Hey,
I definitively have a problem with hostap on soekris. I use leaf berin
uclibc on it.
I have 2 machins :
a laptop -> 192.168.1.7 on eth0 rj45
192.168.2.5 on eth1 (ipw2200 intel interface)
a soekris -> 192.168.1.254 on eth0 rj45
192.168.2.254 on at0 Wifi (madwifi interface)
*) On the laptop, the chip ipw2200 run correctly with debian on kernel
2.6.15 with wpa_supplicant on another AP (like my actual Wifi Router)
Drivers&firmware -> last from ipw2200
*) On the soekris box, a additional pci card (3COM v1) with a chipset
Atheros. Drivers from the card : the last madwifi-old from cvs. I
cross-compile the drivers on my laptop and add the modules on the
soekris. I use the madwifi.lrp for the madwifi bin commands (iwlist
...).
The soekris in ap mode run correctly, and with encryption web so.
I want to use the soekris with encryption WPA/PSK, tkip algo, but i
got a problem with the connexion.
----------------------------------------------
IP on Acces-point soekris :
1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
2: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:00:24:c5:01:14 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.254/24 brd 192.168.1.255 scope global eth0
3: eth1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000
link/ether 00:00:24:c5:01:15 brd ff:ff:ff:ff:ff:ff
4: eth2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000
link/ether 00:00:24:c5:01:16 brd ff:ff:ff:ff:ff:ff
6: ath0: <BROADCAST,MULTICAST,UP> mtu 2290 qdisc pfifo_fast qlen 200
link/ether 00:14:a5:09:53:ae brd ff:ff:ff:ff:ff:ff
inet 192.168.2.254/24 brd 192.168.2.255 scope global ath0
----------------------------------------------
IP on laptop :
----------------------------------------------
1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:13:72:6a:75:35 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.7/24 brd 192.168.1.255 scope global eth0
inet6 fe80::213:72ff:fe6a:7535/64 scope link
valid_lft forever preferred_lft forever
4: eth2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000
link/ieee1394 46:4f:c0:00:1b:4c:88:50 brd ff:ff:ff:ff:ff:ff:ff:ff
5: sit0: <NOARP> mtu 1480 qdisc noop
link/sit 0.0.0.0 brd 0.0.0.0
6: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
link/ether 00:13:ce:67:43:1b brd ff:ff:ff:ff:ff:ff
inet 192.168.2.5/24 brd 192.168.2.255 scope global eth1
inet6 fe80::213:ceff:fe67:431b/64 scope link
valid_lft forever preferred_lft forever
--------------------------------------------------------------
When i launched hostap on the soekris, client is correctly authentificated :
---------
--- log iwlist ---
ath0 Peers/Access-Points in range:
00:13:CE:67:43:1B : Quality=56/94 Signal level=-39 dBm Noise level=-95 dBm
-------------
--- log hostap -----
Selected interface 'ath0'
00:13:ce:67:43:1b
dot11RSNAStatsSTAAddress=00:13:ce:67:43:1b
dot11RSNAStatsVersion=1
dot11RSNAStatsSelectedPairwiseCipher=00-0f-ac-2
dot11RSNAStatsTKIPLocalMICFailures=0
dot11RSNAStatsTKIPRemoveMICFailures=0
hostapdWPAPTKState=11
hostapdWPAPTKGroupState=0
----------------------------------
On the client laptop, even report :
---------------------
bind(PF_UNIX): Address already in use
Trying to associate with 00:14:a5:09:53:ae
(SSID='Secure-WPA-Soekris-Acces-Point' freq=0 MHz)
CTRL-EVENT-DISCONNECTED - Disconnect event - remove keys
Authentication with 00:00:00:00:00:00 timed out.
Trying to associate with 00:14:a5:09:53:ae
(SSID='Secure-WPA-Soekris-Acces-Point' freq=0 MHz)
Associated with 00:14:a5:09:53:ae
WPA: Key negotiation completed with 00:14:a5:09:53:ae [PTK=TKIP GTK=TKIP]
CTRL-EVENT-CONNECTED - Connection to 00:14:a5:09:53:ae completed (auth)
------------------------
--- wpa_cli ----
Selected interface 'eth1'
bssid=00:14:a5:09:53:ae
ssid=Secure-WPA-Soekris-Acces-Point
pairwise_cipher=TKIP
group_cipher=TKIP
key_mgmt=WPA2-PSK
wpa_state=COMPLETED
ip_address=192.168.2.5
Supplicant PAE state=AUTHENTICATED
suppPortStatus=Authorized
EAP state=SUCCESS
----------------------
BUT the ping don't work, like all connexion (ssh, openvpn, dhcp) nothing work
ping from client :
----------
ping 192.168.2.254
PING 192.168.2.254 (192.168.2.254) 56(84) bytes of data.
--- 192.168.2.254 ping statistics ---
2 packets transmitted, 0 received, 100% packet loss, time 1014ms
------
ping from soekris :
--------------
PING 192.168.2.254 (192.168.2.254): 56 data bytes
64 bytes from 192.168.2.254: icmp_seq=0 ttl=64 time=0.3 ms
64 bytes from 192.168.2.254: icmp_seq=1 ttl=64 time=0.2 ms
--- 192.168.2.254 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
When i ping from soekris the broadcast 192.168.2.254, on the tcpdump
result laptop, i receive the broadcast message, and the laptop return
the arp response - ie 192.168.2.7 -> 00:13:CE:67:43:1B but it seems
the soekris receive nothing.
If i dump the at0 interface, i have only the echo request and no
return from laptop client.
Here my configuration for hostapd :
##### hostapd configuration file ##############################################
# Empty lines and lines starting with # are ignored
interface=ath0
driver=madwifi
logger_syslog=-1
logger_syslog_level=2
logger_stdout=-1
logger_stdout_level=2
debug=0
dump_file=/tmp/hostapd.dump
ctrl_interface=/var/run/hostapd
ctrl_interface_group=0
##### IEEE 802.11 related configuration #######################################
# Station MAC address -based authentication
# 0 = accept unless in deny list
# 1 = deny unless in accept list
# 2 = use external RADIUS server (accept/deny lists are searched first)
macaddr_acl=0
#accept_mac_file=/etc/hostapd/hostapd.accept
deny_mac_file=/etc/hostapd/hostapd.deny
auth_algs=3
eapol_key_index_workaround=0
#eap_server=0
##### WPA/IEEE 802.11i configuration ##########################################
ssid=Secure-WPA-Soekris-Acces-Point
wpa=3
wpa_psk=701459761a3d17c5ddead0deafbeeffeedbadf00dc659db31e2e3d36f00a12b1
wpa_key_mgmt=WPA-PSK
wpa_pairwise=TKIP
----------------------
Iwconfig on soekris :
ath0 IEEE 802.11g ESSID:"Secure-WPA-Soekris-Acces-Point"
Mode:Master Frequency:2.452 GHz Access Point: 00:14:A5:09:53:AE
Bit Rate:0 kb/s Tx-Power:18 dBm Sensitivity=0/3
Retry:off RTS thr:off Fragment thr:off
Encryption key:BE64-6D06-15AE-A1EB-959A-F2F8-6D57-6AB6 [3]
Security mode:open
Power Management:off
Link Quality=31/94 Signal level=-64 dBm Noise level=-95 dBm
Rx invalid nwid:20 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:6 Invalid misc:6 Missed beacon:0
-----------------
Iwconfig on client :
---------------------
eth1 IEEE 802.11g ESSID:"Secure-WPA-Soekris-Acces-Point"
Mode:Managed Frequency:2.452 GHz Access Point: 00:14:A5:09:53:AE
Bit Rate=54 Mb/s Tx-Power=20 dBm
Retry limit:7 RTS thr:off Fragment thr:off
Encryption
key:565D-E909-FB7E-FE3F-6A85-ADE9-18F7-E1FB-A83D-EB32-0157-9440-12A6-4FEF-C2AB-613D
Security mode:open
Power Management:off
Link Quality=97/100 Signal level=-28 dBm Noise level=-82 dBm
Rx invalid nwid:0 Rx invalid crypt:1 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:70 Missed beacon:0
Thx in advance for the answers
Best rgds,
David
-------------------------------------------------------
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid�0944&bid$1720&dat�1642
------------------------------------------------------------------------
leaf-user mailing list: [email protected]
https://lists.sourceforge.net/lists/listinfo/leaf-user
Support Request -- http://leaf-project.org/
