[c-nsp] cisco AP 1300 and length of wep key

Sergey Velikanov [Intelsoft] sv at intelsoft.com
Tue Nov 15 02:52:31 EST 2005


Hi

I intend to use cisco AP 1300 ( IOS 12.3(7)JA1) in my network, but I have problem with client who has
old wi-fi pcmcia card (it support only wep 40bit)

my config is

dot11 ssid is_client
    vlan 30
    authentication open eap eap_methods
    authentication network-eap eap_methods
    guest-mode

interface Dot11Radio0
  no ip address
  no ip route-cache
  !
  encryption vlan 30 mode ciphers wep40
  !
  ssid is_client


my new Macintosh computer works fine (it use LEAP), but my windows and linux box auth successfully,
  but can't ping anything(it uses PEAP-MS-CHAP-v2 and EAP-TLS), as I discovered problem that AP sent
128bit key instead of 40bit to my old client

eth1      IEEE 802.11b  ESSID:"is_client"  Nickname:"HERMES I"
           Mode:Managed  Frequency:2.432 GHz  Access Point: 00:13:1A:4B:AE:50
           Bit Rate:2 Mb/s   Sensitivity:1/3
           Retry limit:4   RTS thr:off   Fragment thr:off
           Encryption key:1002-6F87-BF8C-C7A2-1016-9450-AF [4]   Security mode:open
           Power Management:off
           Link Quality=33/92  Signal level=-60 dBm  Noise level=-93 dBm
           Rx invalid nwid:0  Rx invalid crypt:8588  Rx invalid frag:1
           Tx excessive retries:0  Invalid misc:0   Missed beacon:0

why?




More information about the cisco-nsp mailing list