Warning! I'm a network novice.
I'm trying to get onto my company's wireless with my Evo. I see the network in under Wi-Fi Settings. It shows that it's remembered and secured with 802.1x EAP.
I'm presented with a 'Connect to XXXX' dialog when I tap on the network. The signal strength is Fair and the security is Enterprise(8021.x).
When I attempt to connect, nothing happens. On the advice of a colleague, I used adb to create a logcat file (which this tool won't let me include) generated while I attempted to connect.
Any help would be appreciated!!
TIA,
David
Did you ask your IT staff?
They have some type of security on their wifi.
Nope, my Evo isn't supported formally.
They could have it password protected, or MAC required etc.
How do you get your laptop on the wireless?
You are going to have an impossible time getting this on the network if they don't want it on the network.
802.1X means that you'll need either a username/password (usually your Windows login password, with the username formatted as *DOMAIN*\*USER* so if your user account was bsmith on the Domain Contoso, your login would be CONTOSO\BSMITH.
If that doesn't work, then you'll need the certificates that they use to authenticate devices onto the WiFi network. Unless you know what you're doing, or get cooperation from the IT department, you're SOL. Your best option would be to get a pocket access point/router (Like an Apple AirPort Express, etc.) and use that, and hope your IT staff isn't competent enough to notice it on the wired LAN, and if they do and you get caught, that you don't get fired.
DISCLAIMER: The above could get you fired if it is against the rules/permissions/policies of your job. I am not responsible for what happens to you for following my suggestions.
drmacinyasha said:
802.1X means that you'll need either a username/password (usually your Windows login password, with the username formatted as *DOMAIN*\*USER* so if your user account was bsmith on the Domain Contoso, your login would be CONTOSO\BSMITH.
If that doesn't work, then you'll need the certificates that they use to authenticate devices onto the WiFi network. Unless you know what you're doing, or get cooperation from the IT department, you're SOL. Your best option would be to get a pocket access point/router (Like an Apple AirPort Express, etc.) and use that, and hope your IT staff isn't competent enough to notice it on the wired LAN, and if they do and you get caught, that you don't get fired.
DISCLAIMER: The above could get you fired if it is against the rules/permissions/policies of your job. I am not responsible for what happens to you for following my suggestions.
Click to expand...
Click to collapse
I would highly disagree with putting on a rogue AP, that's very likely to get you fired, not to mention a pain in the ass for network admins.
mrono said:
I would highly disagree with putting on a rogue AP, that's very likely to get you fired, not to mention a pain in the ass for network admins.
Click to expand...
Click to collapse
Depends on how it's configured... I have a APExpress that I use at work when I need to. IT is so stupid here that they haven't noticed it. Also have it in bridge mode and with WPA2, MAC control, hidden SSID, and 802.11n 2.4Ghz-only mode helps. All that they would see when I hook something up its three new devices on the LAN.
--Sent from my EVO 4G using XDA App.
I had this same problem, and I finally figured it out. All I can say is google the answer. The trick was leaving the Anonymous Identity field blank. Yes, enter your network id and password. I was relieved when I figured it out.
Related
Hi all,
Eversince i bought my BA, i did not need to use Wlan on it (over a year now !!) but i am getting a bit frustrated in the last couple of days as i am unable to use it.
here is the situation - when i come to a place where i know there is a wifi signal (at my friends house) i tap the little icon on the bottom right side of the desktop screen and i get the "Wireless LAN manager" , i check the "Wireless LAN ON" checkbox and then tap "ok" . then the screen changes back to the desktop screen and i can see the little antenna in searching mode (accumulating dots beside it), then i get a popped up baloon asking if i wish to connect to "internet" or "work", i check the internet circle and tap ok (or connect - i dont remmember as i have no wifi signal at the moment), but than nothing happens - the little icon of the antenna is still searching and if i tap it i get the same "Wireless LAN manager" with no signal strength or any thing...if i try the internet explorer, it tries to connect via the GPRS connection...
PLEASE....HELP ANYONE....
It's only a notion but I'd check your friend's WiFi AP. I set one up recently in our place. The device used is a Wireless G Broadband Router and Access Point (AP) which also has a net port (4 physical connections).
I couldn't get a murmur out of it on the simplest device... ancient Jornada 720 Win 2000 with Aironet 340 card (they are matched) although it was evident that all parts were working and the setup programs recognised each other as being there. Tried our Acer n30 next on a Safecom card. Same result. Head scratching.
Eventually a light bulb went on.
Tried a hard reset on the AP/Router. It re-set from one channel (11) to another (6). Everything suddenly started talking.
Next problem... and this is where it gets close to yours... how to stop everyone getting on and in.
The AP Router is full of encryption options from WEP up. Your gadget has to match the requirement from the AP/Router... that might mean a keyword used as a base for encryption or steadily more complex requirements... depends on what your friend's AP Router is set to.
My solution had to be simpler. I could not be bothered to prat about sticking code words all over the place every time I wanted to add a device... and getting encryptions to agree is sometimes not as easy as they'd have you believe.
Answer: Every net device, including the Xiis we now use, has a device specific MAC number.
The AP Router has a table you can enter MAC numbers you want to permit access to... so you needn't fool around with all the clever stuff.
Our AP Router now has our MAC numbers in the table and permits access to them only.
The XDA iis reveals it's MAC number when you tell it to look for a connection.
We now have a WiFi AP serving an ancient egyptian Jornada 720, an Acer N30, an XDAiis, an ordinary PC (using one of the old PCMICIA Aironet Cards which configure on anything with windoze and are dirt cheap on eBay as they're only 802.11b) , and a Sony Vaio Laptop (also using an Aironet), all into a single broadband account.
So check with your chum and see what his settings on his WiFi are. Maybe try a hard re-set on it too if poking about in the admin program doesn't help.
QF
Yol said:
Hi all,
Eversince i bought my BA, i did not need to use Wlan on it (over a year now !!) but i am getting a bit frustrated in the last couple of days as i am unable to use it.
here is the situation - when i come to a place where i know there is a wifi signal (at my friends house) i tap the little icon on the bottom right side of the desktop screen and i get the "Wireless LAN manager" , i check the "Wireless LAN ON" checkbox and then tap "ok" . then the screen changes back to the desktop screen and i can see the little antenna in searching mode (accumulating dots beside it), then i get a popped up baloon asking if i wish to connect to "internet" or "work", i check the internet circle and tap ok (or connect - i dont remmember as i have no wifi signal at the moment), but than nothing happens - the little icon of the antenna is still searching and if i tap it i get the same "Wireless LAN manager" with no signal strength or any thing...if i try the internet explorer, it tries to connect via the GPRS connection...
PLEASE....HELP ANYONE....
Click to expand...
Click to collapse
quinbus_flestrin said:
Next problem... and this is where it gets close to yours... how to stop everyone getting on and in.
[snip]
Answer: Every net device, including the Xiis we now use, has a device specific MAC number.
The AP Router has a table you can enter MAC numbers you want to permit access to... so you needn't fool around with all the clever stuff.
Our AP Router now has our MAC numbers in the table and permits access to them only.
The XDA iis reveals it's MAC number when you tell it to look for a connection.
We now have a WiFi AP serving an ancient egyptian Jornada 720, an Acer N30, an XDAiis, an ordinary PC (using one of the old PCMICIA Aironet Cards which configure on anything with windoze and are dirt cheap on eBay as they're only 802.11b) , and a Sony Vaio Laptop (also using an Aironet), all into a single broadband account.
Click to expand...
Click to collapse
QF,
Are you aware that it's a fairly simple task for someone to spoof a MAC?
And in that you haven't implemented any kind of encryption that means you're broadcasting everything in the clear ... which means that anyone who wishes to access your network needs only wait until they pick up one of your valid MAC's and they're in.
Blocking MAC's is useful ... but enabling WEP (even though we all know it's not going to stop a determined attempt at penetration) will do more to keep out a casual 'visitor'. If your clients can handle WPA-PSK (which may not be the case) given a sufficiently long and random passphrase the only attack is bruteforce which can take years.
Implementing decent security just isn't that hard ... there are plenty of howto's on the net that will walk someone through everything from getting WEP going right through to setting up a VPN.
Yol,
Your friend may have set up some kind of encryption on his Access Point ... if he's connecting to it with a client then he should know what he's using.
If he's NOT connecting to it then check the manual and have a look at the settings on the Access Point. Almost all Access Points will let you connect to them using a web browser.
So if (as an example) your friends AP is at 192.168.1.254 you just plug that into your web browser on a computer that is on the network (in other words, NOT from your BA).
You'll then need to navigate your way to the settings for Wireless security (I can't help you with that ... it's different for pretty much every brand of AP) and see what's set up.
Once you know what the required settings ARE for his AP you need to configure your phone to match. Not having a BA I can't really help with that either ... but I'm sure someone else here can.
I just knew there'd be a more complicated way ;-))...
Seriously Mr Doormat... Thanks for the heads up though.
This guy was just hanging here without a response this morning when I found this XDA board.
I tested our net pretty hard but I was unable to get in without a valid MAC and could find no way of revealing one... not to say there isn't one... I just couldn't find it... which apparently doesn't mean a lot.
What would they gain by getting in though?
Interent Access... sure, but not access to our systems as there is no network in that sense surely? So we could lose bandwidth?
We have the AP/Router open for web access only AFAIK.
The only physical connection is the one you mention... to the computer via the Ethernet card, which accesses the Admin Menu.
I'm unable to get any access around logged in machines myself and I'm on the admin machine.
I dloaded WiFi for Dummies but, as usual, I haven't got past the boring bit in the front where they describe what you are dealing with rather than what you can do to/with it.
I tried bringing in WEP on the AP and setting the old Jornada to WEP too. Firstly it slowed everything to a crawl... and a Jornada is not quick at this anyway as you can imagine... and then the on-board Jornada driver decided to "dis-associate" itself... which is of course Jornada for "adios amigos"... and stopped working altogether.
I picked up a Safecom 802.11g PCMCIA card to try in the laptop, but it really hated that and refused to see it in the end. But it really loves the old Aironets.
Both Vaio and PC are on a nice Windoze XP SP2, from our friends at Appznet. The Jornada is Win 2000, and the two Pocket PCs are 2003.
I looked for a walk thru for bringing this AP on stream. Even the suppliers were baffled... until we did the hard re-set and the channel changed. I don't know what else changed.
As for bringing security on stream... well I tried sorting out the lowest common denominator... the oldest handhelds... they balked at it and I reverted to the last good setting... an old tradition.
It seems to be a question of finding the level for whatever you have.
I can allegedly bring 802.11g on with this PCMCIA card and the AP, but if I do the XDA can only do 802.11b can't it? As can the Safecom for the Acer.
I am so pleased to have found a forum for the XDA, but you'll understand I hope that I'm a bit bemused to find the first topic I get into is WiFi. I thought that had been sorted... I should have known better. )
Any information you feel relevant to this would be much appreciated. Jornada forums are all but dead now. The Acer N30 is having an unusual revival for no reason I can think of. And the AP Router is from a pleasant bunch of folks, but they eveidently know about as much as I do.
QF
Doormat said:
quinbus_flestrin said:
Next problem... and this is where it gets close to yours... how to stop everyone getting on and in.
[snip]
Answer: Every net device, including the Xiis we now use, has a device specific MAC number.
The AP Router has a table you can enter MAC numbers you want to permit access to... so you needn't fool around with all the clever stuff.
Our AP Router now has our MAC numbers in the table and permits access to them only.
The XDA iis reveals it's MAC number when you tell it to look for a connection.
We now have a WiFi AP serving an ancient egyptian Jornada 720, an Acer N30, an XDAiis, an ordinary PC (using one of the old PCMICIA Aironet Cards which configure on anything with windoze and are dirt cheap on eBay as they're only 802.11b) , and a Sony Vaio Laptop (also using an Aironet), all into a single broadband account.
Click to expand...
Click to collapse
QF,
Are you aware that it's a fairly simple task for someone to spoof a MAC?
And in that you haven't implemented any kind of encryption that means you're broadcasting everything in the clear ... which means that anyone who wishes to access your network needs only wait until they pick up one of your valid MAC's and they're in.
Blocking MAC's is useful ... but enabling WEP (even though we all know it's not going to stop a determined attempt at penetration) will do more to keep out a casual 'visitor'. If your clients can handle WPA-PSK (which may not be the case) given a sufficiently long and random passphrase the only attack is bruteforce which can take years.
Implementing decent security just isn't that hard ... there are plenty of howto's on the net that will walk someone through everything from getting WEP going right through to setting up a VPN.
Yol,
Your friend may have set up some kind of encryption on his Access Point ... if he's connecting to it with a client then he should know what he's using.
If he's NOT connecting to it then check the manual and have a look at the settings on the Access Point. Almost all Access Points will let you connect to them using a web browser.
So if (as an example) your friends AP is at 192.168.1.254 you just plug that into your web browser on a computer that is on the network (in other words, NOT from your BA).
You'll then need to navigate your way to the settings for Wireless security (I can't help you with that ... it's different for pretty much every brand of AP) and see what's set up.
Once you know what the required settings ARE for his AP you need to configure your phone to match. Not having a BA I can't really help with that either ... but I'm sure someone else here can.
Click to expand...
Click to collapse
quinbus_flestrin said:
I just knew there'd be a more complicated way ;-))...
Click to expand...
Click to collapse
There is always a more complicated way ... that's part of the fun, I think
quinbus_flestrin said:
I tested our net pretty hard but I was unable to get in without a valid MAC and could find no way of revealing one... not to say there isn't one... I just couldn't find it... which apparently doesn't mean a lot.
What would they gain by getting in though?
Interent Access... sure, but not access to our systems as there is no network in that sense surely? So we could lose bandwidth?
Click to expand...
Click to collapse
Yes and No.
An unsecured AP provides a simple means for someone to access the Net anonymously. For someone with malicious intent this has great advantages, as you can imagine. And whatever they might do would be traced back to you.
Don't get me wrong ... I'm not suggesting that there is a pack of rabid hackers circling your place using your wifi as an initial entry point to permit them to realise their schemes to bring down the Internet and western civilisation ;-)
But, as I often point out to my clients ... How would you feel if you found out that in the middle of the night someone used your unsecure AP to upload a couple of hundred MB of kiddie porn? And that you then had to prove that it wasn't YOU.
I admit - it's unlikely and a bit graphic ... but it IS a possible senario.
Less dramtically there is the cost. I'm not sure what your deal is with your ISP ... but in Australia a lot of people have quota's - a given data allowance per month, after which they are either charged excess data rates or are shaped to narrowband speeds. I imagine it would suck to experience either because someone has been downloading movies over your wifi.
quinbus_flestrin said:
We have the AP/Router open for web access only AFAIK.
Click to expand...
Click to collapse
It is fairly simple to tunnel any kind of connection through port 80 (which is used for http). Goggle for http AND tunnel and count the hits.
quinbus_flestrin said:
I tried bringing in WEP on the AP and setting the old Jornada to WEP too. Firstly it slowed everything to a crawl... and a Jornada is not quick at this anyway as you can imagine... and then the on-board Jornada driver decided to "dis-associate" itself... which is of course Jornada for "adios amigos"... and stopped working altogether.
Click to expand...
Click to collapse
There is, of course, an overhead with WEP or any other encryption scheme. I personally haven't ever had a problem, although I know some who have.
Generally they found updating the firmware on the router/AP end, and using the latest drivers for their client got them the best performance. YMMV of course.
quinbus_flestrin said:
I looked for a walk thru for bringing this AP on stream. Even the suppliers were baffled... until we did the hard re-set and the channel changed. I don't know what else changed.
Click to expand...
Click to collapse
Quite possibly nothing ... it is not uncommon for people (even people who should know better) to focus on everything but the channel. Everyone does it
quinbus_flestrin said:
As for bringing security on stream... well I tried sorting out the lowest common denominator... the oldest handhelds... they balked at it and I reverted to the last good setting... an old tradition.
Click to expand...
Click to collapse
If WEP is your only common denominator and updating firmware and drivers doesn't improve your peformance sufficiently under WEP then there is one security measure that I routinely employ, which rarely seems to be mentioned. TURN THE WIFI OFF WHEN YOU AREN'T USING IT.
Case in point ... my home AP is currently running (I see no point in power cycling it over and over) but the wireless is disabled. It takes 30 seconds to browse to the setting on the menu to enable it. It then takes about 30 seconds before I can associate. Before I go to bed at night I make sure that the wireless on the AP is disabled ... I'm not going to be using it so there's no need for it.
There is a lot of discussion about how easy it is to crack WEP ... and it IS easy. IF you have the hardware and sofware and know what you're doing, etc. I should point out that I do NOT have the setup to crack a WEP key ... but I've studied it sufficiently so that I know it's not really secure. BUT it will keep the majority of those who wish to jump on your bandwidth out. So if you can get it going, do so.
The other aspect is the security of what you are moving across the network. Internet banking, for example, is pretty secure as the data is encrypted anyway. But your usernames and passwords for your email, forum accounts, and anything that you are sending that isn't encrypted by default is being broadcast in clear.
This only becomes a problem IF someone is bothering to gather the packets being broadcast and then extracts the relevant info from all the other noise. Which is probably pretty unlikely. Unless, like a mate of mine, you live in a block of apartments with 3 unsecure wifi AP's in reach. I recently suggested that if he were to sell his flat, he could get more by pointing out that it came with free internet
Now thats what I call some good advice. A lot of the topics in this board are a bit over my head... upgrading or cooking new ROMs for example... but this is good practical advice for relatively simple old boys like me.
Our police are so good at arresting people who are not criminals, and so bad at catching those who are, that it is more than likely that bandwidth stolen to upload stuff like porn would land us in prison. They are pathalogically unable to admit that they themselves lie as much as the criminals do and deliberately cause miscarriages of justice now, so unless you can produce an iron-clad case then you are stuffed. They stopped policing some time ago when they started working for the government.
Eight of them performed a judicial murder in the tube, in full view of everyone, and still they deny that they were responsible for a needless death. That about sums them up now. Overpowered and Overpowering.
Sometimes I'm glad I'm confined to the house and the locale so much.
I will certainly turn off the WiFi when not in use. Thanks a lot for the tip.
<Less dramtically there is the cost. I'm not sure what your deal is with your ISP ... but in Australia a lot of people have quota's - a given data allowance per month, after which they are either charged excess data rates or are shaped to narrowband speeds. I imagine it would suck to experience either because someone has been downloading movies over your wifi.>
Here in the increasingly Orwellian UK we use an outfit called ntl. The deal we have is £25 pm 2Gig Broadband and (as yet) no practical dload limits. Although traffic limits are in the agreements, no one so far has reported a penalty. I stayed on 512k for a while when they brought them in, as the limit on there was far higher. But next door went on the 10Gig and dloaded more in a week than I had in a year (films mostly I think) and suffered no hit from ntl.
<It is fairly simple to tunnel any kind of connection through port 80 (which is used for http). Goggle for http AND tunnel and count the hits.>
This I must look into further. Thanks.
<
quinbus_flestrin said:
I tried bringing in WEP on the AP and setting the old Jornada to WEP too. Firstly it slowed everything to a crawl... and a Jornada is not quick at this anyway as you can imagine... and then the on-board Jornada driver decided to "dis-associate" itself... which is of course Jornada for "adios amigos"... and stopped working altogether.
Click to expand...
Click to collapse
There is, of course, an overhead with WEP or any other encryption scheme. I personally haven't ever had a problem, although I know some who have. >
I'll try the WEP once more.
<Generally they found updating the firmware on the router/AP end, and using the latest drivers for their client got them the best performance. YMMV of course. >
This AP/Router is UD'd to date AFAIK. Drivers for the old Jornadas are built-in to the ROM... they don't do Firmware... it's hard wired. I'll really have to retire them I suppose. They're prematurely becoming as anachronistic as my old Atari Portolio and DIPs. )
This is the kicker... simple, effective, and easily done by the punter. The mark of the professional at work.
<If WEP is your only common denominator and updating firmware and drivers doesn't improve your peformance sufficiently under WEP then there is one security measure that I routinely employ, which rarely seems to be mentioned. TURN THE WIFI OFF WHEN YOU AREN'T USING IT.>
<Case in point ... >
Funny you should mention flats. There are some next door and some houses on the other side.
Yesterday our XDAiis and PC notified me that a net was operational and the usual "did I want to connect". I didn't then.
However after reading your post I have.
You're right again. I needn't have bothered with all the work I did WiFi-ing, and the £40 for the AP/Router. This lets the XDA and our laptop in the upstairs sitting room on-line anyway.
My initial task was to get off dial-up in the upstairs sitting room and on to our downstairs BB account... saving the cost of the old account and the extra phone line we had put in, then to re-direct that saving to upping the BB speed.
The AP is off at night anyway... my lady won't have electrics on (aside from the phone) at night... and religiously goes round shutting them off b4 we retire.
I'm going to get my nose back into WiFi for Dummies now, and another one I just 'found' called Wireless Network Hacks and Mods. Please let me know if anything else occurs to you.
QF
quinbus_flestrin said:
This AP/Router is UD'd to date AFAIK. Drivers for the old Jornadas are built-in to the ROM... they don't do Firmware... it's hard wired. I'll really have to retire them I suppose. They're prematurely becoming as anachronistic as my old Atari Portolio and DIPs. )
Click to expand...
Click to collapse
I love old hardware ... I think it's a shame to waste it and with the passion everyone has for 'latest and greatest' one can pick up 'outdated' stuff really cheap.
Add to that the fact that never I upgrade OS or software unless it very clearly provides something that I really want. So I can totally empathise with your desire to keep the Jornada alive as it were.
I'll send you a PM, as we're really drifting into stuff that has little relevance to these forums.
YOL anyone having WIFI WIRELESS PROBLEM
YOL anyone having WIFI WIRELESS PROBLEM
http://forum.xda-developers.com/viewtopic.php?t=40712&highlight=wifi+problem
read this thread fully.. should help..
Doormat said:
quinbus_flestrin said:
I tested our net pretty hard but I was unable to get in without a valid MAC and could find no way of revealing one... not to say there isn't one... I just couldn't find it... which apparently doesn't mean a lot.
What would they gain by getting in though?
Interent Access... sure, but not access to our systems as there is no network in that sense surely? So we could lose bandwidth?
Click to expand...
Click to collapse
Yes and No.
An unsecured AP provides a simple means for someone to access the Net anonymously. For someone with malicious intent this has great advantages, as you can imagine. And whatever they might do would be traced back to you.
Click to expand...
Click to collapse
More importantly, once someone has access to the wireless side of your router (i.e., you don't use encryption or you use WEP/WPA-PSK and they cracked your key/passphrase), it's possible for them to poison the ARP tables and launch a man-in-the-middle (MITM) attack against BOTH your wireless clients AND the wired clients plugged into the router. This sounds hard, but it actually quite simple with a tool like Cain. Once they are set up as a MITM, anything goes, including attacks on your SSH connections and web browser SSL sessions (i.e., https). A successful MITM attack such as this can compromise all of the data in these "secure" connections, including usernames, passwords, PINs, etc.
It is very important to lock down the wireless side of your router, even if you do all of your "sensitive" surfing from the wired side. Also, you should always be careful when accepting certificates for secure sites in your web browser. For more information, I suggest you read this whitepaper: http://www.eecs.umich.edu/~aprakash/eecs588/handouts/arppoison.pdf.
Good luck,
Paul
Can someone please tell me how -- or point me to an existing thread that will provide instructions for how -- to get AT&T's Tilt 2 to use wi-fi?
My situation is that I'm new to the Tilt 2, and I'd like to be able to access wi-fi -- rather than the slower than molasses 3G network -- when I'm within range.
My network is wired with a WAP, and it uses static IP addressing. I have no problem accessing the network with my (old) 8525 and my (newer) iPhone or my PDA or my laptop (all configured by me) to use my network to access the Internet and email.
My network is pretty tight (I think, or hope) in that it requires a specific IP address that matches a specific MAC address to gain access.
I've configured my router & WAP to accept a specific IP address for the Tilt 2, as well as the Tilt 2's MAC. I've checked & rechecked too many times to count to make sure I didn't make any typos. I've assigned the IP address on the Tilt 2 by going to Settings > Connections > Wi-Fi > Wireless Networks > Network Adapeter, and I set the Boradcom 8-2.11 DHD Newwork Adapter (is that the right one?) to use the specific IP addy I've assigned.
However, while the wi-fi icon indicates it's connected, I'm unable to use either browser on the Tilt 2 to access the Internet -- all I get are error messages.
I have honestly tried to read here for tips, and while I've read that I need to disable the AT&T proxy, the threads I found were a little (or a lot!) over my head.
I would sincerely appreciate any guidance.
TIA,
Saundra
Please, Need Help with Wi-Fi Settings
Surely I'm not the only one having problems getting the settings right so my AT&T Tilt 2 can connect to a home network, am I?
Honestly, I'm not a moron, but I can't figure it out, and the AT&T store was no help today, either. I recall that I had a similar problem with my 8525, so I went back & looked at my notes from 2008-- the problem was the MEdia Net proxy settings. On the 8525, it was a simple matter to uncheck the "This network uses a proxy server to connect to the Internet" box.
On the Tilt 2, however, I can't see where to give that a try because all I see is a message that says, "This connection is pre-configured. It cannot be modified."
Am I looking in the wrong place, or what? Or is that unlikely to be a problem on the Tilt 2?
I will greatly greatly appreciate any suggestions to try!
TIA
My first question is, are your WiFi router and the wifil on the TP2/Tilt the same? If the router is g and phone is N, they won't communicate.
That's a good question, and one I'd not thought of. My WAP supports B, G, & N & is operating in B/G/N mixed mode-- I don't know what the Tilt 2 is, but I'd think one of the three would cover it, yes?
Try going to this thread and downloading the files in post #13. Run the remove hidden proxy cab and see if that works, that will remove the hidden AT&T proxy server setting that often can't be disabled otherwise. The Tilt2 supports 802.11 b/g, so a router in mixed mode should have no trouble with that. You might try playing around with the network adapters again; I'd personally take another stab at the DHD adapter you tried earlier, since that is the one used on wlan connections. Also, you should probably make sure that the box which says: "My network card connects to:" is set to The Internet, and not work (this setting can be found on the Network Adapters tab of the Wi-Fi applet.
And while a bit off topic, you might want to consider adding additional security on your router (such as WPA2 encryption) if MAC filtering and static IP addresses are your only security; it's quite easy to grab both using free tools like aircrack-ng.
I want to thank you for your suggestions, but I'm not having any luck so far.
Scratch that -- things seem to be working . . . kind of. All I did was keep redoing the same things over & over, and suddenly, things are working.
I'm starting to think, though, that there's something wrong with this particular phone. Seriously -- I did nothing different tonight to get wi-fi working . . . encouraged by your comments, I just kept doing the same things over & over & over that I did last night.
Last night, running the removeHiddenProxy4CWS cab (it's in the Tools folder) resulted in not being able to connect to the Internet via 3G or wi-fi. Tonight, the results are different: I'm able to connect to the Internet via both after having run for the umteenth time the removeHiddenProxy4CWS file.
Further, while I've read many comments that the Internet is really slow on the Tilt 2, I'm thinking mine is abnormally slow & seems to hang up even via wi-fi. Now, I'll admit that perhaps my expectations are different coming back from an iPhone, but I charged up my old 8525, turned off the phone on the Tilt 2 to make sure I was connecting via wi-fi, and we are talking agonizingly slow on the Tilt 2 -- I was able to browse to six different Web pages on the 8525 in the time it took the Tilt 2 to partially bring up the first page (I used the same starting page on both). And, I say "partially" because it seemed to hang up at only partially displaying the Web site until I eventually hit the little circle in the bottom right of the screen. It does that on lots of pages -- is that the way things usually work on the Tilt 2?
Also, after my last soft reset just before things started working, I got a memory error message after I turned on wi-fi & when I hit the Internet button -- I should have written it down, but it said something about being out of memory on line 2. Any suggestions about that?
If the above are normal experiences for the Tilt 2, then I'll start learning about the tweaks to improve speed & such. If not, then I guess I need to try to exchange this phone. <sigh>
I also really appreciate your a bit off topic comment because I'm a security freak but not sure I understand much! My WAP uses WEP 64-bit encryption in addition to the MAC filtering & static IP addresses, and my wired router has a firewall -- does that sound sufficient. None of my neighbors can "see" my network, and it can't be seen from the nearest public road -- does that sound relatively secure?
Most of your Tilt2 problems could be fixed by flashing a custom ROM. If the phone is a business phone (as in it belongs to your company) or you otherwise can't void the warranty, a custom ROM sounds about right. It will improve the device's speed on all fronts, and will also have more available memory on bootup (mine had 25% less RAM in use on startup with a custom ROM). On my Tilt2, using a custom ROM with the latest Manila 2.5 build, things are still quite snappy, and pages load quickly on 3G and EDGE. If you'd like to know how to put a custom ROM on your device, this link will tell you everything you need to know. If you decide to put a custom ROM on your device, keep in mind you'll lose all the data on your device if you don't back it up.
As for the wireless security: WEP is extremely insecure. It has been proven insecure for many years, and has been replaced with the WPA (okay but obsolete now) and WPA2 (best current router security) protocols. Cracking WPA/WPA2 is much more difficult, as it requires a password cracking program and a wordlist to crack downloaded traffic obtained from the network, which can take days of cracking, sometimes ending in failure regardless. Unlike WPA/WPA2, WEP is much more vulnerable to many different attacks, from programs like aircrack-ng, which are free and readily available. If you don't believe me, check out this video of WEP being cracked on a test router, with the Backtrack 4 Beta security Linux distro, in as little as 2 minutes. MAC addresses and IP addresses can also be grabbed with many readily available tools, and the MAC can then be spoofed quite easily with free programs. And even a hidden SSID can be grabbed with a program like Kismet, which scans all wireless network traffic in an area (regardless of the network it's on) and can grab the hidden router's SSID during the handshaking process (when a client computer connects to the router). If you're absolutely positive that your network can't be detected from any public road (as in, there's no signal whatsoever), you're probably okay and can probably sleep safe at night. But, unless you have old equipment/software which doesn't support WPA2 or WPA, I'd recommend upgrading to the latest WPA2 security (if you're really concerned about security/privacy).
I really appreciate your help!
The Tilt 2 is a week old -- it was a birthday present. Am I correctly understanding that I could flash a custom ROM & then flash back the original if I don't want to void the warranty?
If so, playing with different ROMs would be something I'd be interested in doing . . . I just don't want to void the warranty in case there is something wrong with the phone. I had lunch with a friend with an AT&T stock Fuse (I think) Thursday, and we were playing with each other's phones. I can't say that I noticed her Internet was any faster (I wasn't really paying attention), but she was quite surprised that both IE & Opera failed to display a complete page until the screen was touched. On my end with her Fuse, Web pages opened completely with no fuss.
So, the whole "hang" thing makes me very nervous, particularly with the "out of memory" error message with nothing other than Contacts on the phone yet -- I've not even bothered to configure email (my lifeline). I was hoping the Web interface (I have IMAP) would work OK since that was one of my big beefs with the iPhone -- the onscreen keyboard just didn't work for me. But, with The Tilt 2 taking over 60 seconds to even get to my web-based Inbox, the Tilt 2 is gonna be a problem unless I can get that resolved. Hence my concern about not voiding the warranty.
You are correct: I do have older equipment that only supports WEP. My PDA & my old 8525. If I can get the Tilt 2 working well enough for me, I can rotate the older stuff out and go with stronger wireless security. I know my neighbors can't "see" my network, but I've never tested from the street behind my house since the closest neighbor behind can't see the network. However, due to the configuration of my neighborhood, I'd best check that street. <gulp>
Thanks again -- I really appreciate the help.
sslund said:
The Tilt 2 is a week old -- it was a birthday present. Am I correctly understanding that I could flash a custom ROM & then flash back the original if I don't want to void the warranty?
If so, playing with different ROMs would be something I'd be interested in doing . . . I just don't want to void the warranty in case there is something wrong with the phone. I had lunch with a friend with an AT&T stock Fuse (I think) Thursday, and we were playing with each other's phones. I can't say that I noticed her Internet was any faster (I wasn't really paying attention), but she was quite surprised that both IE & Opera failed to display a complete page until the screen was touched. On my end with her Fuse, Web pages opened completely with no fuss.
So, the whole "hang" thing makes me very nervous, particularly with the "out of memory" error message with nothing other than Contacts on the phone yet -- I've not even bothered to configure email (my lifeline). I was hoping the Web interface (I have IMAP) would work OK since that was one of my big beefs with the iPhone -- the onscreen keyboard just didn't work for me. But, with The Tilt 2 taking over 60 seconds to even get to my web-based Inbox, the Tilt 2 is gonna be a problem unless I can get that resolved. Hence my concern about not voiding the warranty.
-snip-
Thanks again -- I really appreciate the help.
Click to expand...
Click to collapse
Sure, I'm glad I can help. Well, you're partially correct about the whole ROM thing. The deal is, your warranty is only voided if they know you put a custom ROM on it. If they don't find out (ie, you restore the ROM and SPL to their stock counterparts) you're good to go. However, you do technically void the warranty because you put a third party ROM. However, you can take it from me when I say it's almost 100% safe when you follow instructions and it's completely worth it. You get more features and stability with less bloat while using an unofficial ROM. Keep in mind that if the USB port goes bad, you can't restore the device to stock configuration, and you'll have to pay full price for repairs (unless you dispute the warranty violation in court, and try to prove that there's no way an unauthorized ROM broke the USB port). Otherwise, a custom/cooked ROM is completely worth it, and will greatly improve your whole experience over the stock ROM.
When your out traveling you often connect to different wifi spots(restaurants, hotel,...) and you never know how what happens behind.
Is there a way to use your phone on Internet in a safe way? Like a switch on your home screen you can turn the it on/off easly? I guess you need an app, a vpn or a server of some sort??
What do you mean with "in a safe way" ?
For example gmail uses a cripted (SSL) channel to read/send email. Is SSL "enough" safe for you ?
Using a "public" hotspot is not less "safe" than acecss your online backing form a pc at office. Is it possible for the "neworking guy" to see that you are accessing an online bank? Yes, for sure. Could he read your PIN/passwd and steal your money ? If your bank has a decent website (HTTPS) probably not (or not so easily..).
Do you wnat to be "safe" to read an online newspaper for last headnews?
Tor, private VPN
Sent from my i9250
kliw said:
For example gmail uses a cripted (SSL) channel to read/send email. Is SSL "enough" safe for you ?
Click to expand...
Click to collapse
With the easy availability of Jasager routers and how simple SSL-stripping is, no, SSL isn't safe enough on a public wifi.
As bk said, either use Orbot (TOR's Android implimentation) or a private VPN that provides endpoint-to-endpoint encryption.
I usually tend not to do any super personal stuff over public wifi - that means access gmail, google drive, etc.
I tend to stick to browsing websites for reading and that's it.
Chances are, if it's in a known location of a big business you probably have nothing to worry about.
A mom-and-pop coffee shop, or a crummy hotel wifi access point I'd be skeptical of the security enforced.
Here you go..
http://forum.xda-developers.com/showthread.php?t=1350941
akira02rex said:
Chances are, if it's in a known location of a big business you probably have nothing to worry about.
Click to expand...
Click to collapse
Actually, a big business's wifi is probably less safe. Anyone who wants a large number of targets at once just needs a Jasager router, the ability to launch a de-auth attack (not difficult at all), and a local Starbucks.
Hi, first of all, I have no idea where I am supposed to post this.
Anyway, I have a Nexus 7 FHD, and have been using it at school. My school has its own wifi, and I used to be able to connect to it perfectly fine, as I knew the password. It doesn't have any of that wifi login stuff. Recently, however, I think I've been blocked or something from it. I go to WiFi settings, and then my N7 sees the network. I know I have the correct password as my phone (d2vzw) can still connect to it. I click on it to connect, and then the network says connecting... but then after a while it goes back to the Saved, Secured with ... etc. This has been bothering me a lot, as I often need to research topics at school. I've tried spoofing my MAC address, but I don't think it works. If somebody could please help me solve this issue, it would be greatly appreciated!
P.S.- My friend also had this issue, and he's more tech savvy than I am. He was also blocked on his N7 (first gen) and tried changing his device name and mac, but I'm not sure either of us actually spoofed our mac addresses. The first time, both of us were blocked. Then, the wifi crashed, and we both regained access. Now, only I'm blocked, and then only reason I can think of for actually being blocked is attempting to start up orbot... which incidentally failed. Please help! Thanks!
The proper course of action would be to contact your network's admin and request that you be unblocked and take the lumps that come with the actions that caused you to be blocked. Trust me when I say that most system and network admins look very negatively on attempts to get around the security. (you'll only be digging your hole deeper)
Not all admins are the same but I base my opinion on my experiences as a network admin on a .mil network for 7 years YMMV but I know the mentality intimately.
You could use Bluetooth tethering to share the phones WIFI connection with the N7. Use the phone for the WIFI connection and then enable Bluetooth tethering. (If you don't know how, google 'android bluetooth tethering'.)
BTW, the DHCP requests on the WIFI to get your IP address contain a hostname besides the MAC address. You can change that using an adb shell or root terminal and running:
setprop net.hostname HOST_NAME_YOU_WANT
oldsoldier2003 said:
The proper course of action would be to contact your network's admin and request that you be unblocked and take the lumps that come with the actions that caused you to be blocked. Trust me when I say that most system and network admins look very negatively on attempts to get around the security. (you'll only be digging your hole deeper)
Not all admins are the same but I base my opinion on my experiences as a network admin on a .mil network for 7 years YMMV but I know the mentality intimately.
Click to expand...
Click to collapse
Thanks for the advice! But the thing is, I don't think students are supposed to be on the WiFi anyway lol. Someone found out the password, and now I guess close to 97% of the student body uses the WiFi. The teachers definitely know, but they haven't taken any action, so who knows. Anyway, I don't know who the admin is or have any clue how to contact him... soooo I'm out of luck haha.
tni.andro said:
You could use Bluetooth tethering to share the phones WIFI connection with the N7. Use the phone for the WIFI connection and then enable Bluetooth tethering. (If you don't know how, google 'android bluetooth tethering'.)
BTW, the DHCP requests on the WIFI to get your IP address contain a hostname besides the MAC address. You can change that using an adb shell or root terminal and running:
setprop net.hostname HOST_NAME_YOU_WANT
Click to expand...
Click to collapse
Hm, this sounds pretty interesting. Could you explain a little more in depth? or point me to a website or whatnot? That would be greatly appreciated, as I'm not that knowledgeable in the networking area. Would this "fix" be reversible?
When I try to sign into my company's Wifi, it normally takes me 1.1.1.1 page and says "The network you're trying to join has security issues."
I "Continue Anyway VIA Browser" and it takes me to a login/pw page. After I put in the credentials, I'm connected into my network.
Now, I am being directed to the Cloudfare 1.1.1.1 page. My co-worker's IOS and Samsung device has no issues. It takes them directly to the login/pw page.
Any ideas?
Thank you!
Long story short, your phone is behaving correctly. Complain to your company's IT department for using hardware (probably Cisco) that improperly uses a public IP address for internal captive portal use. This is essentially up to that hardware vendor to fix and your company's IT department to apply said fix. Here's more info from Cloudflare's Blog.
Thank you!