Use DD-WRT router as repeater without first router access?

4

Is it possible to set up a DD-WRT router as a repeater or client bridge without having access to the gateway you are trying to repeat/bridge?

LordZardeck

Posted 2011-10-28T22:30:39.903

Reputation: 193

Can you clarify what it is you are trying to do. By "repeater or client bridge" do you mean it should bridge wireless clients and act as a range extender? – David Schwartz – 2011-10-28T22:33:24.127

yeah, I guess simply put, a range extender – None – 2011-10-28T23:07:19.280

Unfortunately, that's not possible without cooperation from the other access point. The security scheme used by WiFi causes an access point to reject packets whose origin hardware address is not one of its clients unless a protocol like WDS is used, and WDS would have to be configured into the router. You can use two routers back-to-back to create a new WiFi network bridged to the original one. – David Schwartz – 2011-10-28T23:13:17.213

I believe that DD-WRT can do this, because my friend used it to steal^H^H^H^H^Hborrow his neighbours unsecured WiFi – Mark Henderson – 2011-10-28T23:38:02.123

@Farseeker: Sure, you can use it to link wired clients into someone else's WiFi. And you can use two back-to-back to create a new wireless network bridged to the existing one. – David Schwartz – 2011-10-28T23:41:06.930

@David Schwarts is it possible to create a client bridge off an access point? like a router that is already extending the original gateway? Let me explain my situation. I run all the IT aspects of a small non-profit library. They were recently given a room in a college library basement. There is wifi in the library upstairs, but it doesn't reach very well downstairs. The library wifi is secured, and the college IT department is swamped and can't help. With out the IT department's help, is it possible to extend the range of the wifi to the basement? – LordZardeck – 2011-11-01T05:59:05.500

Answers

4

No. You can create your own WiFi that's routed to the existing WiFi. You can bridge wired clients to the existing WiFi. But bridging wireless clients will not work.

We tend to think of WiFi as working just like wired Ethernet. But unfortunately, it's really not. It has its own rules and this is one case where it's just different.

The short version of the problem is this: An access point will not accept packets with origin hardware addresses that are not paired with the access point. Since some clients won't be able to reach the existing WiFi network, they won't pair with it, and those access point will reject bridged/repeated packets from them.

What might work, and I stress might, is two bridges back-to-back, connected by wired Ethernet. The specifications say it shouldn't work, but in practice it seems to. Apparently, while the WiFi hardware isn't capable of proxy registration, the DD-WRT software is. Bridging from wired to wireless is done in software in these routers, and DD-WRT is smart enough to proxy register a software-bridged packet. (It knows it has to do the WiFi magic on behalf of its wired clients, since they obviously won't be able to do it themselves.)

For this setup, you connect two wireless routers, LAN-to-LAN. You configure the WiFi on one as a station on the existing WiFi. You configure the WiFi on the other as an access point on a new network. You will probalby need to use a different SSID though, so people will specifically have to choose to connect to your network.

Theoretically, you could use the same SSID and encryption, if any. This would allow clients to automatically connect to the strongest network. You will have two issues. First, you have to make sure your two routers don't connect to each other wirelessly. That obviously won't work. Second, clients will typically show a temporary disruption of service when they switch to and from your access point because the existing network won't know where to find them. MAC learning takes up to a minute. You might get complaints if you 'steal' people who momentarily came into range of your access point and experienced service disruptions as they switch to and from it.

Update: The way back-to-back bridges work is by a form of NAT. The bridge doesn't proxy register its clients but instead re-writes their source hardware addresses.

David Schwartz

Posted 2011-10-28T22:30:39.903

Reputation: 58 310

Actually, you can Bridge wirelessly. I am using it right now. I didn't even have access to the router. It was a unsecured linksys router running the default firmware. I have also done it at home on my 2WIRE secured router. But for some reason, using the same steps that worked at home and on the unsecured router, I cannot get it to work at the library. I must have a setting wrong somwhere, but I can't find out what exactly. Could a firewall setting prevent it? – LordZardeck – 2011-11-01T19:56:47.190

It's sort of a firewall, but it's part of the hardware implementation of an access point. Unless WDS or the like is enabled, any packets with source hardware addresses not paired with the AP are dropped. It's part of 802.11. If you got it working, something is probably pairing those MACs with the AP. (Perhaps you found a rare router that uses software bridging for wireless-to-wireless? Perhaps you are internally using two radios? Hard to be sure. It's not supposed to work, but it sometimes does.) – David Schwartz – 2011-11-01T20:28:19.507

1

The Repeater Bridge mode does what you're looking for, without access to the configuration of the gateway you're trying to repeat. All you need is the SSID and security key of the source network, and follow the instructions (precisely). Especially make sure that the DD-WRT repeater uses the same channel as the gateway to be repeated.

There's one caveat: the gateway to be repeated needs to use a static wi-fi channel. If it's set to change its channel automatically, you'll have to reconfigure the DD-WRT every time the channel changes.

For example when repeating wi-fi network "MyNetwork" with WPA2 key "secret" on channel 6 from a gateway, the configuration of the DD-WRT should essentially be this:

  • Set channel to 6, use wireless mode: Repeater Bridge, SSID "MyNetwork", security WPA2 with key "secret"
  • Virtual access point (optionally), SSID "MyVap", security WPA2 with key "myVapKey"
  • Additional config as per the Repeater Bridge instructions

What clients will see is three SSID's:

  1. "MyNetwork", channel 6, key "secret" (the original network)
  2. "MyNetwork", channel 6, key "secret" (the DD-WRT repeated network)
  3. "MyVap", channel 6, key "myVapKey" (the virtual access point of the DD-WRT)

When clients are configured with the SSID "MyNetwork" and key "secret" they will transparently connect to either the original (1) and repeated (2) networks. How the client handles this depends on the client, and in my experience this works smooth with most devices. When moving away from the original AP and toward the DD-WRT, eventually the client will detect that the wi-fi signal is low, search for a new access point and connect to the repeater. And vice versa.

The virtual access point (3) is not necessary for this to function, but it's practical if you want to make sure that you're connecting to the DD-WRT and not the original gateway.

AronVanAmmers

Posted 2011-10-28T22:30:39.903

Reputation: 181

Asked: 2011-10-28T22:30:39.903

Viewed: 3 732 times

Active: 2016-04-24T07:19:42.540