On Sun, 2003-07-20 at 07:05, diomedes wrote: > Hi, > > Is normal that the value of NAS PORT were 0 in eap/tls request ?
Yes. Most access points (I'm assuming you're talking about an Wireless Access Point NAS here since your last email referred to a DLINK AP) do not necessarily have "ports" (or they only have one "port" depending on how you look at it). The Orinoco AP-2000/Avaya AP-3 also sends a NAS-Port of 0 in the authencation responses. The 802.1x spec document says that the NAS can send the "association ID" in this request, but the APs I've delt with don't do this. I'm not sure what, if anything, the Aironet 350/1100/1200 APs send. This will change in the future, though, as the EAP authentication exchange will take place before the assocation occurs, so there will be no association ID. This is the preauthentication portion of 802.11i. --Mike - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
