From owner-freebsd-isp@FreeBSD.ORG Tue Jun 1 17:23:29 2010 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CCF281065670 for ; Tue, 1 Jun 2010 17:23:29 +0000 (UTC) (envelope-from paulo@nlink.com.br) Received: from smtp.nlink.com.br (smtp.nlink.com.br [201.12.59.3]) by mx1.freebsd.org (Postfix) with SMTP id CB7628FC1D for ; Tue, 1 Jun 2010 17:23:28 +0000 (UTC) Received: (qmail 25815 invoked from network); 1 Jun 2010 14:23:24 -0300 Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=nlink.com.br; b=nWrJ12k0/5Si0L+I7sZ9ZFBuMU2rYdYnH6qTPnMK1s8zuOtrUuprKuMB76fbnqMJ1Yps6Zp+1QRDnV7DdGNmmK2dvnX0uQC/T6tISu7NLavMN/xBChtLJAZPy31Q7OmU ; Received: from j1.nlink.com.br (paulo@intra.nlink.com.br@201.12.59.126) by smtp.nlink.com.br with SMTP; 1 Jun 2010 14:23:24 -0300 Message-ID: <4C054207.9070204@nlink.com.br> Date: Tue, 01 Jun 2010 14:23:19 -0300 From: Paulo Fragoso User-Agent: Thunderbird 2.0.0.17 (X11/20081030) MIME-Version: 1.0 To: freebsd-isp@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Hostapd + Radius + PEAP X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 01 Jun 2010 17:23:29 -0000 Hi, We trying to setup an AP using FreeBSD 8.0 and auth via PEAP and Radius: hostapd.conf: interface=wlan0 debug=4 ctrl_interface=/var/run/hostapd ctrl_interface_group=wheel ssid=freebsdap wpa=1 wpa_key_mgmt=WPA-EAP wpa_pairwise=CCMP # Radius: own_ip_addr=X.Y.Z.AP nas_identifier=freebsdnas auth_server_addr=A.B.C.D auth_server_port=1812 auth_server_shared_secret=teste123 acct_server_addr=A.B.C.D acct_server_port=1813 acct_server_shared_secret=teste123 # Logs: logger_syslog=-1 logger_syslog_level=0 logger_stdout=-1 logger_stdout_level=0 Starting this server (X.Y.Z.AP) we can get initial traffic between hostapd and radius server, but there isn't traffic for PEAP when a station try to connect. This same station connect using WPA+PEAP to another AP which make AAA on same radius server (A.B.C.D). Looking for the sources we have noticed hosaptd is compiled without -DEAP_PEAP -DEAP_MSCHAPv2, how solve this? Thanks, Paulo Fragoso.