Does hostapd recognize realms?
Panagiotis Georgopoulos
panos
Mon Sep 6 09:05:27 PDT 2010
Hello all,
In my network setup I have hostapd running as an access
point authenticating a client that runs wpa_supplicant in EAP-TTLS mode.
When hostapd gets the eap-ttls packets it forwards them to an AAA server
based on the IP that I have set in the RADIUS client configuration of
hostapd.conf.
This all works fine, however, I want to be able to do the
authentication using realms in the initial client's request (e.g.
anonymous at isp1.com would go to AAAisp1, whereas anonymous at isp2.com would go
to AAAisp2.com, or by using IP addresses e.g. anonymous at 100.100.100.100). I
realize that the theoretical model here would be that hostapd would forward
the client's packets to its local AAA server and the local AAA server would
recognize the realm and forward it appropriately to the AAA server of the
foreign network based on the realm. Is there any way to bypass the need for
a local AAA server that plays the role of the proxy and getting hostapd to
forward the packets appropriately based on the realm?
I am asking since hostapd has the functionality of an
internal AAA server.
Thanks a lot in advance,
Panos
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shmoo.com/pipermail/hostap/attachments/20100906/40713e9d/attachment.htm
More information about the Hostap
mailing list