Virtual Interface and radius server

Post new topic   Reply to topic    DD-WRT Forum Index -> Atheros WiSOC based Hardware
Goto page Previous  1, 2
View previous topic :: View next topic  
Author Message
Hoggins
DD-WRT Novice


Joined: 01 Jun 2021
Posts: 7
PostPosted: Wed Jun 02, 2021 8:10    Post subject: Reply with quote
Confirmed here with build DD-WRT v3.0-r46836 std (06/01/21) on TP-Link TL-WR841ND v11.

The AP does not send the password to the RADIUS server through the virtual AP, although it does normally for the "main" AP.

Edit: update correct DD-WRT version
Back to top View user's profile Send private message
Sponsor
Hoggins
DD-WRT Novice


Joined: 01 Jun 2021
Posts: 7
PostPosted: Thu Jun 03, 2021 15:25    Post subject: Reply with quote
Now that the info seems complete, should I expect some analysis of the issue? It doesn't seem hardware-related, though.
Back to top View user's profile Send private message
Hoggins
DD-WRT Novice


Joined: 01 Jun 2021
Posts: 7
PostPosted: Tue Jun 08, 2021 9:35    Post subject: Reply with quote
Hey I know that debugging is a very long process and that the pile of tickets is a heavy one, but pardon my bitterness. I posted an issue on this forum and I immediately got answers saying that you had missing info on my hardware and software. Now that I believe I've cleared things out, there is suddenly nobody who can give me hints on why a virtual AP would not correctly authenticate clients.

Should I provide anything new to help?
Back to top View user's profile Send private message
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 14217
Location: Texas, USA
PostPosted: Tue Jun 08, 2021 14:53    Post subject: Reply with quote
Did you test 06-05-2021-r46885?
_________________
"Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT
Pogo - A minimal level of ability is expected and needed...
DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Back to top View user's profile Send private message Visit poster's website
o2bad455
DD-WRT User


Joined: 08 Oct 2015
Posts: 252
PostPosted: Tue Jun 08, 2021 15:08    Post subject: Reply with quote
Hoggins wrote:
... I'm stuck with WPA2 Enterprise not working for my VAP.

It's perfectly working for my main AP.

Debugging on the RADIUS server shows that the (V)AP never sends the password, only the username.

I'm thinking of creating a ticket for that issue, but maybe there's something I'm missing elsewhere?

Hoggins wrote:
... r46836 std (06/01/21) on TP-Link TL-WR841ND v11.

The AP does not send the password to the RADIUS server through the virtual AP, although it does normally for the "main" AP.


I realize that you're using an external Radius server (which I haven't tested). But FYI, VAP authentication has been working well for the last year or so with the built-in FreeRadius service (which I use on Broadcom and Marvell based devices, and soon to try on Atheros). Here on a Linksys WRT1900ACSv2 (Marvell) running the current r46885 build, I've got WPA3-EAP on wlan0 and wlan1, WPA2-EAP on wlan0.1 and wlan1.1, and WPA3-SAE on wlan1.2.

I also have Netgear R7000 (Broadcom) devices with Enterprise VAPs working fine. I guess your WR841ND has an Atheros chip. Hopefully that's not the issue. As soon as I get my Netgear R9000 (Atheros) going, I'll test on that too.
_________________
My DD-WRT Routers:
Linksys WRT3200ACM - Marvell
Linksys WRT1900ACS - Marvell
Netgear R9000 - Atheros
Netgear R7000 - Broadcom
PC x86-64 VM - Atheros
Back to top View user's profile Send private message
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 14217
Location: Texas, USA
PostPosted: Tue Jun 08, 2021 16:40    Post subject: Reply with quote
Reply from the developer:

BrainSlayer wrote:
unrelated to dd-wrt. he has a own freeradius installation with a wrong configuration. his client (which is not dd-wrt) authenticated against a freeradius server (which is not dd-wrt too)

_________________
"Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT
Pogo - A minimal level of ability is expected and needed...
DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Back to top View user's profile Send private message Visit poster's website
Hoggins
DD-WRT Novice


Joined: 01 Jun 2021
Posts: 7
PostPosted: Tue Jun 22, 2021 14:37    Post subject: Reply with quote
Indeed it was unrelated to DD-WRT: it was a strange case when only this VAP (with this specific SSID) was failing during REST authentication, preventing EAP-TTLS from going into phase 2 (inner-tunnel).

Sorry for the noise, it was all my fault.
Back to top View user's profile Send private message
Goto page Previous  1, 2 Display posts from previous:    Page 2 of 2
Post new topic   Reply to topic    DD-WRT Forum Index -> Atheros WiSOC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum