Linux Configure WPA2 for RT61 based Wireless Card

by on February 18, 2008 · 2 comments· LAST UPDATED February 18, 2008

in , ,

I've already written about configuring and using DLink wireless card with the help of RT61 driver. However, few readers like to know more about Wi-Fi Protected Access (WPA and WPA2) secure wireless configurations.

Step # 1: Configure Router / AP with WPA2 Security Mode

First you need to configure WPA2 security mode on the access point. All devices on your network must use the same security mode in order to communicate. Open router configuration by visiting default IP https://192.168.1.1/ and setup

  • Security Mode: WPA2 Personal
  • WPA2 Algorithm: You may choose from AES or TKIP+AES. Choose TKIP+AES if you have both WPA and WPA2 devices on your network.
  • WPA2 Pre-Shared Key: Choose a unique key to authenticate with other devices on your network. The Pre-Shared Key must be between 8 and 63 characters in length. You can generate unique key by visiting this webpage. You can also use standard UNIX / Linux utilities to generates true random passwords (key) by using the /dev/random feature of Linux.
  • Group Key Renewal: This settings determines how often your group key changes.

Configure WPA2-PSK for Your Router or Access Point
(Fig. 01: Configure WPA2 for your router / access point)

Step # 2: Configure RT61 Wireless Card

Open /etc/network/interfaces file and make changes as follows:
$ sudo vi /etc/network/interfaces
Output:

auto ra0
iface ra0 inet dhcp
pre-up iwconfig ra0 mode managed
pre-up ifconfig ra0 up
pre-up iwconfig ra0 essid nixcraft
pre-up iwpriv ra0 set AuthMode=WPA2PSK
pre-up iwpriv ra0 set WPAPSK='|zdUkK(!X)_'G!}@1|@OS/6RA#'+}eq8b&V@x1%OZyyDVV:Xwp8UmwLFNS^7=A+'
pre-up iwpriv ra0 set EncrypType=AES

Save and close the file. Make sure you replace device name (ra0), essid and WPAPSK with actual configuration parameters. Restart the networking:
$ sudo /etc/init.d/networking restart

Other simple security suggestion

  1. Change the default admin password on the access point / router.
  2. If possible turn off administration feature on the access point for wireless interface
  3. Set up an access control list by Mac address of all devices you want to associate with the access point.

Please note that above instructions are only tested using RT61 driver under Ubuntu Linux. However, instructions should work with any other Linux distos and drivers with minor or minimum changes.

Suggested readings:

TwitterFacebookGoogle+PDF versionFound an error/typo on this page? Help us!

{ 2 comments… read them below or add one }

1 Dan Yotz August 25, 2008 at 10:20 pm

Thanks for the info, between this and the RT61 config page I am now WPA2 surfing.

Only thing I don’t understand is why my wireless card no longer appears in the dropdown box for network in the upper right corner of ubuntu 7.04

Reply

2 Kim Nilsson December 25, 2010 at 7:42 pm

Hey
Trying to use yoiur guide to get a d-link 510 online with WPA2 on Gentoo.
18:05.0 Network controller: RaLink RT2561/RT61 rev B 802.11g
Subsystem: D-Link System Inc AirPlus G DWL-G510 Wireless Network Adapter (Rev.C)
Kernel driver in use: rt61pci
Installed the driver above in kernel and also emerged the firmware addon.

Sadly, I can’t use iwpriv to set any of the above settings.

# iwpriv wlan0
wlan0 no private ioctls.

I can only use iwconfig / ifconfig.
That doesn’t seem to be enough.

Reply

Leave a Comment

Tagged as: , , , , , , , , , , , , , , ,

Previous post:

Next post: