From owner-freebsd-wireless@FreeBSD.ORG Tue Jun 3 19:25:50 2014 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 38BB7A1D for ; Tue, 3 Jun 2014 19:25:50 +0000 (UTC) Received: from server1.weites.net (mail.weites.com [89.188.29.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id BC7CE2DA6 for ; Tue, 3 Jun 2014 19:25:49 +0000 (UTC) Received: from [10.14.92.96] (5ED685D2.cm-7-7c.dynamic.ziggo.nl [94.214.133.210]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: harm@weites.com) by server1.weites.net (Postfix) with ESMTPSA id 5D049722BA for ; Tue, 3 Jun 2014 21:25:11 +0200 (CEST) Message-ID: <538E213A.8060902@weites.com> Date: Tue, 03 Jun 2014 21:25:46 +0200 From: Harm Weites User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0 MIME-Version: 1.0 To: "freebsd-wireless@freebsd.org" Subject: Re: Trouble setting up multi SSID and 802.1X References: <538E144C.1080400@weites.com> In-Reply-To: Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jun 2014 19:25:50 -0000 Just a single file. I'm running a single instance of hostapd, like this: /sbin/hostapd -B /etc/hostapd.conf op 03-06-14 20:40, Adrian Chadd schreef: > Is hat in one config file? Or two hostapd config files? > > > > -a > > > On 3 June 2014 11:30, Harm Weites wrote: >> Hi, >> >> While trying to setup an AP with two SSID's I ran into some issues. >> >> Environment: >> TP-Link 1043ND (MIPS) >> ath0 ether 00:19:e0:66:66:68 >> wlan0 ether 02:ab:cd:ef:12:30 >> wlan1 ether 00:19:e0:66:66:68 >> >> Both wlan0 and wlan1 have been created with wlandev ath0 and wlanmode >> hostap. The goal is to have one guest wifi network, locked down using pf >> and having a proper wifi network using radius for personal use (thus, >> without pf). >> >> This is the hostapd config: >> >> # >> ctrl_interface=/var/run/hostapd >> hw_mode=g >> >> bss=wlan0 >> interface=wlan0 >> driver=bsd >> ssid=gasten >> wpa=3 >> wpa_key_mgmt=WPA-PSK >> wpa_passphrase=comegetsome >> wpa_pairwise=CCMP >> >> bss=wlan1 >> driver=bsd >> ssid=prive >> wpa=1 >> wpa_key_mgmt=WPA-EAP >> wpa_pairwise=TKIP >> wpa_group_rekey=300 >> wpa_gmk_rekey=640 >> ieee8021x=1 >> auth_algs=1 >> eapol_key_index_workaround=1 >> own_ip_addr=127.0.0.1 >> nas_identifier=wifi.example.com >> auth_server_addr=10.65.0.130 >> auth_server_port=1812 >> auth_server_shared_secret=secret >> acct_server_addr=10.65.0.130 >> acct_server_port=1813 >> acct_server_shared_secret=secret >> # >> >> Now, hostapd complains about the following: >> >> Configuration file: /etc/hostapd.conf >> Using interface wlan0 with hwaddr 02:ab:cd:ef:12:30 and ssid "gasten" >> Failed to add BSS (BSSID=02:ab:cd:ef:12:31) >> wlan0: Unable to setup interface. >> Failed to remove BSS interface wlan0 >> >> Thats it for having multiple (2) SSID's. >> >> Now, the 2nd issue: radius. For this, I've disabled the passphrase'd >> SSID to have just one (working) SSID. >> >> I haven't given the backend much attention just yet, but I'm seeing the >> following error after trying to associate: >> >> wlan0: STA a8:16:b2:54:9c:ef IEEE 802.11: associated >> wlan0: CTRL-EVENT-EAP-STARTED a8:16:b2:54:9c:ef >> wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=1 >> wlan0: STA a8:16:b2:54:9c:ef IEEE 802.11: disassociated >> ioctl[SIOCS80211, op=20, val=0, arg_len=7]: No such file or directory >> ioctl[SIOCS80211, op=20, val=0, arg_len=7]: No such file or directory >> >> This is using an Android device, with PEAP. I haven't got a clue yet on >> which mode I should be using, or how to configure that but since I'm >> seeing a 'No such file or directory' I'm afraid something needs to be >> resolved before diving into the final configuration (if this was about >> cert/key files, shouldn't it just explicitly say it's missing just >> that?). Attached to this message is some debug output from hostapd from >> the connection attempt. >> >> Regards, >> Harm >> _______________________________________________ >> freebsd-wireless@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-wireless >> To unsubscribe, send any mail to "freebsd-wireless-unsubscribe@freebsd.org"