Hello,
I have an Arris G54 Gateway that runs about 30 wired and WiFi devices through a managed switch. Everything is working well, but I am trying to add a new WiFi touchscreen that is supposed to connect to the existing connected internet interface device with a LAN IP for a security alarm system. The touchscreen firmware works via 2 connections: A basic WiFi connection to a SSID on the router and then a further connection to the interface device by inputting that device's IP into the touchscreen's settings.
When I tried to connect the touchscreen to the G54, it would not connect to the Primary SSID but did connect to the Guest SSID. Once so connected, the touchscreen would not further connect to the internet interface device after putting in that device's IP address.
The touchscreen support tech said the basic problem is that the touchscreen is an IoT device that cannot accept passwords with the special characters used for the Primary SSID, and is geneally incompatible with the G54's advanced default settings. The touchscreen did connect to the Guest SSID, which has a simplier password. The corrective instructions given were to set up another SSID network dedicated to IoT devices, such as Guest-IoT using these guidelines:
Use a simple (no special characters) password
Set the IoT SSID to 2.4GHz band only
Set its security to WPA2 only
Disable AP location for the IoT SSID only
Disable Band Steering for the IoT SSID only
Disable any PFW/OWE settings for IoT SSID only
Use “Legacy Mode” settings (if there is such a thing) for IoT SSID only
Research in the Arris forum revealed this article on setting up multiple SSID's: https://arris.my.salesforce-sites.com/consumers/articles/knowledge/G54-Multiple-SSIDs-Setup
This essentially says to enable Split Mode and shows an example in which the Primary G54 SSID is split into 4 separate bands. While the article does not describe what to do from there, it's my understanding that the original Primary SSID would remain in an inactive state, each of the new band branded SSID's would retain the original password (e.g., Primary-2.4G, etc.), and from there various settings could be changed on the 2.4GHz SSID. Further, each device would have to be reconnected by reentering the original password. I request some input from those more knowledgeable on such matters before making any changes.
First, I would prefer to split the Guest SSID instead of the Primary, or alternatively create a new IoT dedicated SSID, but I found nothing on that for Arris. [IoT's appear to be such a common problem that ASUS has a built-in setting to create a dedicated IoT SSID: https://www.asus.com/support/faq/1053540/ - [Guest Network Pro] How to set up IoT Network?] Can anyone advise how to do create an IoT SSID in the Arris G54, or how to split only the Guest SSID?
Second, the only Band Steering setting I found for the G54 is at the bottom of Gateway>Connection>WiFi>Networks page – Network Options – Band Steering – Enable or Disable. This setting appears to change all SSID's, rather than only the one for IoT's. It seems absurd to have to “dumb down” the entire Gateway to accommodate one minor touchscreen device. My limited understanding of Band Steering is that it allocates bandwidths based on various factors, including the bandwidth capabilites of the device, so is there really a need to disable it at all?
Third, I could not find any PMF settings for the G54. Are there any? My limited understanding of Protected Management Frames is that it functions as part of WPA2/WPA3 WiFi Security. If so, would PMF be automatically be unavailable when the IoT SSID is set to only WPA2?
Fourth, I could not find any OWE settings for the G54. Are there any? My basic understanding is that Oppotunistic Wireless Encryption is similarly part of the WPA3 Security package. If so, would OWE be automatically be unavailable when the IoT SSID is set to only WPA2?
Guidance on how to best approach this in a way that does not negate the G54's enhanced security features would be appreciated.
