Docs
mobileIoT Hardware
Documentation

ETH-WiFi bridge settings

ETH-WIFI Bridge Interface Settings

The Ethernet-Wi-Fi bridge will connect the Ethernet interface with the WiFi interface and put them in the same network, allowing external devices connected to the WiFi network of the CR3171 to connect to devices on the Ethernet int

Information
When the Ethernet–Wi-Fi bridge mode is enabled, the Wi-Fi interface operates exclusively in hotspot mode. This restriction is enforced due to security considerations — allowing the Wi-Fi interface to function in client mode while bridging could expose the internal network to untrusted external access points. Limiting the Wi-Fi role to hotspot mode ensures controlled, secure connections from known wireless clients only.

Connection name

Type: string

Default: Wireless connection

Description: Wireless connection profile name, must be globally unique regardless of the interface.

Channel

Type: int32

Default: 0 , currently no other option is possible

Description: Wireless channel to use for this connection, the value of zero means, that the channel will be chosen automatically. Explicitly setting this option will ensure that the device only joins a network on the specified channel.

Band

Available options: auto, A (5GHz), B/G (2.4GHz)

Default: auto

Description: This option configures the 802.11 frequency band of the network, i.e. the device will not join the network if the band does not match, even if all other options are compatible.

Hide SSID

Options: ON, OFF

Default: OFF

Description: This option controls if the SSID of the Wi-Fi network is hidden or visible.

SSID

Type: string

Default: CR3171_<XXXX> with the xxxx as th last four digits of the LAN MAC address.

Description: WiFi network name

BSSID

Type: string

Default: <empty>

Description: Basic Service Set Identifier

Key management

Available options:

  • unencrypted,
  • WPA2 + WPA3 Personal,
  • WPA3 Personal only (SAE),
  • OWE,
  • WPA2 + WPA3 Enterprise

Default: WPA2 + WPA3 Personal

Description: Key management configuration for the WiFi connection.

Information
Depending on the selected security type, additional options such as a passphrase or authentication credentials must be configured.
For WPA2-Personal or WPA3-Personal, a Pre-Shared Key (PSK) — commonly referred to as a password — is used to establish a secure wireless connection. In the case of WPA3-Personal, the password is processed using the Simultaneous Authentication of Equals (SAE) method, offering enhanced protection against offline attacks.
When selecting WPA2-Enterprise or WPA3-Enterprise, which use the Extensible Authentication Protocol (EAP), further configuration is required, such as specifying authentication methods and credentials. These advanced settings are detailed in the following sections.

Pre shared key

Type: string

Default: <ETH MAC without semicolon, eg 112233445566>

Description: In case of WPA/PSK, the Pre-Shared Key or also known as password is used for a WPA secured connection.

In case of security type SAE, the password will be handled according to the SAE Authentication method.

Anonymous identity

Default: <empty>

Description: Used in some authentication protocols (e.g., EAP-TTLS) to provide an anonymous identity during the initial authentication phase. Typically grayed out if not required by the network.

Domain

Default: <empty>

Description: The domain name is often used in enterprise networks for authentication or network identification. Grayed out if domain-based login is not supported or required.

CA certificate

Default: <empty>

Description: The Certificate Authority (CA) certificate used to verify the identity of the server during secure communication. Grayed out if certificates are not used for authentication.

Username

Default: <empty>

Description: The user’s identity for network authentication, typically used in enterprise networks. Grayed out if not required or controlled by another setting.

Password

Default: <empty>

Description: The password associated with the username for network authentication. Grayed out if not required or managed by other security mechanisms (e.g., certificate-based authentication).

IPv4 address of DNS server(s)

Default: <empty>

Description: The address of the Domain Name System (DNS) server used to resolve domain names to IP addresses. Multiple entries represent primary, secondary, and tertiary DNS servers.

IPv4 address

Default: 192.168.82.1/24

Description: IP address used for either static IP, when method is set to manual or DHCP server configurations when the shared method is selected. The CIRD notation is used to define the subnet mask.

Information
By using e.g. 192.168.82.1/24 the device will be part of the 192.168.82.0 network and will allow access or communication from IPs in the range of 192.168.82.1-192.168.82.254
Important
As security measure it is advisable to tighten the allowed IPs on the network as possible, for instance to use /29 or 255.255.255.248 subnet to only allow (only) 6 address on the network, with 192.168.82.0 is the network address and 192.168.82.7 is the broadcast address and 192.168.82.1 - 192.168.82.6 remains available.
Shared

In the shared mode the Network Manager will configure the DHCP server to provide a static IP range for static IPs which is 10% of the range with a max of 8 IPs. The remaining IP in the range are for dynamic assignment.

Manual

In manual mode, the IPV4 Address defines the network and mask, the device IP is set through IPV4 Gateway, which is described below.

IP configuration method

Available options:

  • manual , or also called static IP mode. In manual mode, the IPV4 Address defines the network and mask, the device IP is set through IPV4 Gateway , which is described below.
  • shared , in the shared mode the device is setup as DHCP Server.

    In this mode, the Network Manager will configure the DHCP server to provide a static IP range for static IPs which is 10% of the range with a max of 8 IPs. The remaining IP in the range are for dynamic assignment.

Default: shared

Description: IP configuration method, by default the interface is set to use link-local, i.e. auto-ip configuration which makes sure that the device does not disrupt an existing network when plugged in.

The gateway associated with this configuration

Type: string in DNN format.

Default: <empty>

Description: Gateway IP address, usually only needs to be set when manual , i.e. static-ip network configuration method was selected. Keep in mind this should be in the given subnet range.

Routing metric used to make a routing decision

Type: int32

Default: -1

Description: Routing metric, lower values have higher priority. Set to -1 for automatic assignment based on interface type. This option will allow you to prioritize one interface over the other when accessing the internet, depending on interface or connection availability.

First IPv4 address in DHCP range

This option is only available if the IP configuration method is set to shared .

Type: string

Default: <configured automatically>

Description: First IP address of the DHCP range, which the DHCP server will hand-out in a lease.

Last IPv4 address in DHCP range

This option is only available if the IP configuration method is set to shared .

Type: string

Default: <configured automatically>

Description: Last IP address of the DHCP range, which the DHCP server will hand-out in a lease.