alessandro macuz <[email protected]> schrieb:
Hi Alessandro
> which kind of RADIUS server are you using? Does the OpenWRT get the three
> attributes (tcpdump helps you on that)?
I'm using Freeradius 2.1.8 on my Ubuntu-PC.
Of course it sends the attributes:
Tunnel-Type = VLAN
Tunnel-Medium-Type = IEEE-802
Tunnel-Private-Group-Id = 10
> Does the client get an IP address?
Right now (for the experiments) I assigned static IP!
> Have you confgured the VLANs on OpenWRT? How? Tell us more on the Layer 2
> topology.
I configured two VLANs (10 and 666) on OpenWRT and they runs perfectly if I
don't try to assign the WLAN to the VLAN using Radius.
Here my /etc/config/network:
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fd4a:81ea:92c9::/48'
config interface 'lan'
option force_link '1'
option type 'bridge'
option proto 'none'
option _orig_ifname 'eth0.10 wlan0'
option _orig_bridge 'true'
option ifname 'eth0.10 wlan0'
config interface 'guestlan'
option force_link '1'
option type 'bridge'
option proto 'none'
option _orig_ifname 'eth0.666 wlan0-1'
option _orig_bridge 'true'
option ifname 'eth0.666 wlan0-1'
config interface 'man'
option ifname 'eth0'
option proto 'static'
option ipaddr '192.168.20.120'
option netmask '255.255.255.0'
option dns '192.168.20.3'
option dns_search 'lucabert.intra'
config interface 'wan'
option ifname 'eth0.2'
option proto 'none'
config interface 'wan6'
option ifname '@wan'
option proto 'dhcpv6'
config switch
option name 'switch0'
option reset '1'
option enable_vlan '1'
option enable_vlan4k '1'
config switch_vlan
option device 'switch0'
option vlan '1'
option ports '1 5'
config switch_vlan
option device 'switch0'
option vlan '2'
option ports '5t'
config switch_vlan
option device 'switch0'
option vlan '10'
option ports '1t 4 5t'
config switch_vlan
option device 'switch0'
option ports '1t 5t'
option vlan '20'
config switch_vlan
option device 'switch0'
option vlan '666'
option ports '1t 5t'
and here my /etc/config/wireless:
config wifi-device 'radio0'
option type 'mac80211'
option channel '11'
option hwmode '11g'
option path 'platform/ath9k'
option htmode 'HT20'
option country 'DE'
option txpower '20'
config wifi-iface
option device 'radio0'
option mode 'ap'
option network 'lan'
option encryption 'wpa2'
option auth_server '192.168.20.3'
option auth_port '1812'
option auth_secret 'myverysecret'
option acct_server '192.168.20.3'
option acct_port '1813'
option acct_secret 'myverysecret'
option nasid 'wrt'
option hidden '1'
option ssid 'lucabertIntern'
option dynamic_vlan 2
option vlan_file /etc/config/hostapd.vlan
option vlan_tagged_interface eth0
config wifi-iface
option device 'radio0'
option mode 'ap'
option network 'guestlan'
option encryption 'psk2'
option key 'anothersecret'
option ssid 'lucabert1'
Thanks
Luca Bertoncello
([email protected])
_______________________________________________
openwrt-users mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
