From owner-freebsd-wireless@FreeBSD.ORG Tue Jun 3 18:37:22 2014 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id EA7D4A33 for ; Tue, 3 Jun 2014 18:37:22 +0000 (UTC) Received: from server1.weites.net (mail.weites.com [89.188.29.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 9247B2928 for ; Tue, 3 Jun 2014 18:37:21 +0000 (UTC) Received: from [10.14.92.96] (5ED685D2.cm-7-7c.dynamic.ziggo.nl [94.214.133.210]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: harm@weites.com) by server1.weites.net (Postfix) with ESMTPSA id 97040722BA for ; Tue, 3 Jun 2014 20:30:02 +0200 (CEST) Message-ID: <538E144C.1080400@weites.com> Date: Tue, 03 Jun 2014 20:30:36 +0200 From: Harm Weites User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0 MIME-Version: 1.0 To: freebsd-wireless@freebsd.org Subject: Trouble setting up multi SSID and 802.1X Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.18 X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jun 2014 18:37:23 -0000 Hi, While trying to setup an AP with two SSID's I ran into some issues. Environment: TP-Link 1043ND (MIPS) ath0 ether 00:19:e0:66:66:68 wlan0 ether 02:ab:cd:ef:12:30 wlan1 ether 00:19:e0:66:66:68 Both wlan0 and wlan1 have been created with wlandev ath0 and wlanmode hostap. The goal is to have one guest wifi network, locked down using pf and having a proper wifi network using radius for personal use (thus, without pf). This is the hostapd config: # ctrl_interface=/var/run/hostapd hw_mode=g bss=wlan0 interface=wlan0 driver=bsd ssid=gasten wpa=3 wpa_key_mgmt=WPA-PSK wpa_passphrase=comegetsome wpa_pairwise=CCMP bss=wlan1 driver=bsd ssid=prive wpa=1 wpa_key_mgmt=WPA-EAP wpa_pairwise=TKIP wpa_group_rekey=300 wpa_gmk_rekey=640 ieee8021x=1 auth_algs=1 eapol_key_index_workaround=1 own_ip_addr=127.0.0.1 nas_identifier=wifi.example.com auth_server_addr=10.65.0.130 auth_server_port=1812 auth_server_shared_secret=secret acct_server_addr=10.65.0.130 acct_server_port=1813 acct_server_shared_secret=secret # Now, hostapd complains about the following: Configuration file: /etc/hostapd.conf Using interface wlan0 with hwaddr 02:ab:cd:ef:12:30 and ssid "gasten" Failed to add BSS (BSSID=02:ab:cd:ef:12:31) wlan0: Unable to setup interface. Failed to remove BSS interface wlan0 Thats it for having multiple (2) SSID's. Now, the 2nd issue: radius. For this, I've disabled the passphrase'd SSID to have just one (working) SSID. I haven't given the backend much attention just yet, but I'm seeing the following error after trying to associate: wlan0: STA a8:16:b2:54:9c:ef IEEE 802.11: associated wlan0: CTRL-EVENT-EAP-STARTED a8:16:b2:54:9c:ef wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=1 wlan0: STA a8:16:b2:54:9c:ef IEEE 802.11: disassociated ioctl[SIOCS80211, op=20, val=0, arg_len=7]: No such file or directory ioctl[SIOCS80211, op=20, val=0, arg_len=7]: No such file or directory This is using an Android device, with PEAP. I haven't got a clue yet on which mode I should be using, or how to configure that but since I'm seeing a 'No such file or directory' I'm afraid something needs to be resolved before diving into the final configuration (if this was about cert/key files, shouldn't it just explicitly say it's missing just that?). Attached to this message is some debug output from hostapd from the connection attempt. Regards, Harm