Can't hide SSID in repeater mode

[chiwalfrm]

I have two Asus RT-N16. One is a standard wireless router running ASUSWRT-Merlin "RT-N16_3.0.0.4_374.32_0". The SSID is hidden.

The other one is a repeater running the experimental "RT-N16_3.0.0.4_374.32_0-dwrpyd" and bridged to the main router.

When the repeater comes up, it broadcasts the SSID so the SSID is no longer a secret. Since repeater mode doesn't have a "Wireless" tab, there does not appear to be any way to disable broadcasting the SSID and keeping it secret.

I am aware that there are tools to sniff out a hidden SSID and that it is not very robust security but I still like to keep it hidden if at all possible.

Is there a way to ssh into the repeater and run a command (nvram set?) to stop the repeater from broadcasting the SSID?

Thank you

 

[joegreat]

Is there a way to ssh into the repeater and run a command (nvram set?) to stop the repeater from broadcasting the SSID?

Hi,

Before changing nvram setting you should do a backup (save settings via the web interface).
Can you check the current WLAN settings first?

nvram show | grep closed
size: 24077 bytes (8691 left)
wl0_closed=0
wl0.1_closed=0
wl_closed=0

Where wl0.1 means the guest network and the other settings should relate to the main WLAN network.

I would suggest to try the following nvram settings:

nvram set wl_closed=1
nvram set wl0_closed=1
nvram commit

And then you need to reboot the device.

With kind regards
Joe

 

[TonyH]

Hi,
Hiding SSID? What for? it has nothing to do with improving security. I never hide SSID. I am just wondering.

 

[jlake]

Why in the world do you want to hide your SSID?

 

[morden]

I agree with the others, no point in attempting to hide your SSID, if you really are that conscious about your network security then just increase the strength of the network's passwords (all logins including admin). You can also improve the security of admin account by changing the name from the default name of admin to something else. Thats what i did to mine.

 

[chiwalfrm]

To: JoeGreat

I changed the settings as suggested:
nvram set wl_closed=1
nvram set wl0_closed=1
nvram commit

and rebooted the repeater but it doesn't seem to do anything. I can still see the SSID so it appears that in repeater mode, the firmware ignores these two parameters. I confirmed the parameters are still set after the reboot with the grep command.

Thanks for the suggestion.

 

[DrTeeth]

Try and check to see if the settings were actually saved by replacing the 'set' with 'get' in the command. No need for the '=' or the number after it. You will get a response from the 'get' command which will be your setting. Hope this helps.

 

[chiwalfrm]

To: DrTeeth

admin@2RT-N16:/tmp/home/root# nvram show | grep closed
size: 24734 bytes (8034 left)
wl0_closed=1
wl0.1_closed=0
wl_closed=1
admin@2RT-N16:/tmp/home/root# nvram get wl_closed
1
admin@2RT-N16:/tmp/home/root# nvram get wl0_closed
1
admin@2RT-N16:/tmp/home/root#

So it does appear the settings were saved, but in repeater mode, the router ignores them and still broadcasts the SSID regardless.

Thanks for the reply!

 

[RMerlin]

To: DrTeeth

admin@2RT-N16:/tmp/home/root# nvram show | grep closed
size: 24734 bytes (8034 left)
wl0_closed=1
wl0.1_closed=0
wl_closed=1
admin@2RT-N16:/tmp/home/root# nvram get wl_closed
1
admin@2RT-N16:/tmp/home/root# nvram get wl0_closed
1
admin@2RT-N16:/tmp/home/root#

So it does appear the settings were saved, but in repeater mode, the router ignores them and still broadcasts the SSID regardless.

Thanks for the reply!

Try also closing the wl0.1 virtual interface - it might be what the router uses while in repeater/ap mode.

 

[chiwalfrm]

To: RMerlin

That did it. Setting wl0.1_closed=1 was it. Problem solved, many thanks!

 

[mike123]

To: RMerlin

That did it. Setting wl0.1_closed=1 was it. Problem solved, many thanks!

Hello, I´m trying to do the same thing on an Asus RTN12D1 (router-AP-repeater). I can´t access through SSH or telnet to the repeater. I´m using putty and whenever I try I get a Putty fatal error with the message "Network error: Connection refused".
I did try turning the firewall off but didn´t work. Using a cable or wifi didn´t make a difference either. I´d appreciate any help.

thanks.

 

[sfx2000]

When the repeater comes up, it broadcasts the SSID so the SSID is no longer a secret. Since repeater mode doesn't have a "Wireless" tab, there does not appear to be any way to disable broadcasting the SSID and keeping it secret.

I am aware that there are tools to sniff out a hidden SSID and that it is not very robust security but I still like to keep it hidden if at all possible.

Is there a way to ssh into the repeater and run a command (nvram set?) to stop the repeater from broadcasting the SSID?

There is zero value to hiding the SSID - strong WPA2 passwords are more than sufficient, and hiding SSID's causes usability issues like OP has observed...