Thanks for all advice. Result of testing using eapol_test is okay, except error "OpenSSL: tls_connection_handshake - Failed to read possible Application Data error:00000000:lib(0):func(0):reason(0)" is found:
------------------------------- cut here ----------------------- [snipped] SSL: SSL_connect:SSLv3 read finished A SSL: (where=0x20 ret=0x1) SSL: (where=0x1002 ret=0x1) SSL: 0 bytes pending from ssl_out OpenSSL: tls_connection_handshake - Failed to read possible Application Data error:00000000:lib(0):func(0):reason(0) SSL: No data to be sent out EAP-TTLS: TLS done, proceed to Phase 2 [snipped] ------------------------------- cut here ----------------------- However, the rest of debug message seems to be normal. I've no idea about the cause of this message. Would anyone pls help? Besides, I only see radius messages if tcpdump is used during testing. Seems TLS packets are encapsulated in EAP message, which is encapsulated in radius packets. Is it correct? Thanks a lot. /ST Wong -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok Sent: Monday, September 17, 2007 7:46 PM To: FreeRadius users mailing list Subject: Re: EAP testing without AP? ST Wong (ITSC) wrote: > I'm new to EAP and want to setup freeradius with EAP-TTLS support. > After some struggling with 802.1x doc and terms, the radiusd is up. > However, as my testing AP is not ready now, I've no way to test my > setup. I wonder if it's possible to test the authentication > server<->authenticator<->supplicant setup under an 'simulated' > environment without AP since I only want to test the authentication setting. wpa_supplicant contains a program "eapol_test", which does exactly this. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
