i don't think it's correct unless you have some dumb option to explicitly block TTLS. you should post some server logs in order to prove that nothing is coming.
let me explain myself: in _EACH_ EAP method the first packet incoming at the RADIUS server will be either EAPOL Start OR EAP Response/Identity message. i want to see a log file, where the Response/Identity of the TLS is arriving and the response identity of the TTLS is not - knowing that the both packets are exactly the same. i don't see, why the following packets wouldn't be forwarded to the server. prove it.
i personally think that the problem is the client-server interaction. something is wrong and your client is not responding and you don't know why, so you suppose it's the AP but it's not.
ciao artur
Nixon, Anthony S. wrote:
Thanks very much for the education on AP's, but this still does not answer the question of why an AP will pass EAP-MD5 and EAP-TLS, but might not pass EAP-TTLS?
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
