Sorry za exhum 4 roky staryho threadu, ale mam uplne ten samy problem, tak to proste prihodim sem.
Mam RB 493G a poridil jsem do nej R52Hn + k tomu 8dBi anteny od TP Linku. Konfigurace v pohode (viz nize) do rezimu AP bridge. Celkem tu mam 6 mobilnich klientu. 2x Notebook, 1x MAC a 3x Telefon. Sifrovani je WPA2 PSK (aes/ccm). Vsechny ty zarizeni mam pridane do AccessListu. Problem mam s jednim Android telefonem (HTC Desire Z). LOG mam zaspamovanej prave zminenou hlaskou. "Data from unknown device xx, sent deauth". Druhej telefon (Samsung Galaxy), taktez Android, nema vubec zadnej problem, ten se pripoji a pohoda.
Od zapnuti WiFi na tom telefonu, ten telefon lezel celou dobu na stole, cca 4m od AP, cili nejaky "odejiti" z dosahu je vylouceny. MAC adresa je v Access Listu, IP dostava od DHCP serveru. Pripojeni zarizeni je okamzite, prenos funguje naprosto v pohode, jen proste po nake dobe se zacne sypat ta hlaska do logu. Vysledkem je tohle:
18 wireless,debug WLAN: XX attempts to associate
18 wireless,debug WLAN: XX in local ACL, accept
18 wireless,info XX@WLAN: connected
18 dhcp,info dhcp1 deassigned 192.168.XXX.YYY from XX
18 dhcp,info dhcp1 assigned 192.168.XXX.YYY to XX
18 wireless,info XX@WLAN: disconnected, extensive data loss
18 wireless,info WLAN: data from unknown device XX, sent deauth
18 wireless,info WLAN: data from unknown device XX, sent deauth
=== TU je dalsich 70 radku s tim samym, cca kazdych 5sec===
18 wireless,info WLAN: data from unknown device XX, sent deauth
18 wireless,info WLAN: data from unknown device XX, sent deauth
18 wireless,debug WLAN: XX attempts to associate
18 wireless,debug WLAN: XX in local ACL, accept
18 wireless,info XX@WLAN: connected
18 dhcp,info dhcp1 deassigned 192.168.XXX.YYY from XX
18 dhcp,info dhcp1 assigned 192.168.XXX.YYY to XX
Tu je konfigurace WLAN:
/interface wireless security-profiles
set authentication-types="" eap-methods=passthrough group-ciphers="" group-key-update=5m interim-update=0s management-protection=disabled management-protection-key="" mode=none name=default radius-eap-accounting=no radius-mac-accounting=no radius-mac-authentication=no radius-mac-caching=disabled radius-mac-format=XX radius-mac-mode=as-username static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=none static-key-0="" static-key-1="" static-key-2="" static-key-3="" static-sta-private-algo=none static-sta-private-key="" static-transmit-key=key-0 supplicant-identity=MikroTik tls-certificate=none tls-mode=no-certificates unicast-ciphers="" wpa-pre-shared-key="" wpa2-pre-shared-key=""
add authentication-types=wpa2-psk eap-methods="" group-ciphers=aes-ccm group-key-update=5m interim-update=0s management-protection=allowed management-protection-key=XXXXXX mode=dynamic-keys name=WPA2 radius-eap-accounting=no radius-mac-accounting=no radius-mac-authentication=no radius-mac-caching=disabled radius-mac-format=XX radius-mac-mode=as-username static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=none static-key-0="" static-key-1="" static-key-2="" static-key-3="" static-sta-private-algo=none static-sta-private-key="" static-transmit-key=key-0 supplicant-identity="" tls-certificate=none tls-mode=no-certificates unicast-ciphers=aes-ccm wpa-pre-shared-key="" wpa2-pre-shared-key=XXXXX
/interface wireless
set 0 adaptive-noise-immunity=none allow-sharedkey=no antenna-gain=0 area="" arp=enabled band=2ghz-b/g/n basic-rates-a/g=6Mbps basic-rates-b=1Mbps bridge-mode=disabled channel-width=20/40mhz-ht-above comment="WLAN" compression=no country=no_country_set default-ap-tx-limit=0 default-authentication=no default-client-tx-limit=0 default-forwarding=no dfs-mode=none disable-running-check=no disabled=no disconnect-timeout=3s distance=dynamic frame-lifetime=0 frequency=2462 frequency-mode=manual-txpower frequency-offset=0 hide-ssid=yes ht-ampdu-priorities=0 ht-amsdu-limit=8192 ht-amsdu-threshold=8192 ht-basic-mcs=mcs-0,mcs-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7 ht-guard-interval=any ht-rxchains=0 ht-supported-mcs=mcs-0,mcs-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7,mcs-8,mcs-9,mcs-10,mcs-11,mcs-12,mcs-13,mcs-14,mcs-15,mcs-16,mcs-17,mcs-18,mcs-19,mcs-20,mcs-21,mcs-22,mcs-23 ht-txchains=0 hw-fragmentation-threshold=disabled hw-protection-mode=none hw-protection-threshold=0 hw-retries=7 l2mtu=2290 mac-address=YY max-station-count=7 mode=ap-bridge mtu=1500 name=WLAN noise-floor-threshold=default nv2-cell-radius=30 nv2-noise-floor-offset=default nv2-preshared-key="" nv2-qos=default nv2-queue-count=2 nv2-security=disabled on-fail-retry-time=100ms periodic-calibration=default periodic-calibration-interval=60 preamble-mode=both proprietary-extensions=post-2.9.25 radio-name=YYYYYYYYYYYY rate-selection=advanced rate-set=default scan-list=default security-profile=WPA2 ssid=XXXXX station-bridge-clone-mac=00 supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps supported-rates-b=1Mbps,2Mbps,5.5Mbps,11Mbps tdma-period-size=2 tx-power-mode=default update-stats-interval=disabled wds-cost-range=50-150 wds-default-bridge=none wds-default-cost=100 wds-ignore-ssid=no wds-mode=disabled wireless-protocol=any wmm-support=disabled
/interface wireless manual-tx-power-table
set WLAN comment="WLAN" manual-tx-powers="1Mbps,2Mbps,5.5Mbps,11Mbps,6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps,HT20-0,HT20-1,HT20-2,HT20-3,HT20-4,HT20-5,HT20-6,HT20-7,HT40-0,HT40-1,HT40-2,HT40-3,HT40-4,HT40-5,HT40-6,HT40-7"
/interface wireless nstreme
set WLAN comment="WLAN" disable-csma=no enable-nstreme=no enable-polling=yes framer-limit=3200 framer-policy=none
/interface wireless access-list
add ap-tx-limit=0 authentication=yes client-tx-limit=0 disabled=no forwarding=yes interface=WLAN mac-address=XX management-protection-key="" private-algo=none private-key="" private-pre-shared-key="" signal-range=-120..120
/interface wireless align
set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=00 filter-mac=00 frame-size=300 frames-per-second=25 receive-all=no ssid-all=no
/interface wireless sniffer
set channel-time=200ms file-limit=10 file-name="" memory-limit=10 multiple-channels=no only-headers=no receive-errors=no streaming-enabled=no streaming-max-rate=0 streaming-server=0.0.0.0
/interface wireless snooper
set channel-time=200ms multiple-channels=yes receive-errors=no
Nejaky napady, co je spatne a jak se toho zbavit?