First I'll disclose that I'm not a professional in networking by any means. That being said, I manage my family's home/small businness network. We have a few buildings, with the modem being in the middle one. The routers in the other buildings are connected to the modem with point-to-point wifi antennas (TP-Link CP210).
The problem is that I can't access the NOS of the antennas anymore. I get ERR_SSL_VERSION_OR_CIPHER_MISMATCH when trying to connect to the gateway IP. I believed it to be an old version of TLS causing this. None of the major web browsers support older versions of TLS anymore, even trough devtools, and enabling TLS 1.0 and 1.1 in Windows' network setting didn't therefore help either. Even the good old thisisunsafe is disabled nowdays. I nearly got in with an old version of Firefox, but then it auto updated...
However, at one point I got Chrome's devtools to show the security protocols, and it said the antenna is using TLS 1.2, but also RSA, rather than ECDHE-RSA. It suggested to use ECDHE instead, so now I suspect the problem to be with that. Most of the time the security tab just stays blank.
Trying to solve this issue, I (shortsightedly) also factory reseted on of the receiving antennas. It didn't solve the issue, but instead escalated it: I can't do the setup of the antenna and connect it, so currently one branch (building) of the network is not connected.
Where to go from here? First of all, is there a quick temporary way to get in to get the reseted antenna working. Second, for the long term, is there a way to upgrade the certificates, other than buying new antennas? Also, what kind of security risks this situation poses? One AP in the network is accessible to customers.
Thanks you in advance for any assistance!
