[ovs-discuss] Encryption on wlan0 in OpenWRT

Adam Paul Rzyska adam.rzyska at smail.inf.h-brs.de
Wed Oct 26 13:34:30 UTC 2016 

Hello Curtis,

thank you very much for your help. Your suggestion was correct, after  
patching the hostapd, compiling openwrt again and inserting one line  
into my hostapd config file my clients could establish a encrypted  
connection to my access point.

I've also tried to understand the cause for the problem but I am not  
sure if the provided answer in your link is correct. Do you know why  
it isn't possible to use wlan0 in ovs with an encryption?

Best regards
Adam


Zitat von Curtis Taylor <yamahabob28 at gmail.com>:

> You may be facing the same problem I had in the past where OVS needs  
> to be patched on OpenWrt for WPA authentication to work.
>
> Patch at:  
> https://github.com/helmut-jacob/hostapd/commit/c89daaeca4ee90c8bc158e37acb1b679c823d7ab#diff-165dd5a1681d9394993972f6923fddf8R153
>
> OpenWrt post: https://forum.openwrt.org/viewtopic.php?id=59129
>
> Summary from post: For anyone else encountering this issue, the  
> solution is a patch to hostapd. The problem stems from hostapd  
> expecting to only have wireless interfaces on the internal linux  
> bridge. By moving the bridge to an OVS bridge, hostapd fails to see  
> authentication packets. The patch causes hostapd to check/add  
> interfaces to OVS before starting and removes them when it goes down.
>
> Note the last comment on the forum that you need to update the  
> hphy*.conf file to be "bridge=br0”. By default hostapd will keep  
> setting the configuration file to point to the default Linux bridge  
> and will not work. I couldn’t figure out how to do this  
> automatically so I did a manual workaround to start hostapd manually  
> with a custom configuration file.
>
> Cheers,
> —Curtis
>
>
>> On Oct 25, 2016, at 7:26 AM, Adam Paul Rzyska  
>> <adam.rzyska at smail.inf.h-brs.de> wrote:
>>
>> Hello everyone,
>>
>> I'm trying to build a testbed out of a controller(floodlight), a  
>> few switches(TP-Link WDR4300 with Open vSwitch) and a few access  
>> points (TP-Link WDR4300 with Open vSwitch). The whole communication  
>> is going through Open vSwitch, that includes the wireless  
>> interfaces which were added to my Open vSwitch bridge. It works as  
>> long as
>>
>> - I don't use any encryption like wpa or wpa2 for wireless LAN.
>> - I exclude the wireless interface of Open vSwitch (ovs-vsctl  
>> del-port br0 wlan0).
>>
>> But as soon as I try to use a wireless interface with an encryption  
>> wpa/wpa2 in Open vSwitch my clients wont connect anymore. Is it a  
>> common problem?
>>
>> Best regards
>> Adam
>> --
>> Adam Paul Rzyska
>>
>> _______________________________________________
>> discuss mailing list
>> discuss at openvswitch.org
>> http://openvswitch.org/mailman/listinfo/discuss


-- 
Adam Paul Rzyska

More information about the discuss mailing list