| View previous topic :: View next topic |
| Author |
Message |
YTKColumba
n00b
Joined: 11 Mar 2013
Posts: 13
|
 Posted: Sat Feb 08, 2014 7:52 pm Post subject: [Solved] NetworkManager Wireless Issue (CCMP, AES) |
 |
|
Hello,
I am new to Gentoo and I am having issue trying to connect to wireless.
I am currently running Kernel 3.10.25 on GNOME 3 with NetworkManager. I am trying to connect to a wireless network with WPA2 and AES, but it does not seem to be working. Though TKIP network seem to be working. NetworkManager doesn't seem to give me an option to switch between AES and TKIP.
I was wondering if there are anything I need to enable to get Wi-Fi working on AES?
Last edited by YTKColumba on Mon Feb 10, 2014 6:17 pm; edited 1 time in total |
|
| Back to top |
|
 |
DONAHUE
Watchman
Joined: 09 Dec 2006
Posts: 7651
Location: Goose Creek SC
|
| Posted: Sun Feb 09, 2014 3:17 am Post subject: |
|
|
Does your router support ccmp/aes? | Code: | emerge wireless-tools
iwlist <interface name> scan |
and/or | Code: | emerge iw
iw <interface name> scan |
scan should show | Quote: | Group Cipher : CCMP
Pairwise Ciphers (1) : CCMP
Authentication Suites (1) : PSK |
if wpa2-psk mode is supported
Does your kernel support AES? My menuconfig, courtesy of pappy's kernel seeds, contains | Quote: | -*- Cryptographic API --->
--- Cryptographic API
*** Crypto core or helper ***
-*- Cryptographic algorithm manager
< > Userspace cryptographic algorithm configuration
[*] Disable run-time self tests
-*- GF(2^128) multiplication functions
-*- Null algorithms
< > Parallel crypto engine
-*- Software async crypto daemon
<*> Authenc support
< > Testing module
*** Authenticated Encryption with Associated Data ***
{*} CCM support
<*> GCM/GMAC support
-*- Sequence Number IV Generator
*** Block modes ***
<*> CBC support
-*- CTR support
<*> CTS support
-*- ECB support
-*- LRW support
<*> PCBC support
-*- XTS support
*** Hash modes ***
-*- CMAC support
-*- HMAC support
<*> XCBC support
<*> VMAC support
*** Digest ***
-*- CRC32c CRC algorithm
<*> CRC32c INTEL hardware acceleration
< > CRC32 CRC algorithm
< > CRC32 PCLMULQDQ hardware acceleration
-*- CRCT10DIF algorithm
< > CRCT10DIF PCLMULQDQ hardware acceleration
-*- GHASH digest algorithm
*** Ciphers ***
-*- AES cipher algorithms
-*- AES cipher algorithms (x86_64)
<*> AES cipher algorithms (AES-NI)
<*> Anubis cipher algorithm
-*- ARC4 cipher algorithm
<*> Blowfish cipher algorithm
<*> Blowfish cipher algorithm (x86_64)
<*> Camellia cipher algorithms
-*- Camellia cipher algorithm (x86_64)
-*- Camellia cipher algorithm (x86_64/AES-NI/AVX)
<*> Camellia cipher algorithm (x86_64/AES-NI/AVX2)
-*- CAST5 (CAST-128) cipher algorithm
<*> CAST5 (CAST-128) cipher algorithm (x86_64/AVX)
-*- CAST6 (CAST-256) cipher algorithm
<*> CAST6 (CAST-256) cipher algorithm (x86_64/AVX)
-*- DES and Triple DES EDE cipher algorithms
<*> FCrypt cipher algorithm
<*> Khazad cipher algorithm
<*> Salsa20 stream cipher algorithm
<*> Salsa20 stream cipher algorithm (x86_64)
<*> SEED cipher algorithm
-*- Serpent cipher algorithm
<*> Serpent cipher algorithm (x86_64/SSE2)
-*- Serpent cipher algorithm (x86_64/AVX)
<*> Serpent cipher algorithm (x86_64/AVX2)
<*> TEA, XTEA and XETA cipher algorithms
<*> Twofish cipher algorithm
-*- Twofish cipher algorithm (x86_64)
-*- Twofish cipher algorithm (x86_64, 3-way parallel)
<*> Twofish cipher algorithm (x86_64/AVX)
*** Compression ***
<*> Deflate compression algorithm
<*> Zlib compression algorithm
<*> LZO compression algorithm
< > LZ4 compression algorithm
< > LZ4HC compression algorithm
*** Random Number Generation ***
<*> Pseudo Random Number Generation for Cryptographic modules
<*> User-space interface for hash algorithms
<*> User-space interface for symmetric key cipher algorithms
[ ] Hardware crypto devices ----
< > Asymmetric (public-key cryptographic) key type ---- |
Since I use Pappy's crypto choices mindlessly and they work to give me CCMP in networkmanager, I can but recommend using them and rebuilding the kernel if changes are involved.
_________________
Defund the FCC. |
|
| Back to top |
|
|
YTKColumba
n00b
Joined: 11 Mar 2013
Posts: 13
|
| Posted: Sun Feb 09, 2014 4:30 am Post subject: |
|
|
The router does support CCMP/AES cause my windows machine is connected via AES.
Is there anything specific in the kernel I need to support AES?
I have enabled
| Code: |
AES cipher algorithms
AES cipher algorithms (x86_64)
AES cipher algorithms (AES-NI)
|
Do I need all the configuration you've listed? |
|
| Back to top |
|
|
DONAHUE
Watchman
Joined: 09 Dec 2006
Posts: 7651
Location: Goose Creek SC
|
| Posted: Sun Feb 09, 2014 4:38 am Post subject: |
|
|
as I said, I mindlessly use what pappy suggested for crypto choices having no idea as to what is mandatory, optional, or useless in this set of choices
you might also want to check emerge --info output to see if the Use flag ssl is present
_________________
Defund the FCC. |
|
| Back to top |
|
|
YTKColumba
n00b
Joined: 11 Mar 2013
Posts: 13
|
| Posted: Sun Feb 09, 2014 6:13 am Post subject: |
|
|
| I added to but still unable to connect using AES... |
|
| Back to top |
|
|
DONAHUE
Watchman
Joined: 09 Dec 2006
Posts: 7651
Location: Goose Creek SC
|
| Posted: Sun Feb 09, 2014 8:16 am Post subject: |
|
|
take a look at http://imgur.com/CJHCgxZ
open the NetworkManager GUI - icon upper right toolbar
open Network Settings
open settings for your wifi network icon is gear on a button
select security
select wpa & wpa2-personal
apply
browse to /etc/NetworkManager/system-connections/Auto <your wifi network name> which should contain | Quote: | [802-11-wireless-security]
key-mgmt=wpa-psk
psk=yourphrase |
_________________
Defund the FCC. |
|
| Back to top |
|
|
YTKColumba
n00b
Joined: 11 Mar 2013
Posts: 13
|
| Posted: Sun Feb 09, 2014 8:38 am Post subject: |
|
|
| DONAHUE wrote: | take a look at http://imgur.com/CJHCgxZ
open the NetworkManager GUI - icon upper right toolbar
open Network Settings
open settings for your wifi network icon is gear on a button
select security
select wpa & wpa2-personal
apply
browse to /etc/NetworkManager/system-connections/Auto <your wifi network name> which should contain | Quote: | [802-11-wireless-security]
key-mgmt=wpa-psk
psk=yourphrase |
|
I do not seem to have a security icon on upper right toolbar |
|
| Back to top |
|
|
DONAHUE
Watchman
Joined: 09 Dec 2006
Posts: 7651
Location: Goose Creek SC
|
| Posted: Sun Feb 09, 2014 3:53 pm Post subject: |
|
|
Perhaps you have a Windows 8 looking start screen with a bunch of tiles in it; one of which is labeled Network? If so, open it. A Settings dialog should open. If so, find your wifi interface's row. In that row, click the button with a gear on it. That should open a dialog labeled with your network name. Left side has a column of choices: Details, Security, Identity, IPv4, IPv6, Reset. Click Security.
You may have to access the tile screen via activities in the upper left of the screen.
_________________
Defund the FCC. |
|
| Back to top |
|
|
YTKColumba
n00b
Joined: 11 Mar 2013
Posts: 13
|
| Posted: Sun Feb 09, 2014 6:29 pm Post subject: |
|
|
| DONAHUE wrote: | Perhaps you have a Windows 8 looking start screen with a bunch of tiles in it; one of which is labeled Network? If so, open it. A Settings dialog should open. If so, find your wifi interface's row. In that row, click the button with a gear on it. That should open a dialog labeled with your network name. Left side has a column of choices: Details, Security, Identity, IPv4, IPv6, Reset. Click Security.
You may have to access the tile screen via activities in the upper left of the screen. |
Ok, I found it, you have to be connected to a network before it shows, but it didn't show for me cause I can't connect to the AES network.
Also I found the solution for this, apparently I installed everything correctly, but it just that I could not connect to the network because only root can connect and normal user does not have permission. Is there anyway of solving that so normal users can connect?
Thanks for the help |
|
| Back to top |
|
|
DONAHUE
Watchman
Joined: 09 Dec 2006
Posts: 7651
Location: Goose Creek SC
|
| Posted: Sun Feb 09, 2014 7:24 pm Post subject: |
|
|
gpasswd -a $USER plugdev according to http://wiki.gentoo.org/wiki/NetworkManager
a good gentoo rule of thumb is: be root when installing or configuring straight up or with su
_________________
Defund the FCC. |
|
| Back to top |
|
|
YTKColumba
n00b
Joined: 11 Mar 2013
Posts: 13
|
| Posted: Sun Feb 09, 2014 11:44 pm Post subject: |
|
|
I already had my normal user in plugdev group when trying to connect, it did not seem to work. |
|
| Back to top |
|
|
|
Networking & Security
