Buen día.
Escribo para consultar si alguien ha probado el adaptador Wi-Fi USB TP-LINK WN723N en modo monitor en Linux. Intento capturar las tramas de administración 802.11 Probe Response emitidas por los AP al responder a los clientes durante la fase de scanning.
Las pruebas las estoy realizando en un laptop con Debian GNU/Linux 7.0
#uname -a
Linux moe 3.2.0-4-686-pae #1 SMP Debian 3.2.46-1 i686 GNU/Linux
Al conectar el adaptador la salida en /var/log/syslog es la siguiente:
...
Aug 19 15:44:03 moe kernel: [506472.568287] usb 2-4: new high-speed USB device number 24 using ehci_hcd
Aug 19 15:44:03 moe kernel: [506472.702751] usb 2-4: New USB device found, idVendor=0bda, idProduct=8176
Aug 19 15:44:03 moe kernel: [506472.702761] usb 2-4: New USB device strings: Mfr=1, Product=2, SerialNumber=3
Aug 19 15:44:03 moe kernel: [506472.702769] usb 2-4: Product: 802.11n WLAN Adapter
Aug 19 15:44:03 moe kernel: [506472.702774] usb 2-4: Manufacturer: Realtek
Aug 19 15:44:03 moe kernel: [506472.702781] usb 2-4: SerialNumber: 00e04c000001
Aug 19 15:44:03 moe kernel: [506472.789262] rtl8192cu: MAC address: 90:f6:52:19:f3:c3
Aug 19 15:44:03 moe kernel: [506472.789274] rtl8192cu: Board Type 0
Aug 19 15:44:03 moe kernel: [506472.797692] usb 2-4: firmware: agent loaded rtlwifi/rtl8192cufw.bin into memory
Aug 19 15:44:03 moe kernel: [506472.798378] rtlwifi: rx_max_size 15360, rx_urb_num 8, in_ep 1
Aug 19 15:44:03 moe kernel: [506472.798667] ieee80211 phy7: Selected rate control algorithm 'rtl_rc'
Aug 19 15:44:03 moe wpa_supplicant[909]: rfkill: WLAN unblocked
Aug 19 15:44:03 moe mtp-probe: checking bus 2, device 24: "/sys/devices/pci0000:00/0000:00:1d.7/usb2/2-4"
Aug 19 15:44:03 moe mtp-probe: bus: 2, device: 24 was not an MTP device
Aug 19 15:44:03 moe kernel: [506472.888122] rtl8192cu: MAC auto ON okay!
Aug 19 15:44:03 moe kernel: [506472.928641] rtl8192cu: Tx queue select: 0x05
Aug 19 15:44:03 moe kernel: [506472.929408] rtl8192c_common: Loading firmware
Salida del comando lsusb:
# lsusb
Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
Bus 002 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
Bus 003 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 004 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 005 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 006 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 007 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
Bus 002 Device 018: ID 0421:03d1 Nokia Mobile Phones
Bus 002 Device 004: ID 05a9:2640 OmniVision Technologies, Inc. OV2640 Webcam
Bus 005 Device 002: ID 045e:0084 Microsoft Corp. Basic Optical Mouse
Bus 002 Device 024: ID 0bda:8176 Realtek Semiconductor Corp. RTL8188CUS 802.11n WLAN Adapter
Al ejecutar el comando iwconfig obtengo la siguiente salida:
root@moe:/lib/modules/3.2.0-4-686-pae/kernel/drivers/net/wireless# iwconfig
lo no wireless extensions.
wlan0 IEEE 802.11abg ESSID:"galilei"
Mode:Managed Frequency:2.412 GHz Access Point: 00:21:29:7D:0A:89
Bit Rate=0 kb/s Tx-Power=16 dBm
Retry long limit:7 RTS thr:off Fragment thr:off
Encryption key:off
Power Management:off
Link Quality=70/70 Signal level=-36 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:25 Missed beacon:0
eth0 no wireless extensions.
wlan8 IEEE 802.11bgn ESSID:"galilei"
Mode:Managed Frequency:2.412 GHz Access Point: 00:21:29:7D:0A:89
Bit Rate=1 Mb/s Tx-Power=20 dBm
Retry long limit:7 RTS thr=2347 B Fragment thr:off
Encryption key:off
Power Management:off
Link Quality=70/70 Signal level=-37 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:2 Missed beacon:0
Al ejecutar el comando airmnon-ng obtengo lo siguiente:
# airmon-ng
Interface Chipset Driver
wlan0 Intel 3945ABG iwl3945 - [phy0]
wlan8 Unknown rtl8192cu - [phy7]
Al establecer el modo monitor con el comando airmon-ng la salida es la siguiente:
# airmnon-ng start wlan8 1
Interface Chipset Driver
wlan0 Intel 3945ABG iwl3945 - [phy0]
wlan8 Unknown rtl8192cu - [phy7]
(monitor mode enabled on mon0)
Salida del comando iwconfig para verificar la activación del modo monitor:
root@moe:/lib/modules/3.2.0-4-686-pae/kernel/drivers/net/wireless# iwconfig
lo no wireless extensions.
mon0 IEEE 802.11bgn Mode:Monitor Tx-Power=20 dBm
Retry long limit:7 RTS thr=2347 B Fragment thr:off
Power Management:on
wlan0 IEEE 802.11abg ESSID:"galilei"
Mode:Managed Frequency:2.412 GHz Access Point: 00:21:29:7D:0A:89
Bit Rate=54 Mb/s Tx-Power=15 dBm
Retry long limit:7 RTS thr:off Fragment thr:off
Encryption key:off
Power Management:off
Link Quality=70/70 Signal level=-36 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:208 Missed beacon:0
eth0 no wireless extensions.
wlan8 IEEE 802.11bgn ESSID:"galilei"
Mode:Managed Frequency:2.412 GHz Access Point: 00:21:29:7D:0A:89
Bit Rate=1 Mb/s Tx-Power=20 dBm
Retry long limit:7 RTS thr=2347 B Fragment thr:off
Encryption key:off
Power Management:off
Link Quality=70/70 Signal level=-37 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:2 Missed beacon:0
La duda que tengo sobre el modo monitor con el adaptador es que cuando intento escuchar el tráfico con tshark (sin filtros) no se capturan las tramas Probe Response sólo las Probe Request (broadcast).
¿Alguien ha probado el modo monitor para capturar tramas con el adaptador TP-LINK WN723N correctamente?. ¿Tendrá algo que ver con el driver?.
Saludos