[appleguru]

Does client mode work on ddwrt on a wpa2 enterprise network?

[Donny]

Might depend on the dd-wrt build being used.

[appleguru]

I don't have my hardware yet, but any tips on how to set this up would be greatly appreciated!

I will have a WNDR3300. It has dual radios, a 2.4/5GHz and a 2.4GHz only...

I want to connect to an existing G WPA2 Enterprise network as a client with the router. I want the connection to be NAT'd so it only appears as a single client. Then I want to share that connection to other wireless clients over the second radio (Use one radio as a client and one as a normal NAT'd access point with standard WPA/WPA2 PSK security.

I can potentially connect a second router to an ethernet port on the router (I think my airport express would fit the bill) if that's what it takes.

Any tips/versions of ddwrt that will do what I want?

[appleguru]

Ok, I finally got my router and flashed it.. currently running

eko dd-wrt.v24-12030_NEWD_mini

Unless I'm missing something I can't figure out how to do this. If I set up the radio in client mode, then the only options I have for security are WEP, WPA Personal, WPA Mixed, WPA2 Personal... I need to somehow use 802.1x auth to connect to the WPA2 Enterprise Network here (which uses 802.1X for auth and takes both a username and a password). Any ideas? Is this possible?

I suppose I could always sacrifice my dell mini and make it the wireless bridge (Connect, share over ethernet), but I'd really like to do it with the router if I can!

[appleguru]

Now running dd-wrt.v24-12030_NEWD_std-nokaid_nohotspot_nostor

Still can't find anything useful :/

[redhawk0]

The physical interface on the client does not support WPA Enterprise to associate between the 2 radios....if you used Repeater or Repeater Bridge then the additional virtual interface has the WPA Enterprise as an option.


redhawk

[appleguru]

I'm not so sure that helps... I want to *join* an existing WPA Enterprise network as a client (IE,I need to enter a username and a password), not create my own... Unless I'm missing something?

[LLB]

I think what redhawk is saying is that you have to be in repeater or repeater bridge mode, not client mode, to have that option, and that only allows you to connect to the virtual ssid with WPA Enterprise, not the main physical ssid.

[redhawk0]

Yeah...it depends on the mode you are in. if you have AP mode selected...then you get the Enterprise option...if you select Client, Client Bridge, Repeater, Repeater Bridge ....then you don't get the Enterprise option on the Physical interface....only on the Virtual. (for Repeater modes)

redhawk

[soulstace]

create a new enhancement ticket in trac for it. See what BrainSlayer has to say. Maybe he can add support for it.

http://svn.dd-wrt.com:8000/dd-wrt/register

[appleguru]

[appleguru]

Here's my ticket if anyone is interested ;)

http://svn.dd-wrt.com:8000/dd-wrt/ticket/1066

[LLB]

I have 11793 in client bridged mode. Confirmed that there is no enterprise option for WPA. I guess BS will let you know if there is a reason for that.

[appleguru]

BTW, This is what dd-wrt's network scanner reports the encryption as:

[appleguru]

Hmm.. did a little more digging on the issue; seems like it should be possible, though I'm still not quite certain how...

This post (in german) asks the exact question I do: http://www.dd-wrt.com/phpBB2/viewtopic.php?p=198037

In that thread, he was linked here:

http://blog.jozjan.net/2008/12/wrt54gl-as-8021x-client-aka.html

Seems like a solution.. but for open-wrt, not dd-wrt! Anyone have any insight on what would be necessary to get similar support working in dd-wrt?