1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.


Discussion in 'Tomato Firmware' started by crossos, May 1, 2008.

  1. crossos

    crossos Network Guru Member

    Hi, I've got a little problem. I'm trying to connect 2 Tomato routers using AP+WDS mode. But the problem is that when I use TKIP as an encryption mechanism it fails to connect. When I choose AES instead of TKIP it works fine. So I would like to ask if someone successfully established the scenario with TKIP. I have to use TKIP because my device knows only TKIP (IP camera). Thanks in advance for answers.
  2. rickh57

    rickh57 LI Guru Member

    I'm curious about this, too. I'm getting ready to add another Tomato firmware router to my network using WDS, but I have a couple of Windows Mobile PDAs that only support WPA/TKIP, so I can't switch to AES encryption and still use WIFI on the PDAs.
  3. bigclaw

    bigclaw Network Guru Member

    What are your router and Tomato versions?
    Have you tried the TKIP/AES mixed mode?
    Do you absolutely need WDS? Is your IP camera wired or wireless? If wired, can you try WET? If wireless, can it obtain a signal directly from the primary router?
  4. crossos

    crossos Network Guru Member

    Well, the first router is WRT54GL, second WRT54G. Both running Tomato version 1.17. It's an Ovislink WL-5460CAM 802.11g camera. I would appreciate the possibility to use TKIP. I don't know if it's possible to use it and if someone use it this way. Perhaps WDS/TKIP is implemented and I'm doing something wrong.. Or if it's possible to use AES for WDS link and TKIP for clients.
  5. bigclaw

    bigclaw Network Guru Member

    Try my suggestions above and let us know.
  6. voxabox

    voxabox LI Guru Member

    I don't have any problem running WPA/TKIP WDS mixed mode with v1.19 here
    router 1 wrt54gs v1 AP + WDS
    router 2 WRT54GL v??? (16M RAM) AP + WDS
  7. TexasFlood

    TexasFlood Network Guru Member

    I used to run WPA/WPA2 PSK + TKIP. and it worked including WDS but I would get periodic disconnects, not bad but annoying. I switched to WPA PSK + TKIP then very quickly to WPA PSK + AES. My periodic disconnects went away so I can say that AES is stable for me. Perhaps going from WPA/WPA2 mixed to WPA contributed to this stability but I switched things so quickly I can't be sure.

    *Update - Switched back to WPA/WPA2 PSK + AES and had performance problems. Also tried TKIP/AES mixed mode and my WDS shut down hard and fast. I had to plug in with a cat5 cable to each router & switch back to WPA PSK + AES and now everything is fine again.
  8. crossos

    crossos Network Guru Member

    I tried your suggestions but with no luck. It looks that WDS+AP mode works stable only with AES. That's a sad result for me because devices with TKIP could not be added into a network.
  9. bigclaw

    bigclaw Network Guru Member

    So the wireless signal directly from your primary router is not strong enough for your camera to connect?

    Can you move the primary router closer to the camera for it to pick up the signal?

    Or, can you add another access point just for the camera (assuming the access point can be placed somewhere reasonably close to the camera)?
  10. HennieM

    HennieM Network Guru Member

    You could run your primary router as an AP only (WPA/TKIP), and then use that fancy "repeater mode" of DD-WRT v24 on the 2nd. Don't know much about that repeater mode, but the way I understand it, it just repeats the primary signal without actually running a WDS node.
  11. crossos

    crossos Network Guru Member

    Thanks HennieM for you suggestion. It works like a charm. With dd-wrt v24 firmware installed in 2nd router it's possible to expand signal coverage as WDS does. All clients are bridged into one subnet and everything works as should. Here is a tutorial how to achive it http://www.dd-wrt.com/wiki/index.php/Universal_Wireless_Repeater . This guide describes scenario with 2 separate subnets but it's no problem to use "Repeater bridge" to get behavior like with WDS and single subnet (it means single DHCP server, port forwarding etc.)
    So for now I could recommend this scenario if someone need to use TKIP instead of AES.

Share This Page