[prev in list] [next in list] [prev in thread] [next in thread] 

List:       hostap
Subject:    Urgent Plzz help + wired authenticator hostapd for EAP-TLS
From:       Harshil Anil Kumar Shah <Harshil_Shah () infosys ! com>
Date:       2010-12-21 9:41:55
Message-ID: 506A05A1800A22479D7EDF05A994C7CB0120F2BE97 () BLRKECMBX10 ! ad ! infosys ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


Hi guys,

Please help me to resolve this.

Currently I am working on a research project of EAP-TLS. I want to do EAP-TLS \
authentication for a wired client. So, I visited couple of forums and I came to know \
about hostapd which can work as an authenticator in case of EAP-TLS authentication \
process.  This is my test bed setup:

[cid:image002.jpg@01CBA11F.BA58F000]

In case of wireless client and if I use Dlink wirelesss router as an authenticator, \
authentication works successfully.

But in case of wired scenario,  authenticator is able to receive the request but is \
not able to forward to radius server. Where am I missing something?

I am able to ping from Freeradius to hostapd machine.

This is my hostapd.conf file:

interface = eth1
driver = wired
own_ip_addr = 192.168.1.11
# RADIUS authentication server
auth_server_addr =192.168.1.10
auth_server_port =1812
auth_server_shared_secret = whatever

# RADIUS accounting server
acct_server_addr =192.168.1.10
acct_server_port =1813s
acct_server_shared_secret = whatever

Thanks in advance.

Thanks and Regards,
Harshil A. Shah,


**************** CAUTION - Disclaimer *****************
This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION intended solely 
for the use of the addressee(s). If you are not the intended recipient, please 
notify the sender by e-mail and delete the original message. Further, you are not 
to copy, disclose, or distribute this e-mail or its contents to any other person and 
any such actions are unlawful. This e-mail may contain viruses. Infosys has taken 
every reasonable precaution to minimize this risk, but is not liable for any damage 
you may sustain as a result of any virus in this e-mail. You should carry out your 
own virus checks before opening the e-mail or attachment. Infosys reserves the 
right to monitor and review the content of all messages sent to or from this e-mail 
address. Messages sent to or from this e-mail address may be stored on the 
Infosys e-mail system.
***INFOSYS******** End of Disclaimer ********INFOSYS***


[Attachment #5 (text/html)]

<html xmlns:v="urn:schemas-microsoft-com:vml" \
xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" \
xmlns="http://www.w3.org/TR/REC-html40"><head><META HTTP-EQUIV="Content-Type" \
CONTENT="text/html; charset=us-ascii"><meta name=Generator content="Microsoft Word 12 \
(filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);} o\:* \
{behavior:url(#default#VML);} w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
	{font-family:Tahoma;
	panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
	{font-family:CMTT10;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0in;
	margin-bottom:.0001pt;
	font-size:11.0pt;
	font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:blue;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{mso-style-priority:99;
	color:purple;
	text-decoration:underline;}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
	{mso-style-priority:99;
	mso-style-link:"Balloon Text Char";
	margin:0in;
	margin-bottom:.0001pt;
	font-size:8.0pt;
	font-family:"Tahoma","sans-serif";}
span.BalloonTextChar
	{mso-style-name:"Balloon Text Char";
	mso-style-priority:99;
	mso-style-link:"Balloon Text";
	font-family:"Tahoma","sans-serif";}
span.EmailStyle19
	{mso-style-type:personal;
	font-family:"Calibri","sans-serif";
	color:windowtext;}
span.EmailStyle20
	{mso-style-type:personal;
	font-family:"Calibri","sans-serif";
	color:#1F497D;}
span.EmailStyle21
	{mso-style-type:personal-reply;
	font-family:"Calibri","sans-serif";
	color:#1F497D;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-size:10.0pt;}
@page WordSection1
	{size:8.5in 11.0in;
	margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
	{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple><div \
class=WordSection1><p class=MsoNormal>Hi guys,<o:p></o:p></p><p \
class=MsoNormal><o:p>&nbsp;</o:p></p><p class=MsoNormal>Please help me to resolve \
this.<o:p></o:p></p><p class=MsoNormal><span \
style='color:#1F497D'><o:p>&nbsp;</o:p></span></p><p class=MsoNormal>Currently I am \
working on a research project of EAP-TLS. I want to do EAP-TLS authentication for a \
wired client. So, I visited couple of forums and I came to know about hostapd which \
can work as an authenticator in case of EAP-TLS authentication process. &nbsp;This is \
my test bed setup:<o:p></o:p></p><p class=MsoNormal><o:p>&nbsp;</o:p></p><p \
class=MsoNormal align=center style='text-align:center'><img width=428 height=215 \
id="Picture_x0020_1" src="cid:image002.jpg@01CBA11F.BA58F000" \
alt=Scanerio.jpg><o:p></o:p></p><p class=MsoNormal><o:p>&nbsp;</o:p></p><p \
class=MsoNormal>In case of wireless client and if I use Dlink wirelesss router as an \
authenticator, authentication works successfully.<o:p></o:p></p><p \
class=MsoNormal><o:p>&nbsp;</o:p></p><p class=MsoNormal>But in case of wired<span \
style='font-size:12.0pt'> </span>scenario, &nbsp;authenticator is able to receive the \
request but is not able to forward to radius server. Where am I missing \
something?<o:p></o:p></p><p class=MsoNormal><span \
style='color:#1F497D'><o:p>&nbsp;</o:p></span></p><p class=MsoNormal><span \
style='color:#1F497D'>I am able to ping from Freeradius to hostapd \
machine.<o:p></o:p></span></p><p class=MsoNormal><span \
style='color:#1F497D'><o:p>&nbsp;</o:p></span></p><p class=MsoNormal>This is my \
hostapd.conf file:<o:p></o:p></p><p class=MsoNormal><o:p>&nbsp;</o:p></p><p \
class=MsoNormal style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>interface = eth1<o:p></o:p></span></p><p \
class=MsoNormal style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>driver = wired<o:p></o:p></span></p><p \
class=MsoNormal style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>own_ip_addr = \
192.168.1.11<o:p></o:p></span></p><p class=MsoNormal \
style='text-autospace:none'><span style='font-size:10.0pt;font-family:CMTT10'># \
RADIUS authentication server<o:p></o:p></span></p><p class=MsoNormal \
style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>auth_server_addr \
=192.168.1.10<o:p></o:p></span></p><p class=MsoNormal \
style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>auth_server_port \
=1812<o:p></o:p></span></p><p class=MsoNormal style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>auth_server_shared_secret = \
whatever<o:p></o:p></span></p><p class=MsoNormal style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'><o:p>&nbsp;</o:p></span></p><p \
class=MsoNormal style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'># RADIUS accounting \
server<o:p></o:p></span></p><p class=MsoNormal style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>acct_server_addr \
=192.168.1.10<o:p></o:p></span></p><p class=MsoNormal \
style='text-autospace:none'><span \
style='font-size:10.0pt;font-family:CMTT10'>acct_server_port \
=1813s<o:p></o:p></span></p><p class=MsoNormal><span \
style='font-size:10.0pt;font-family:CMTT10'>acct_server_shared_secret = \
whatever<o:p></o:p></span></p><p class=MsoNormal><o:p>&nbsp;</o:p></p><p \
class=MsoNormal>Thanks in advance.<o:p></o:p></p><p \
class=MsoNormal><o:p>&nbsp;</o:p></p><p class=MsoNormal><i><span \
style='color:#C0504D'>Thanks and Regards,<o:p></o:p></span></i></p><p \
class=MsoNormal><b><span style='color:#1F497D'>Harshil A. \
Shah,<o:p></o:p></span></b></p><p \
class=MsoNormal><o:p>&nbsp;</o:p></p></div></body></html> <table><tr><td \
bgcolor=#ffffff><font color=#000000><pre>**************** CAUTION - Disclaimer \
***************** This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION \
intended solely  for the use of the addressee(s). If you are not the intended \
recipient, please  notify the sender by e-mail and delete the original message. \
Further, you are not  to copy, disclose, or distribute this e-mail or its contents to \
any other person and  any such actions are unlawful. This e-mail may contain viruses. \
Infosys has taken  every reasonable precaution to minimize this risk, but is not \
liable for any damage  you may sustain as a result of any virus in this e-mail. You \
should carry out your  own virus checks before opening the e-mail or attachment. \
Infosys reserves the  right to monitor and review the content of all messages sent to \
or from this e-mail  address. Messages sent to or from this e-mail address may be \
stored on the  Infosys e-mail system.
***INFOSYS******** End of Disclaimer \
********INFOSYS***</pre></font></td></tr></table>


["image002.jpg" (image/jpeg)]

_______________________________________________
HostAP mailing list
HostAP@lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/hostap

--===============6794270063561116044==--

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic