Problem with Apple devices

Hi there,

I’ve already red a couple of problems about Apple devices connecting to Mikrotik devices.
Here is my problem: I’ve installed 10 Groove/Metal (each on different frequency). All APs run RouterOS 6.1 and have no key to access to wifi as this is an hotspot network.
Many times Apple devices can not access to the wifi for the same error. Something like “can not access to the wifi network”.
Is it a known problem?

Here is some config:

/interface wireless security-profiles
set [ find default=yes ] authentication-types="" eap-methods=passthrough group-ciphers=aes-ccm group-key-update=5m interim-update=0s management-protection=disabled mode=none mschapv2-username="" name=default \
    radius-eap-accounting=no radius-mac-accounting=no radius-mac-authentication=no radius-mac-caching=disabled radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username static-algo-0=none static-algo-1=none \
    static-algo-2=none static-algo-3=none static-sta-private-algo=none static-transmit-key=key-0 supplicant-identity=MikroTik tls-certificate=none tls-mode=no-certificates unicast-ciphers=aes-ccm


/interface wireless
set 1 adaptive-noise-immunity=none allow-sharedkey=no antenna-gain=0 area="" arp=enabled band=2ghz-b/g/n basic-rates-a/g=9Mbps,12Mbps basic-rates-b=5.5Mbps bridge-mode=enabled channel-width=20mhz compression=no \
    country=italy default-ap-tx-limit=0 default-authentication=yes default-client-tx-limit=0 default-forwarding=no dfs-mode=none disable-running-check=no disabled=no disconnect-timeout=3s distance=dynamic \
    frame-lifetime=0 frequency=2412 frequency-mode=manual-txpower frequency-offset=0 hide-ssid=no ht-ampdu-priorities=0 ht-amsdu-limit=8192 ht-amsdu-threshold=8192 ht-basic-mcs=\
    mcs-0,mcs-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7 ht-guard-interval=any ht-rxchains=0 ht-supported-mcs=\
    mcs-0,mcs-1,mcs-2,mcs-3,mcs-4,mcs-5,mcs-6,mcs-7,mcs-8,mcs-9,mcs-10,mcs-11,mcs-12,mcs-13,mcs-14,mcs-15,mcs-16,mcs-17,mcs-18,mcs-19,mcs-20,mcs-21,mcs-22,mcs-23 ht-txchains=0 hw-fragmentation-threshold=disabled \
    hw-protection-mode=none hw-protection-threshold=0 hw-retries=15 interworking-profile=disabled l2mtu=2290 mac-address=D4:CA:6D:2F:39:D7 max-station-count=50 mode=ap-bridge mtu=1500 multicast-buffering=enabled \
    multicast-helper=default name=wlan1 noise-floor-threshold=default nv2-cell-radius=30 nv2-noise-floor-offset=default nv2-qos=default nv2-queue-count=2 nv2-security=disabled on-fail-retry-time=100ms \
    periodic-calibration=default periodic-calibration-interval=60 preamble-mode=both proprietary-extensions=post-2.9.25 radio-name=WLAN1 rate-selection=advanced rate-set=configured scan-list=default \
    security-profile=default ssid=Hotspot station-bridge-clone-mac=00:00:00:00:00:00 supported-rates-a/g=6Mbps,9Mbps,12Mbps,18Mbps,24Mbps,36Mbps,48Mbps,54Mbps supported-rates-b=5.5Mbps,11Mbps tdma-period-size=2 \
    tx-power-mode=default update-stats-interval=disabled wds-cost-range=50-150 wds-default-bridge=bridge1 wds-default-cost=100 wds-ignore-ssid=no wds-mode=dynamic wireless-protocol=unspecified wmm-support=disabled
/interface wireless manual-tx-power-table
set wlan1 manual-tx-powers="1Mbps:17,2Mbps:17,5.5Mbps:17,11Mbps:17,6Mbps:17,9Mbps:17,12Mbps:17,18Mbps:17,24Mbps:17,36Mbps:17,48Mbps:17,54Mbps:17,HT20-0:17,HT20-1:17,HT20-2:17,HT20-3:17,HT20-4:17,HT20-5:17,HT20-6:17,HT\
    20-7:17,HT40-0:17,HT40-1:17,HT40-2:17,HT40-3:17,HT40-4:17,HT40-5:17,HT40-6:17,HT40-7:17"

Try setting your wireless protocol to 802.11.

Thanks, I will try and I will let you know

planetcaravan
Enable tkip an aes in your Wi-Fi security profile.

This is an open system!

Not sure if it’s related but I have better luck by using 2417/2437/2457. 2412 and 2462 give me issues with many apple and some android products.

Also for the hotspot DNS Name I have the best luck using an address like hotspot.domain.tld where domain.tld is the actual domain I own and have a DNS record added to the DNS Server on the hotspot controller rather than rely on the ip address or hotspot.local. I don’t have the hotspot.domain.tld A record on a public dns server, it’s only accessible within the hotspot. It seems different locked down devices respond differently (perhaps dns checking?).

Hi praeses,

I’m not having DNS problem but usually with some Samsung (Android) I’m having similar problems like with Apple devices (as I described before).

With the DNS issue that I have experienced basically it will connect to the hotspot wireless network, but won’t pop-up the login window or allow you to manually surf to it. I suspect it’s related to some settings that the carrier-locked mobile phones have, but it seems to work with the domain name that appears fully qualified. I am not sure why however. The wireless frequency one is still a big one for me as well.

Are you seeing any events being logged in the access point that you are connecting to?

NO!

" I’ve installed 10 Groove/Metal (each on different frequency)"

Is there one hotspot controller with a backhaul or WDS or is each radio acting as a hotspot controller as well? Is it designed that users can roam between them? Are they within radio range of eachother and/or can the mobile devices see at least two radios at the same time?

I would suggest using only the three frequencies I listed above, and make a pattern so they are unlikely to be able to connect to two radios on the same frequency at the same time/place as it usually works more seamlessly for me but I usually deal with 5 radios in one spot. This can be made easier by reducing the x-mit power slightly of adjacent access points that use the same frequency (if necessary) as you are more likely limited by the transmit power of the radio in the mobile device. That can be a cause of what you are describing, where the mobile phone can see the access point with a strong signal but the mobile phone’s radio is too weak to transmit back to the access point to be able handshake and connect.

I’ve noticed that problems with Apple devices is not related to the presence of many AP… Sometimes appears “is not possible to access to the network”.
I tried this only on open systems