12:48:41 centos5-cartman dhclient: DHCPDISCOVER on eth1 to <a href="http://255.255.255.255">255.255.255.255</a> port 67 interval 7<br>Nov 12 12:48:48 centos5-cartman dhclient: DHCPDISCOVER on eth1 to
<a href="http://255.255.255.255">255.255.255.255</a> port 67 interval 9<br>Nov 12 12:48:57 centos5-cartman dhclient: DHCPDISCOVER on eth1 to <a href="http://255.255.255.255">255.255.255.255</a> port 67 interval 11<br>Nov 12 12:49:08 centos5-cartman dhclient: DHCPDISCOVER on eth1 to
<a href="http://255.255.255.255">255.255.255.255</a> port 67 interval 19<br>Nov 12 12:49:27 centos5-cartman dhclient: DHCPDISCOVER on eth1 to <a href="http://255.255.255.255">255.255.255.255</a> port 67 interval 11<br>Nov 12 12:49:38 centos5-cartman dhclient: DHCPDISCOVER on eth1 to
<a href="http://255.255.255.255">255.255.255.255</a> port 67 interval 4<br>Nov 12 12:49:42 centos5-cartman dhclient: No DHCPOFFERS received.<br>Nov 12 12:49:42 centos5-cartman dhclient: Trying recorded lease <a href="http://205.205.205.1">
205.205.205.1</a><br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: New relevant interface eth1.IPv4 for mDNS.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: Joining mDNS multicast group on interface eth1.IPv4
with address <a href="http://205.205.205.1">205.205.205.1</a>.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: Registering new address record for <a href="http://205.205.205.1">205.205.205.1</a> on eth1.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: Withdrawing address record for
<a href="http://205.205.205.1">205.205.205.1</a> on eth1.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: Leaving mDNS multicast group on interface eth1.IPv4 with address <a href="http://205.205.205.1">205.205.205.1
</a>.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: iface.c: interface_mdns_mcast_join() called but no local address available.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: Interface eth1.IPv4 no longer relevant for mDNS.
<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: New relevant interface eth1.IPv4 for mDNS.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: Joining mDNS multicast group on interface eth1.IPv4 with address <a href="http://205.205.205.1">
205.205.205.1</a>.<br>Nov 12 12:49:42 centos5-cartman avahi-daemon[2914]: Registering new address record for <a href="http://205.205.205.1">205.205.205.1</a> on eth1.<br>Nov 12 12:49:45 centos5-cartman avahi-daemon[2914]: Withdrawing address record for
<a href="http://205.205.205.1">205.205.205.1</a> on eth1.<br>Nov 12 12:49:45 centos5-cartman avahi-daemon[2914]: Leaving mDNS multicast group on interface eth1.IPv4 with address <a href="http://205.205.205.1">205.205.205.1
</a>.<br>Nov 12 12:49:45 centos5-cartman avahi-daemon[2914]: iface.c: interface_mdns_mcast_join() called but no local address available.<br>Nov 12 12:49:45 centos5-cartman avahi-daemon[2914]: Interface eth1.IPv4 no longer relevant for mDNS.
<br>Nov 12 12:49:45 centos5-cartman avahi-daemon[2914]: Interface eth1.IPv6 no longer relevant for mDNS.<br>Nov 12 12:49:45 centos5-cartman avahi-daemon[2914]: Leaving mDNS multicast group on interface eth1.IPv6 with address fe80::219:d2ff:fe8a:1c30.
<br>Nov 12 12:49:45 centos5-cartman avahi-daemon[2914]: Withdrawing address record for fe80::219:d2ff:fe8a:1c30 on eth1.<br>/*************************************************************************/<br><br>entonces ejecuto el siguiente comando para probar la conectividad del wpa_supplicant
<br><br>wpa_supplicant -c/etc/wpa_supplicant/wpa_supplicant.conf -ieth1 -d<br><br>se muestra lo siguiente:<br>/*************************************************************************/<br>
Initializing interface 'eth1' conf '/etc/wpa_supplicant/wpa_supplicant.conf' driver 'default' ctrl_interface 'N/A'<br>Configuration file '/etc/wpa_supplicant/wpa_supplicant.conf' -> '/etc/wpa_supplicant/wpa_supplicant.conf'
<br>Reading configuration file '/etc/wpa_supplicant/wpa_supplicant.conf'<br>ctrl_interface='/var/run/wpa_supplicant'<br>ctrl_interface_group=10 (from group name 'wheel')<br>Priority group 0<br> id=0 ssid='cartman-network'
<br>Initializing interface (2) 'eth1'<br>EAPOL: SUPP_PAE entering state DISCONNECTED<br>EAPOL: KEY_RX entering state NO_KEY_RECEIVE<br>EAPOL: SUPP_BE entering state INITIALIZE<br>EAP: EAP entering state DISABLED<br>
EAPOL: External notification - portEnabled=0<br>EAPOL: External notification - portValid=0<br>SIOCGIWRANGE: WE(compiled)=20 WE(source)=16 enc_capa=0xf<br> capabilities: key_mgmt 0xf enc 0xf<br>Own MAC address: 00:19:d2:8a:1c:30
<br>wpa_driver_hostap_set_wpa: enabled=1<br>wpa_driver_hostap_set_key: alg=none key_idx=0 set_tx=0 seq_len=0 key_len=0<br>Failed to set encryption.<br>wpa_driver_hostap_set_key: alg=none key_idx=1 set_tx=0 seq_len=0 key_len=0
<br>Failed to set encryption.<br>wpa_driver_hostap_set_key: alg=none key_idx=2 set_tx=0 seq_len=0 key_len=0<br>Failed to set encryption.<br>wpa_driver_hostap_set_key: alg=none key_idx=3 set_tx=0 seq_len=0 key_len=0<br>Failed to set encryption.
<br>wpa_driver_hostap_set_countermeasures: enabled=0<br>wpa_driver_hostap_set_drop_unencrypted: enabled=1<br>Setting scan request: 0 sec 100000 usec<br>Added interface eth1<br>Wireless event: cmd=0x8b06 len=8<br>RTM_NEWLINK, IFLA_IFNAME: Interface 'eth1' added
<br>RTM_NEWLINK, IFLA_IFNAME: Interface 'eth1' added<br>State: DISCONNECTED -> SCANNING<br>Starting AP scan (specific SSID)<br>Scan SSID - hexdump_ascii(len=15):<br> 63 61 72 74 6d 61 6e 2d 6e 65 74 77 6f 72 6b cartman-network
<br>Failed to initiate AP scan.<br>Setting scan request: 10 sec 0 usec<br>RTM_NEWLINK, IFLA_IFNAME: Interface 'eth1' added<br>Wireless event: cmd=0x8b15 len=20<br>Wireless event: new AP: 00:19:5b:e7:03:30<br>State: SCANNING -> ASSOCIATED
<br>Associated to a new BSS: BSSID=00:19:5b:e7:03:30<br>No keys have been configured - skip key clearing<br>Network configuration found for the current AP<br>WPA: No WPA/RSN IE available from association info<br>WPA: Set cipher suites based on configuration
<br>WPA: Selected cipher suites: group 30 pairwise 24 key_mgmt 2<br>WPA: clearing AP WPA IE<br>WPA: clearing AP RSN IE<br>WPA: using GTK CCMP<br>WPA: using PTK CCMP<br>WPA: using KEY_MGMT WPA-PSK<br>WPA: Set own WPA IE default - hexdump(len=24): dd 16 00 50 f2 01 01 00 00 50 f2 04 01 00 00 50 f2 04 01 00 00 50 f2 02
<br>EAPOL: External notification - EAP success=0<br>EAPOL: External notification - EAP fail=0<br>EAPOL: External notification - portControl=Auto<br>Associated with 00:19:5b:e7:03:30<br>WPA: Association event - clear replay counter
<br>EAPOL: External notification - portEnabled=0<br>EAPOL: External notification - portValid=0<br>EAPOL: External notification - EAP success=0<br>EAPOL: External notification - portEnabled=1<br>EAPOL: SUPP_PAE entering state CONNECTING
<br>EAPOL: SUPP_BE entering state IDLE<br>Setting authentication timeout: 10 sec 0 usec<br>RX EAPOL from 00:19:5b:e7:03:30<br>Setting authentication timeout: 10 sec 0 usec<br>IEEE 802.1X RX: version=1 type=3 length=95<br>
EAPOL-Key type=254<br>WPA: ignoring 8 bytes after the IEEE 802.1X data<br>WPA: CCMP is used, but EAPOL-Key descriptor version (1) is not 2.<br>EAPOL: startWhen --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: txStart
<br>WPA: drop TX EAPOL in non-IEEE 802.1X mode (type=1 len=0)<br>Scan timeout - try to get results<br>Received 261 bytes of scan results (1 BSSes)<br>Scan results: 1<br>Selecting BSS from priority group 0<br>0: 00:19:5b:e7:03:30 ssid='cartman-network' wpa_ie_len=24 rsn_ie_len=0 caps=0x11
<br> selected based on WPA IE<br>Already associated with the selected AP.<br>Wireless event: cmd=0x8b15 len=20<br>Wireless event: new AP: 00:00:00:00:00:00<br>Setting scan request: 0 sec 100000 usec<br>Added BSSID 00:19:5b:e7:03:30 into blacklist
<br>State: ASSOCIATED -> DISCONNECTED<br>EAPOL: External notification - portEnabled=0<br>EAPOL: SUPP_PAE entering state DISCONNECTED<br>EAPOL: SUPP_BE entering state INITIALIZE<br>EAPOL: External notification - portValid=0
<br>EAPOL: External notification - EAP success=0<br>.......<br>/*************************************************************************/<br>
<br>De lo cual puedo observar la linea <br><br>No keys have been configured - skip key clearing<br><br>Al parecer la llave no esta bien configurada.. donde esta el errror?<br><br>Gracias.<br><br><br>-- <br>Gracias.<br>Atentamente,
<br>Carlos Arturo Trujillo Silva<br>Ingeniero de Sistemas