From owner-freebsd-questions@FreeBSD.ORG Sat Jan 14 06:29:01 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1F1501065672 for ; Sat, 14 Jan 2012 06:29:01 +0000 (UTC) (envelope-from gobble.wa@gmail.com) Received: from mail-iy0-f182.google.com (mail-iy0-f182.google.com [209.85.210.182]) by mx1.freebsd.org (Postfix) with ESMTP id DFDEF8FC12 for ; Sat, 14 Jan 2012 06:29:00 +0000 (UTC) Received: by iagz16 with SMTP id z16so983551iag.13 for ; Fri, 13 Jan 2012 22:29:00 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:cc:content-type; bh=kmm7oyaUtrKkSiL2hoqoGDTrEz4697OkIVKmN7E3P6w=; b=ZhfvKhsntrq6rEWVCs11cRbtUowHz1Su9YXGhh1FaAaGVQlToxmOtAcGN+Ip0FuTmF VJVIQG6bE0NptHJLuQo1lQitwe4DUjUfG3yYHChbn4GPnd3hIee8B9rKDVI0yce7KGS/ 3T976jfBKLbzfLt2RSQSwmlslziPi6hjs9ZH4= MIME-Version: 1.0 Received: by 10.42.131.7 with SMTP id x7mr3079951ics.11.1326522538771; Fri, 13 Jan 2012 22:28:58 -0800 (PST) Received: by 10.231.31.65 with HTTP; Fri, 13 Jan 2012 22:28:58 -0800 (PST) Date: Fri, 13 Jan 2012 22:28:58 -0800 Message-ID: From: Waitman Gobble To: Matthias Apitz Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org Subject: Re: wireless and/or routing question UPDATE - WPA X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Jan 2012 06:29:01 -0000 On Fri, Jan 13, 2012 at 8:34 AM, Waitman Gobble wrote= : > > On Jan 13, 2012 7:19 AM, "Matthias Apitz" wrote: > > > > El d=EDa Friday, January 13, 2012 a las 07:03:11AM -0800, Waitman Gobbl= e > escribi=F3: > > > > > Hi, > > > > > > Thanks. I've always heard countless rumors about WPA being wise :) I'= ll > > > take your advice and take a step up in technology. My "stubborn > > > conservatism" probably roots back to the time when not all devices > could do > > > WPA, or at least I had crazy trouble getting things to work. But this > > > learned attitude was probably around 2000, which was like a million > years > > > ago with dinosaurs and stuff. Time for me to finally get with it. > > > > > > ... > > > > Concerning WEP ./. WPA: From the technical point it is clear, WPA is > > more secure; but there are other aspects as well; we have had in German= y > > cases where the WAN IP of the AP appeared as source addr of some kind o= f > > crime (access to child porn or whatever) and the AP owner said: I'm > > using WEP, it was not me, and someone highjacked my AP ... and he/she > > went home as free person; > > > > matthias > > -- > > Matthias Apitz > > e - w http://www.unixarea.de/ > > UNIX since V7 on PDP-11, UNIX on mainframe since ESER 1055 (IBM /370) > > UNIX on x86 since SVR4.2 UnixWare 2.1.2, FreeBSD since 2.2.5 > > thanks, going to try WPA this weekend. > > My apartment is not so convenient for drive-by scanners (cant think of th= e > proper term at the moment) but i do have at least one neighbor who appear= s > potentially suspect.. like he might try to hack my ap for fun. > > Waitman > Hi, Today I picked up a D-Link DIR-815 and set it up for WPA with TKIP/PSK. I believe i followed the instructions in the FreeBSD handbook. However, the wpa_supplicant appears to hang indefinitely. If i control-c it barfs out an error. This clones ale0 wired NIC MAC to ath0 wireless NIC for lagg ifconfig ath0 ether 00:23:5a:59:e1:e4 ifconfig wlan0 create wlandev ath0 ssid BOOTAY ifconfig wlan0 up scan here's the wpa_supplicant that's hanging: wpa_supplicant -i wlan0 -c /etc/wpa_supplicant.conf p00ntang# wpa_supplicant -i wlan0 -c /etc/wpa_supplicant.conf Trying to associate with 1c:7e:e5:de:ed:52 (SSID=3D'BOOTAY' freq=3D2452 MHz= ) Associated with 1c:7e:e5:de:ed:52 WPA: Key negotiation completed with 1c:7e:e5:de:ed:52 [PTK=3DTKIP GTK=3DTKI= P] CTRL-EVENT-CONNECTED - Connection to 1c:7e:e5:de:ed:52 completed (auth) [id=3D0 id_str=3D] ^CCTRL-EVENT-TERMINATING - signal 2 received ioctl[SIOCS80211, op 20, len 7]: Can't assign requested address ELOOP: remaining socket: sock=3D4 eloop_data=3D0x284081c0 user_data=3D0x284= 12080 handler=3D0x806d620 If I terminate with ampersand to run asynchronously it keeps running and i have a wireless connection - it works. p00ntang# wpa_supplicant -i wlan0 -c /etc/wpa_supplicant.conf & I guess that makes sense but the handbook is not clear to me that it's to be done this way. It's the first time i've set up WPA on FreeBSD so i'm not 100% about what to expect. i am noticing messages about rekeying, so maybe the wpa-supplicant is supposed to keep running. here's /etc/wpa_supplicant.conf network=3D{ ssid=3D"BOOTAY" psk=3D"PASSWORD GOES HERE" } here's the rest of the lagg to set wired/wireless interface with a failover configuration. this is pretty clear in the handbook but i'll put it here in case someone runs across the thread in the future. ifconfig ale0 up ifconfig wlan0 up ifconfig lagg0 create ifconfig lagg0 up laggproto failover laggport ale0 laggport wlan0 10.0.0.20/24 Thanks Waitman