From owner-freebsd-net@FreeBSD.ORG Thu Jun 18 11:07:38 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B26931065675 for ; Thu, 18 Jun 2009 11:07:38 +0000 (UTC) (envelope-from vladimirt@PartyGaming.com) Received: from mx1.corp.idatanet.com (mx1.corp.idatanet.com [85.115.136.170]) by mx1.freebsd.org (Postfix) with ESMTP id 31EFF8FC19 for ; Thu, 18 Jun 2009 11:07:37 +0000 (UTC) (envelope-from vladimirt@PartyGaming.com) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.3168 Received: from gibsvwin008.partygaming.local ([10.3.10.32]) by mx1.corp.idatanet.com with Microsoft SMTPSVC(6.0.3790.1830); Thu, 18 Jun 2009 13:07:31 +0200 Received: from GIBSVWIN004X.partygaming.local ([10.3.10.228]) by gibsvwin008.partygaming.local with Microsoft SMTPSVC(6.0.3790.3959); Thu, 18 Jun 2009 13:07:33 +0200 Received: from SOFSVWIN004X.partygaming.local ([10.4.10.228]) by GIBSVWIN004X.partygaming.local with Microsoft SMTPSVC(6.0.3790.3959); Thu, 18 Jun 2009 13:07:32 +0200 Received: from 10.4.71.11 ([10.4.71.11]) by SOFSVWIN004X.partygaming.local ([10.4.10.230]) via Exchange Front-End Server corp.mail.partygaming.com ([10.3.10.32]) with Microsoft Exchange Server HTTP-DAV ; Thu, 18 Jun 2009 11:07:31 +0000 Received: from daemon2.partygaming.local by corp.mail.partygaming.com; 18 Jun 2009 14:07:30 +0300 From: Vladimir Terziev To: "Paul B. Mahol" In-Reply-To: <3a142e750906180355lf9bb1a9vd7133e878e57eff@mail.gmail.com> References: <3a142e750906180355lf9bb1a9vd7133e878e57eff@mail.gmail.com> Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Organization: GB Servicves Ltd. Date: Thu, 18 Jun 2009 14:07:30 +0300 Message-ID: <1245323250.28444.48.camel@daemon2.partygaming.local> MIME-Version: 1.0 X-Mailer: Evolution 2.22.3.1 FreeBSD GNOME Team Port X-OriginalArrivalTime: 18 Jun 2009 11:07:32.0723 (UTC) FILETIME=[FA55C430:01C9F004] Cc: freebsd-net@freebsd.org Subject: Re: hostapd with 802.1X EAP-TLS/TTLS support X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Jun 2009 11:07:38 -0000 Hi Paul, is there some special reason behind this? Why the server is made part of the main distribution with stripped functionality ? Also, how can i enable it ? Thanks, Vladimir On Thu, 2009-06-18 at 13:55 +0300, Paul B. Mahol wrote: > On 6/18/09, Vladimir Terziev wrote: > > Hi, > > > > i try to setup wireless access point at home, based on FreeBSD > > 7.2R-i386, ral(4) wireless card and hostpad(8). > > > > I want my wireless AP to support 802.1x EAP-TLS/TTLS authentication. > I > > issued a custom SSL certificate for the hostapd(8) and put the > following > > directives in hostapd.conf: > > > > eap_server=3D0 > > ca_cert=3D/usr/local/etc/myCA.crt.pem > > server_cert=3D/usr/local/etc/hostapd.server.crt.pem > > private_key=3D/usr/local/etc/hostapd.server.key.pem > > private_key_passwd=3Dsome_pass > > > > When i tried to start the hostapd(8) i got the following errors: > > > > Line 15: unknown configuration item 'eap_server' > > Line 16: unknown configuration item 'ca_cert' > > Line 17: unknown configuration item 'server_cert' > > Line 18: unknown configuration item 'private_key' > > Line 19: unknown configuration item 'private_key_passwd' > > > > Does the stock FreeBSD's hostapd(8) support 802.1X EAP-TLS/TTLS at > all > > and if "not" why ? >=20 > 802.1X EAP-TLS/TTLS is not enabled by default on FreeBSD's hostapd(8). >=20 > -- > Paul >=20 >=20 This email and any attachments are confidential, and may be legally = privileged and protected by copyright. If you are not the intended = recipient dissemination or copying of this email is prohibited. If you = have received this in error, please notify the sender by replying by = email and then delete the email completely from your system.=20 Any views or opinions are solely those of the sender. This = communication is not intended to form a binding contract unless = expressly indicated to the contrary and properly authorised. Any actions = taken on the basis of this email are at the recipient's own risk.