WPA && bridge_packets dont work

Gunter Burchardt gbur
Tue Sep 7 02:44:52 PDT 2004 

> > Client to client communication doesnt work with WPA.
> 
> It took some time for me to get a suitable test setup at home so that I
> can try to reproduce this. Now that I have the test setup, I was
> actually unable to reproduce this.. Broadcast packets and ping between
> two associated STAs worked fine in my tests with WPA-PSK using TKIP.

I'm using WPA-EAP with TKIP. 

> > hostapd: 10.0.0.1/8
> > sta1: 10.0.0.2/8
> > sta2: 10.0.0.3/8
> > 
> > sta1: ping 10.0.0.3 -> no answer !!!
> 
> Does sta1->hostapd ping work? What about hostapd->sta2?

sta1 can ping hostapd. sta2 can ping hostapd. hostapd can ping sta1 and
sta2. But sta1 didn't get an answer of its arp request to get mac address 
of sta2. Therefor sta1 can't ping sta2. In other direction the same
behaviour. There is no firewall or something else active. 

> > Arp is broadcast. Something is wrong with broadcast, bridge packets and
> > wpa! Unicast works!
> 
> Please give more details of your test setup, including configuration
> files and driver/firmware versions of each device.

How are mac-broadcast packets handled in hostap-driver? What key is
used to encrypt broadcast packets? The

Latest hostap cvs version. Latest firmware version (1.1.1/1.7.4).
wpa_supplicant works on broadcom chips. Other clints with windows own
supplicant.

Here the config of hostapd:

interface=wlan0

logger_syslog=-1
logger_syslog_level=3
logger_stdout=-1
logger_stdout_level=3

debug=1
dump_file=/tmp/hostapd.dump
daemonize=1
ssid=foobar

macaddr_acl=0
auth_algs=1
ieee8021x=1
minimal_eap=0
eap_message=hello

wep_key_len_broadcast=13
wep_key_len_unicast=13
wep_rekey_period=300


eapol_key_index_workaround=0
own_ip_addr=172.16.0.1

nas_identifier=3000

auth_server_addr=192.168.42.10
auth_server_port=1812
auth_server_shared_secret=secretsecretsecr

acct_server_addr=192.168.42.10
acct_server_port=1813
acct_server_shared_secret=secretsecretsecr

radius_retry_primary_interval=600
radius_acct_interim_interval=600

eap_reauth_period=60

wpa=1
wpa_passphrase=secret passphrase
wpa_key_mgmt=WPA-EAP
wpa_pairwise=TKIP CCMP
 

regards
gunter

More information about the Hostap mailing list