hostapd based access point, (free) radius for aaa and vlan to separate
Christian Beier
christian.beier
Mon Nov 26 11:34:24 PST 2007
Hi,
I'm trying to set up a hostap daemon based access point with freeradius
for AAA and utilisation of VLAN to separate some user groups.
Without "up and running" VLAN interfaces everything works, the user is
recognised and granted to access by the radius server. I mean: The
radius and hostapd configurations are unchanged and still setted up for
VLAN usage, only the VLAN interfaces are not added by vconfig. If I add
them, hostapd prints a lot of
" REAUTH_TIMER entering state INITIALIZE"
till timeout is reached and on the freeradius no reaction is seen.
My set up:
*ap
hostapd v0.5.7
madwifi
*hostapd.conf:
...
dynamic_vlan=1
vlan_file=/etc/hostapd.vlan
...
*hostapd.vlan:
* ath1.#
* radius server:
freeradius 1.1.6
I've tried a lot and found out that setting
"... vlan_tagged_interface=ath1 "
results in:
"unknown configuration item 'vlan_tagged_interface' "
I don't know if this is related to the many atheros/madwifi vlan patches
I found on my search and neglected because the search results where last
year dated. Also, I'm not sure if my syntax of the vlan_file is right.
It's the only way it works, if I add two lines for each
Tunnel-Private-Group-Id, passed by freeradius, with the appropriate
interfaces behind, I got an error message. I'm kind of clueless and the
oracles of the web also have no good recommendation what do do or where
to search the ghost in the machine.
I hope I posted enough information so one of you is able and willing to
answer.
thx 'n' greez
Christian
-------------- next part --------------
A non-text attachment was scrubbed...
Name: christian_beier.vcf
Type: text/x-vcard
Size: 266 bytes
Desc: not available
Url : http://lists.shmoo.com/pipermail/hostap/attachments/20071126/3cd45572/attachment.vcf
More information about the Hostap
mailing list