EAP testing without AP?
ST Wong (ITSC)
ST at itsc.cuhk.edu.hk
Wed Sep 19 10:40:39 CEST 2007
Thanks for all advice. Result of testing using eapol_test is okay,
except error "OpenSSL: tls_connection_handshake - Failed to read
possible Application Data error:00000000:lib(0):func(0):reason(0)" is
found:
------------------------------- cut here -----------------------
[snipped]
SSL: SSL_connect:SSLv3 read finished A
SSL: (where=0x20 ret=0x1)
SSL: (where=0x1002 ret=0x1)
SSL: 0 bytes pending from ssl_out
OpenSSL: tls_connection_handshake - Failed to read possible Application
Data error:00000000:lib(0):func(0):reason(0)
SSL: No data to be sent out
EAP-TTLS: TLS done, proceed to Phase 2
[snipped]
------------------------------- cut here -----------------------
However, the rest of debug message seems to be normal. I've no idea
about the cause of this message. Would anyone pls help?
Besides, I only see radius messages if tcpdump is used during testing.
Seems TLS packets are encapsulated in EAP message, which is encapsulated
in radius packets. Is it correct?
Thanks a lot.
/ST Wong
-----Original Message-----
From: freeradius-users-bounces at lists.freeradius.org
[mailto:freeradius-users-bounces at lists.freeradius.org] On Behalf Of Alan
DeKok
Sent: Monday, September 17, 2007 7:46 PM
To: FreeRadius users mailing list
Subject: Re: EAP testing without AP?
ST Wong (ITSC) wrote:
> I'm new to EAP and want to setup freeradius with EAP-TTLS support.
> After some struggling with 802.1x doc and terms, the radiusd is up.
> However, as my testing AP is not ready now, I've no way to test my
> setup. I wonder if it's possible to test the authentication
> server<->authenticator<->supplicant setup under an 'simulated'
> environment without AP since I only want to test the authentication
setting.
wpa_supplicant contains a program "eapol_test", which does exactly
this.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list