D-Link Forums
D-Link Wireless Routers for Home and Small Business => DIR-2660 => Topic started by: Chocofenix on August 14, 2020, 05:34:56 PM
-
I updated my old iPhone to iOS 14, I have just noticed that it's flagging my network as not secure as it uses TKIP. In the router settings there's basically security on or off, without the option of saying WPA2A-AES (I wouldnt unrealistically expect WPA3)
I think this needs addressing prior to iOS14's release or D Link will get some angry customers with their somewhat expensive router being labelled not secure with no way of securing it.
I should probably also question that surely WPA1/TKIP shouldn't even be an option on the 5GHz network (where using separate names)?
Are there any beta firmwares available that perhaps give this option?
Thanks
-
Did this happen on iOS 13? iOS 14 is beta currently so there maybe issues with iOS beta vs D-Link FW.
What model iPhone are you using?
What FW version are you using on the DIR router?
-
Hey, thanks for the reply :)
It's not an error on the iPhone as such, it's a warning that the network is using TKIP authentication which is considered not secure, it's an iPhone SE so basically a 6s.
Apple have been getting increasingly stricter with security and certificates over the last couple of years - mobile device enrolment stuff requires full chain certificates as of iOS13 so I'm not overly surprised they're flagging TKIP.
The firmware is 1.11, and I tried a factory reset last night to see if it's something I did but no go
Many thanks
-
Please post a screenshot of this error.
Adding Screenshots In A Post (http://forums.dlink.com/index.php?topic=58120.0)
I just checked my 2660 with my iphone 6sP, iOS 13.6 Not seeing any errors with mine though I don't have iOS 14 loaded. It had been running the iOS13 beta stream up to a few months ago. Not sure if my 6sP is 14 compatible. I believe the phone is connected at WPA2 mode because the connection rate between the phone and DIR router is over 400Mpbs. I believe I would not see this if the mode was WPA.
Do you have any other wifi devices to compare or test with?
-
I cant attach at the moment as I'm at work and the phone with beta on is at home. but will upload later, however, this is more about the fact I want to br able to disable TKIP, and select the options for encryption and turn off compatibility modes. This cannot seem to be done with this router.
Its speeds are fine, I believe what it is doing is identifying that the network can be connected to via insecure methods. Which I wish to disable.
Many thanks
-
I would make contact with D-Link support and let them review this. I presume there maybe some possible bug in FW and or in iOS that maybe causing this. Something D-Link and Apple will need to review. Since your using a Beta iOS. Please reference this forum thread as well.
Selecting of different WPA options was removed years ago, 2013 era. Security modes have been mostly automatic since then.
Good Luck.
-
iPhone 7 - the same issue with iOS 14.0.1
-
I already spoke with support. I’m in shock: we can’t control any encryption settings. Everything is out of our control - automatically.
It’s very disappointing as I can’t disable weak encryption methods 🤢
-
Been like this since 2013 when the DIR-880L first came out with the new UI. ::)
Over all I presume APPLE will need to work with wifi router mfrs to ensure there new iOS versions work for users with routers that automatically handle security modes. :-\ If APPLE is making changes, then its up to them to ensure there products work right.
-
Issue has been sent to the engineers. Seems like it auto-negotiated using TKIP before AES. I really wish they kept the options in like their older routers. Simplicity causes issues imo.
-
Actually just got word this got fixed in iOS 14.2 beta.
EDIT: Maybe not...waiting for test results from a reliable source
-
:o
-
Old and few times cheaper d-link router do not have such issue.
Would be good to enable advanced operations for users to let us decide about encryption settings in our routers
-
What’s the latest update from support?!?
-
What’s the latest update?
-
(https://i.ibb.co/Ry7HMqt/2660.png)
As we can see network 1 and 2 have following features are available:
* WPA
* TKIP
Correct should be:
* Disable WPA
* Disable TKIP
Exactly the same as it is configured for network no. 3 on screenshot.
I reported this security issue to security@dlink.com - The "investigating" this.
-
What wifi analyzer app are you using?
(https://i.ibb.co/Ry7HMqt/2660.png)
As we can see network 1 and 2 have following features are available:
* WPA
* TKIP
Correct should be:
* Disable WPA
* Disable TKIP
Exactly the same as it is configured for network no. 3 on screenshot.
I reported this security issue to security@dlink.com - The "investigating" this.
-
Acrylic WiFI Pro
-
Well I connected my Android PAD to my 2660 and it reports using WPA2-PSK however WiFi Man doesn't report which actual mode it's using AES or TPIK, however connecting to a different router I have running reports the same thing and it's set to WPA2 and AES only and the app reports the same WPA2-PSK so for my pad, it's using AES.
(https://i.postimg.cc/qvRnJzrj/Screenshot-20201015-140619.png) (https://postimg.cc/8j2swkj6)
(https://i.postimg.cc/dVxCLwtv/Screenshot-20201015-140559.png) (https://postimg.cc/DS10NVXY)
-
What’s the name of this app ?
-
D-Link has stated that new gen routers, access points and range extenders will connect using WPA2 (AES) by default when the mixed security (WPA/WPA2) is enabled. The iOS 14 message will be displayed if it detects that the router/ap/extender has mixed security enabled but will still connect using WPA2 AES.
Some devices will get firmware upgrades to allow you to select WPA2 Only (and WPA3 only if the chipset supports it) in the future. No list or time table available.
-
WifI Man by Ubquity
What’s the name of this app ?
-
Unfortunately the same app for iOS do not show any details about wifi security protocols used...
-
D-Link has stated that new gen routers, access points and range extenders will connect using WPA2 (AES) by default when the mixed security (WPA/WPA2) is enabled. The iOS 14 message will be displayed if it detects that the router/ap/extender has mixed security enabled but will still connect using WPA2 AES.
Some devices will get firmware upgrades to allow you to select WPA2 Only (and WPA3 only if the chipset supports it) in the future. No list or time table available.
To be honest I'm very disappointed with DIR-2660 device. Security settings used in this device seems to be lower compare to DIR-825 device.
I can't find any reasonable explanation for such situation... :(
-
Any updates?
-
http://forums.dlink.com/index.php?topic=75892.msg308619#msg308619 (http://forums.dlink.com/index.php?topic=75892.msg308619#msg308619)
-
Unfortunately hotfix did't work for me: "Firmware Upgrade failed"
Downloaded from oficial website: https://support.dlink.com/ProductInfo.aspx?m=DIR-2660-US
What's expected date for hotfix to get via auto update feature ?
-
What browser are you using?
Mine applied fine, I think I used Edge or Opera browser to apply mine. Try IE11 or FF as well.
And you did unpack the .zip file right?
-
Edge and unpacked. I will try again tomorrow using cable connection instead of wi-fi and other browsers.
Strange and disappointing as it’s first time ever issue with firmware upgrade for me.
-
I recommend never ever doing FW updates over wireless. Always be wired.
Clear out ALL browser caches before and after entering into the routers web page and after the FW file gets sent.
Disable any web browser security add-ons and temporarily disable PC security apps before sending the FW file. Re-enable after sending.
-
What's the date for "public" relase ? As I can see it's still in "beta" phase. Thanks!
-
They won't announce any dates.
Besides they like betas, this forum has been beta for the 13 years I have been on it ;D
-
You can install the HOTFIX, it's NOT a beta.
D-Link doesn't announce when new FW gets released. So don't ask.
What's the date for "public" relase ? As I can see it's still in "beta" phase. Thanks!
-
5 minutes testing summary:
1. I can't see any information after logon to admin panel about hotfix. It's still showing FW 1.11 - It's not acceptable
2. "Guest Network" is still with "bug" - iOS still showing: "Weak Security
3. FW ZIP file contain in the name "BETA" so it's not really "production" version.
I have no idea whos responsible for quality testing but this guy should be fired or he/she is already fired and nobody is testing anymore.
-
1. It will not display hotfix on the UI. I haven't seen other companies do that either.
2. I will report it to the router group
EDIT - #2 Issue has been reported to the security team/engineers.
-
Thanks!
-
What’s the date to get HotFix with fix?
-
When it arrives...
-
Not sure on time line. There are a few models that say "Q1" so it is up to the vendors and then go through testing/certification which can take a while.
-
Testing? They didn’t test previous patch I’m pretty sure. I found issues few seconds after FW upgrade.
-
They are working on it. Process is time consuming.
-
Thank! Hopefully this time it will be fully and correctly tested.
Can we expect it as “hotfix 2” somewhere visible after logon to control panel?
-
Any updates ?