NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
RAX 120 authentication issues
For some reason after a period of several hours any device that trys to logon into my wireless system gets an authenication error, the password is invalid. My firmware is V1.0.1.90. I have tried t...
I am using channel 36, which is not a DFS channel and....
Oh crap. I just ran WiFi analyzer, and channel 36 is no longer a good idea. Yipes.
Ok, channel 40 didn't work out either, so I selected a DFS channel (52). Hopefully, this will help my other devices, so thank you for the advice, but the same phone still gets "invalid password" when it attempts to connect to the 5GHz band. What else can I try?
I thought this was (currently) dissing the .122 firmware... If you are unable to log into the router *and* you want to know what *I* think, I'd re-check "Access control" and maybe (for now) switch to wpa2 to see if it helps. use a guest channel for now. Is the channel jumping around, is the strength too low..apologies in advance because you know more than me probably, I'm guessing and plus I can't see what you wrote about 36 and 40 "not being a good idea"
As for DFS: It's a radar thing, the government wants to keep their frequencies rather than move them, and so WiFi is ideally supposed to share, not kick all users off the channel.
I changed routers (to my Linksys wrt1900AC,) and I've been on channel "112" for quite a bit, maybe 15 minutes, 25 minutes...
It isn't easy for me to change routers but I was proving a point, that Lately the RAX120 is way to sensitive vis a vis DFS.
When I said 36 and 40 were not a good idea, I mean I tried switching the router to those channels, and my phone still could not connect to the 5 GHz band.
And I'm probably not going to switch to WPA2 since that's not secure anymore.
- Since your device probably does not support WPA3 and then it will default to WPA2 anyway so there is no difference, some devices don't like the WPA3 flag so try WPA2, if you have a strong password its safe. Most routers still don't support WPA3 so unless you have a very weak Wi-Fi password you will be fine. Use 16 digits and you will be more than safe. When people offer suggestions I would generally try them. My RAX120 is running well and secure on WPA2 using a very complicated 64 digit password, apart from the known attached devices bug.
The router should handle WPA3. The device in question is a Samsung S20+, which should also be able to handle WPA3.
However, it finally reconnected on its own, and when I used a WiFi analyzer, I noticed that the connection was using WPA2.
So It may very well be that either the router or the phone is not implementing WPA3 correctly. If I get more connection problems in the future, I'll consider disabling WPA3 from the router.
WPA3 has already been hacked so I would not worry to much. In fact it hacked a few times https://arstechnica.com/information-technology/2019/04/serious-flaws-leave-wpa3-vulnerable-to-hacks-that-steal-wi-fi-passwords/
Odd, WPA3 works fine with my mobile devices and also works for my MacBook Pro 16" and my Windows laptops with Intel (8265/9260 and AX200) and Qualcomm (QCA 6174A aka Killer 1535) WiFi cards. It may be an issue with the Galaxy.
Most of the time it works for me, but once in a while, one of the mobile devices will simply not authenticate and I get an "invalid password" error for that device on that band.
Since I switched to WPA2, this stopped happening.
Killhippie wrote:WPA3 has already been hacked so I would not worry to much. In fact it hacked a few times https://arstechnica.com/information-technology/2019/04/serious-flaws-leave-wpa3-vulnerable-to-hacks-that-steal-wi-fi-passwords/
Already? That was fast.
If I recall that vulnerability was when WPA2/WPA3 mixed mode is used where attackers use a downgrade exploit.
Other exploits are there as well I think but, WPA3 is more useful when using it alone and not in a mixed WPA2/3 mode.
I am not sure neither whether using WPA3 alone is more secure.
Already WPA2/WPA3 mixed mode was hacked by dowgrading method. Hah, it is so soon...
Wonder for a safe security , we should disable WPA3 mixed mode in the router? Something to think about.
TerryPh wrote:I am not sure neither whether using WPA3 alone is more secure.
Already WPA2/WPA3 mixed mode was hacked by dowgrading method. Hah, it is so soon...
Wonder for a safe security , we should disable WPA3 mixed mode in the router? Something to think about.
But if I disable mixed mode, my older devices won't be able to connect. Sigh.
WPA3 alone is better would at least prevent a downgrade type attack, but yeah if you have older devices then that's a show stopper. I'd just use WPA2 and not worry about it.
The following support WPA3: AppleTV, iPhone 6 and newer and most Windows laptops with Intel cards I think 7265 (tested 8265 and newer) and most of the recent Android phones will work fine with WPA3 only mode. Macbooks (Tested 16") also work fine, at least the ones using the BCM436X Broadcom WiFi chipsets seen in the models from the past 5 years or so.
But yeah TVs, some smart home devices and other media gear may have issues, as they are usually not always up to spec.
