Difference between revisions of "Software Access Point"

From Hack Sphere Labs Wiki
Jump to: navigation, search
 
(10 intermediate revisions by the same user not shown)
Line 1: Line 1:
Just your basic bridge and hostapd setup.  I am doing this with a raspberry pie and a alpha AWUSO36NH.  One of the biggest issues is understanding the new systemctl methods of archlinux.
+
Just your basic bridge and hostapd setup.  I am doing this with a raspberry pi and a alpha AWUSO36NH.  One of the biggest issues is understanding the new systemctl methods of archlinux.
 +
 
 +
I was able to do this just fine but the pi would freeze.  Even with a USB hub.  I have done some research and found that with the raspberry pi the recommended power adapter is just too light.  I have just created some 2A 5v adapters from some parts from digikey.  Just a 5v 2A switching adapter of my choosing and a usb cable.  Soldered together and works fine.
 +
 
 +
I want to see if this: https://www.adafruit.com/products/1030 works with hostapd as it is small and has a sma connector.  I will be trying this again hopefully with my USB alpha adapters.
  
 
=hostapd=
 
=hostapd=
  
 +
Concern rests with the file (Most of these are default):
  
 +
/etc/hostapd/hostapd.conf
  
 +
interface=wlan0
 +
bridge=br0
 +
#note: madwifi is ath chipsets
 +
driver=nl80211
 +
#logsettings
 +
logger_syslog=-1
 +
logger_syslog_level=2
 +
logger_stdout=-1
 +
logger_stdout_level=2
 +
dump_file=/tmp/hostapd.dump
 +
ctrl_interface=/var/run/hostapd
 +
ctrl_interface_group=0
 +
ssid=BridgeTest
 +
country_code=US
 +
#ieee80211d=1
 +
hw_mode=g
 +
channel=6
 +
#Note: 802.11n builds on the settings above, and adds additional functionality and configuration will come later.
 +
beacon_int=100
 +
dtim_period=2
 +
max_num_sta=255
 +
rts_threshold=2347
 +
fragm_threshold=2346
 +
#no rates enabled = support all
 +
#supported_rates=10 20 55 110 60 90 120 180 240 360 480 540
 +
#no basic rate set = sane default
 +
#basic_rates=10 20
 +
#basic_rates=10 20 55 110
 +
#basic_rates=60 120 240
 +
#Below Applies to 802.11b only
 +
#preamble=1
 +
macaddr_acl=0
 +
#accept_mac_file=/etc/hostapd/hostapd.accept
 +
#deny_mac_file=/etc/hostapd/hostapd.deny
 +
# Both open and shared auth
 +
auth_algs=3
 +
ignore_broadcast_ssid=0
 +
# Low priority / AC_BK = background
 +
#tx_queue_data3_aifs=7
 +
#tx_queue_data3_cwmin=15
 +
#tx_queue_data3_cwmax=1023
 +
#tx_queue_data3_burst=0
 +
# Note: for IEEE 802.11b mode: cWmin=31 cWmax=1023 burst=0
 +
#
 +
# Normal priority / AC_BE = best effort
 +
#tx_queue_data2_aifs=3
 +
#tx_queue_data2_cwmin=15
 +
#tx_queue_data2_cwmax=63
 +
#tx_queue_data2_burst=0
 +
# Note: for IEEE 802.11b mode: cWmin=31 cWmax=127 burst=0
 +
#
 +
# High priority / AC_VI = video
 +
#tx_queue_data1_aifs=1
 +
#tx_queue_data1_cwmin=7
 +
#tx_queue_data1_cwmax=15
 +
#tx_queue_data1_burst=3.0
 +
# Note: for IEEE 802.11b mode: cWmin=15 cWmax=31 burst=6.0
 +
#
 +
# Highest priority / AC_VO = voice
 +
#tx_queue_data0_aifs=1
 +
#tx_queue_data0_cwmin=3
 +
#tx_queue_data0_cwmax=7
 +
#tx_queue_data0_burst=1.5
 +
# Note: for IEEE 802.11b mode: cWmin=7 cWmax=15 burst=3.3
 +
#wmm is needed for wireless n btw
 +
wmm_enabled=1
 +
#
 +
# WMM-PS Unscheduled Automatic Power Save Delivery [U-APSD]
 +
# Enable this flag if U-APSD supported outside hostapd (eg., Firmware/driver)
 +
#uapsd_advertisement_enabled=1
 +
#
 +
# Low priority / AC_BK = background
 +
wmm_ac_bk_cwmin=4
 +
wmm_ac_bk_cwmax=10
 +
wmm_ac_bk_aifs=7
 +
wmm_ac_bk_txop_limit=0
 +
wmm_ac_bk_acm=0
 +
# Note: for IEEE 802.11b mode: cWmin=5 cWmax=10
 +
#
 +
# Normal priority / AC_BE = best effort
 +
wmm_ac_be_aifs=3
 +
wmm_ac_be_cwmin=4
 +
wmm_ac_be_cwmax=10
 +
wmm_ac_be_txop_limit=0
 +
wmm_ac_be_acm=0
 +
# Note: for IEEE 802.11b mode: cWmin=5 cWmax=7
 +
#
 +
# High priority / AC_VI = video
 +
wmm_ac_vi_aifs=2
 +
wmm_ac_vi_cwmin=3
 +
wmm_ac_vi_cwmax=4
 +
wmm_ac_vi_txop_limit=94
 +
wmm_ac_vi_acm=0
 +
# Note: for IEEE 802.11b mode: cWmin=4 cWmax=5 txop_limit=188
 +
#
 +
# Highest priority / AC_VO = voice
 +
wmm_ac_vo_aifs=2
 +
wmm_ac_vo_cwmin=2
 +
wmm_ac_vo_cwmax=3
 +
wmm_ac_vo_txop_limit=47
 +
wmm_ac_vo_acm=0
 +
# Note: for IEEE 802.11b mode: cWmin=3 cWmax=4 burst=102
 +
#wep_default_key=0
 +
#wep_key0=123456789a
 +
#wep_key1="vwxyz"
 +
#wep_key2=0102030405060708090a0b0c0d
 +
#wep_key3=".2.4.6.8.0.23"
 +
#ap_max_inactivity=300
 +
#disassoc_low_ack=1
 +
#max_listen_interval=100
 +
#wds_sta=1
 +
#wds_bridge=wds-br0
 +
#ap_isolate=1
 +
ieee80211n=1
 +
#HT capabilities (tuneme?)
 +
ht_capab=[HT40-][SHORT-GI-20][SHORT-GI-40]
 +
#require_ht=1
 +
#ieee8021x=1
 +
#eapol_version=2
 +
#eap_message=hello
 +
#eap_message=hello\0networkid=netw,nasid=foo,portid=0,NAIRealms=example.com
 +
#wep_key_len_broadcast=5
 +
#wep_key_len_unicast=5
 +
#wep_rekey_period=300
 +
eapol_key_index_workaround=0
 +
#eap_reauth_period=3600
 +
#use_pae_group_addr=1
 +
eap_server=0
 +
#eap_user_file=/etc/hostapd/hostapd.eap_user
 +
#ca_cert=/etc/hostapd/hostapd.ca.pem
 +
#server_cert=/etc/hostapd/hostapd.server.pem
 +
#private_key=/etc/hostapd/hostapd.server.prv
 +
#private_key_passwd=secret passphrase
 +
#check_crl=1
 +
#dh_file=/etc/hostapd/hostapd.dh.pe
 +
#fragment_size=1400
 +
#eap_sim_db=unix:/tmp/hlr_auc_gw.sock
 +
#eap_fast_a_id=101112131415161718191a1b1c1d1e1f
 +
#eap_fast_a_id_info=test server
 +
#eap_fast_prov=3
 +
#pac_key_lifetime=604800
 +
#pac_key_refresh_time=86400
 +
#eap_sim_aka_result_ind=1
 +
#tnc=1
 +
#iapp_interface=eth0
 +
own_ip_addr=127.0.0.1
 +
#nas_identifier=ap.example.com
 +
#auth_server_addr=127.0.0.1
 +
#auth_server_port=1812
 +
#auth_server_shared_secret=secret
 +
#acct_server_addr=127.0.0.1
 +
#acct_server_port=1813
 +
#acct_server_shared_secret=secret
 +
#auth_server_addr=127.0.0.2
 +
#auth_server_port=1812
 +
#auth_server_shared_secret=secret2
 +
#
 +
#acct_server_addr=127.0.0.2
 +
#acct_server_port=1813
 +
#acct_server_shared_secret=secret2
 +
#radius_retry_primary_interval=600
 +
#radius_acct_interim_interval=600
 +
#dynamic_vlan=0
 +
#vlan_file=/etc/hostapd/hostapd.vlan
 +
#vlan_tagged_interface=eth0
 +
#radius_server_clients=/etc/hostapd/hostapd.radius_clients
 +
#radius_server_auth_port=1812
 +
#radius_server_ipv6=1
 +
#WPA SECURITY CONFIG
 +
#RSN(WPA2)
 +
wpa=2
 +
#wpa_psk=0123456789abcdef0123456789abcdef0123456789abcdef0123456789abcdef
 +
wpa_passphrase=secret passphrase
 +
#wpa_psk_file=/etc/hostapd/hostapd.wpa_psk
 +
#wpa_key_mgmt=WPA-PSK WPA-EAP
 +
wpa_key_mgmt=WPA-PSK WPA-PSK-SHA256
 +
#wpa_pairwise=TKIP CCMP
 +
rsn_pairwise=CCMP
 +
##?:
 +
wpa_group_rekey=600
 +
wpa_strict_rekey=1
 +
wpa_gmk_rekey=86400
 +
#wpa_ptk_rekey=600
 +
#rsn_preauth=1
 +
#rsn_preauth_interfaces=eth0
 +
#peerkey=1
 +
#ieee80211w=0
 +
#assoc_sa_query_max_timeout=1000
 +
#assoc_sa_query_retry_timeout=201
 +
#disable_pmksa_caching=0
 +
#okc=1
 +
#mobility_domain=a1b2
 +
#r0_key_lifetime=10000
 +
#r1_key_holder=000102030405
 +
#reassociation_deadline=1000
 +
#r0kh=02:01:02:03:04:05 r0kh-1.example.com 000102030405060708090a0b0c0d0e0f
 +
#r0kh=02:01:02:03:04:06 r0kh-2.example.com 00112233445566778899aabbccddeeff
 +
# And so on.. One line per R0KH.
 +
#r1kh=02:01:02:03:04:05 02:11:22:33:44:55 000102030405060708090a0b0c0d0e0f
 +
#r1kh=02:01:02:03:04:06 02:11:22:33:44:66 00112233445566778899aabbccddeeff
 +
# And so on.. One line per R1KH.
 +
#pmk_r1_push=1
 +
#ap_table_max_size=255
 +
#ap_table_expiration_time=3600
 +
#default wps = disabled
 +
#wps_state=0
 +
#ap_setup_locked=1
 +
#uuid=12345678-9abc-def0-1234-56789abcdef0
 +
#wps_pin_requests=/var/run/hostapd_wps_pin_requests
 +
#device_name=Wireless AP
 +
#manufacturer=Company
 +
#model_name=WAP
 +
#model_number=123
 +
#serial_number=12345
 +
#device_type=6-0050F204-1
 +
#os_version=01020300
 +
#config_methods=label virtual_display virtual_push_button keypad
 +
#pbc_in_m1=1
 +
#ap_pin=12345670
 +
#skip_cred_build=1
 +
#extra_cred=hostapd.cred
 +
#wps_cred_processing=0
 +
#ap_settings=hostapd.ap_settings
 +
#upnp_iface=br0
 +
#friendly_name=WPS Access Point
 +
#manufacturer_url=http://www.example.com/
 +
#model_description=Wireless Access Point
 +
#model_url=http://www.example.com/model/
 +
#upc=123456789012
 +
#manage_p2p=1
 +
#allow_cross_connection=1
 +
#tdls_prohibit=1
 +
#tdls_prohibit_chan_switch=1
 +
#time_advertisement=2
 +
#time_zone=EST5
 +
#interworking=1
 +
#access_network_type=0
 +
#internet=1
 +
#asra=0
 +
#esr=0
 +
#uesa=0
 +
#venue_group=7
 +
#venue_type=1
 +
#hessid=02:03:04:05:06:07
 +
#roaming_consortium=021122
 +
#roaming_consortium=2233445566
 +
#bss=wlan0_0
 +
#ssid=test2
 +
# most of the above items can be used here (apart from radio interface specific
 +
# items, like channel)
 +
#
 +
#bss=wlan0_1
 +
#bssid=00:13:10:95:fe:0b
 +
# ...
  
 
=Notes=
 
=Notes=
Line 12: Line 272:
 
Notes:
 
Notes:
  
https://bbs.archlinux.org/viewtopic.php?pid=1191806
+
*https://bbs.archlinux.org/viewtopic.php?pid=1191806
 
+
*http://users.utu.fi/sjsepp/hostapd/hostap.html
  
 
##??##
 
##??##
Line 21: Line 281:
 
pacman -Sv netcfg
 
pacman -Sv netcfg
 
pacman -Sv hostapd
 
pacman -Sv hostapd
 +
 +
=Notes=
 +
*http://www.pi-point.co.uk/

Latest revision as of 12:41, 3 March 2013

Just your basic bridge and hostapd setup. I am doing this with a raspberry pi and a alpha AWUSO36NH. One of the biggest issues is understanding the new systemctl methods of archlinux.

I was able to do this just fine but the pi would freeze. Even with a USB hub. I have done some research and found that with the raspberry pi the recommended power adapter is just too light. I have just created some 2A 5v adapters from some parts from digikey. Just a 5v 2A switching adapter of my choosing and a usb cable. Soldered together and works fine.

I want to see if this: https://www.adafruit.com/products/1030 works with hostapd as it is small and has a sma connector. I will be trying this again hopefully with my USB alpha adapters.

hostapd

Concern rests with the file (Most of these are default):

/etc/hostapd/hostapd.conf
interface=wlan0
bridge=br0
#note: madwifi is ath chipsets
driver=nl80211
#logsettings
logger_syslog=-1
logger_syslog_level=2
logger_stdout=-1
logger_stdout_level=2
dump_file=/tmp/hostapd.dump
ctrl_interface=/var/run/hostapd
ctrl_interface_group=0
ssid=BridgeTest
country_code=US
#ieee80211d=1
hw_mode=g
channel=6
#Note: 802.11n builds on the settings above, and adds additional functionality and configuration will come later.
beacon_int=100
dtim_period=2
max_num_sta=255
rts_threshold=2347
fragm_threshold=2346
#no rates enabled = support all
#supported_rates=10 20 55 110 60 90 120 180 240 360 480 540
#no basic rate set = sane default
#basic_rates=10 20
#basic_rates=10 20 55 110
#basic_rates=60 120 240
#Below Applies to 802.11b only
#preamble=1
macaddr_acl=0
#accept_mac_file=/etc/hostapd/hostapd.accept
#deny_mac_file=/etc/hostapd/hostapd.deny
# Both open and shared auth
auth_algs=3
ignore_broadcast_ssid=0
# Low priority / AC_BK = background
#tx_queue_data3_aifs=7
#tx_queue_data3_cwmin=15
#tx_queue_data3_cwmax=1023
#tx_queue_data3_burst=0
# Note: for IEEE 802.11b mode: cWmin=31 cWmax=1023 burst=0
#
# Normal priority / AC_BE = best effort
#tx_queue_data2_aifs=3
#tx_queue_data2_cwmin=15
#tx_queue_data2_cwmax=63
#tx_queue_data2_burst=0
# Note: for IEEE 802.11b mode: cWmin=31 cWmax=127 burst=0
#
# High priority / AC_VI = video
#tx_queue_data1_aifs=1
#tx_queue_data1_cwmin=7
#tx_queue_data1_cwmax=15
#tx_queue_data1_burst=3.0
# Note: for IEEE 802.11b mode: cWmin=15 cWmax=31 burst=6.0
#
# Highest priority / AC_VO = voice
#tx_queue_data0_aifs=1
#tx_queue_data0_cwmin=3
#tx_queue_data0_cwmax=7
#tx_queue_data0_burst=1.5
# Note: for IEEE 802.11b mode: cWmin=7 cWmax=15 burst=3.3
#wmm is needed for wireless n btw
wmm_enabled=1
#
# WMM-PS Unscheduled Automatic Power Save Delivery [U-APSD]
# Enable this flag if U-APSD supported outside hostapd (eg., Firmware/driver)
#uapsd_advertisement_enabled=1
#
# Low priority / AC_BK = background
wmm_ac_bk_cwmin=4
wmm_ac_bk_cwmax=10
wmm_ac_bk_aifs=7
wmm_ac_bk_txop_limit=0
wmm_ac_bk_acm=0
# Note: for IEEE 802.11b mode: cWmin=5 cWmax=10
#
# Normal priority / AC_BE = best effort
wmm_ac_be_aifs=3
wmm_ac_be_cwmin=4
wmm_ac_be_cwmax=10
wmm_ac_be_txop_limit=0
wmm_ac_be_acm=0
# Note: for IEEE 802.11b mode: cWmin=5 cWmax=7
#
# High priority / AC_VI = video
wmm_ac_vi_aifs=2
wmm_ac_vi_cwmin=3
wmm_ac_vi_cwmax=4
wmm_ac_vi_txop_limit=94
wmm_ac_vi_acm=0
# Note: for IEEE 802.11b mode: cWmin=4 cWmax=5 txop_limit=188
#
# Highest priority / AC_VO = voice
wmm_ac_vo_aifs=2
wmm_ac_vo_cwmin=2
wmm_ac_vo_cwmax=3
wmm_ac_vo_txop_limit=47
wmm_ac_vo_acm=0
# Note: for IEEE 802.11b mode: cWmin=3 cWmax=4 burst=102
#wep_default_key=0
#wep_key0=123456789a
#wep_key1="vwxyz"
#wep_key2=0102030405060708090a0b0c0d
#wep_key3=".2.4.6.8.0.23"
#ap_max_inactivity=300
#disassoc_low_ack=1
#max_listen_interval=100
#wds_sta=1
#wds_bridge=wds-br0
#ap_isolate=1
ieee80211n=1
#HT capabilities (tuneme?)
ht_capab=[HT40-][SHORT-GI-20][SHORT-GI-40]
#require_ht=1
#ieee8021x=1
#eapol_version=2
#eap_message=hello
#eap_message=hello\0networkid=netw,nasid=foo,portid=0,NAIRealms=example.com
#wep_key_len_broadcast=5
#wep_key_len_unicast=5
#wep_rekey_period=300
eapol_key_index_workaround=0
#eap_reauth_period=3600
#use_pae_group_addr=1
eap_server=0
#eap_user_file=/etc/hostapd/hostapd.eap_user
#ca_cert=/etc/hostapd/hostapd.ca.pem
#server_cert=/etc/hostapd/hostapd.server.pem
#private_key=/etc/hostapd/hostapd.server.prv
#private_key_passwd=secret passphrase
#check_crl=1
#dh_file=/etc/hostapd/hostapd.dh.pe
#fragment_size=1400
#eap_sim_db=unix:/tmp/hlr_auc_gw.sock
#eap_fast_a_id=101112131415161718191a1b1c1d1e1f
#eap_fast_a_id_info=test server
#eap_fast_prov=3
#pac_key_lifetime=604800
#pac_key_refresh_time=86400
#eap_sim_aka_result_ind=1
#tnc=1
#iapp_interface=eth0
own_ip_addr=127.0.0.1
#nas_identifier=ap.example.com
#auth_server_addr=127.0.0.1
#auth_server_port=1812
#auth_server_shared_secret=secret
#acct_server_addr=127.0.0.1
#acct_server_port=1813
#acct_server_shared_secret=secret
#auth_server_addr=127.0.0.2
#auth_server_port=1812
#auth_server_shared_secret=secret2
#
#acct_server_addr=127.0.0.2
#acct_server_port=1813
#acct_server_shared_secret=secret2
#radius_retry_primary_interval=600
#radius_acct_interim_interval=600
#dynamic_vlan=0
#vlan_file=/etc/hostapd/hostapd.vlan
#vlan_tagged_interface=eth0
#radius_server_clients=/etc/hostapd/hostapd.radius_clients
#radius_server_auth_port=1812
#radius_server_ipv6=1
#WPA SECURITY CONFIG
#RSN(WPA2)
wpa=2
#wpa_psk=0123456789abcdef0123456789abcdef0123456789abcdef0123456789abcdef
wpa_passphrase=secret passphrase
#wpa_psk_file=/etc/hostapd/hostapd.wpa_psk
#wpa_key_mgmt=WPA-PSK WPA-EAP
wpa_key_mgmt=WPA-PSK WPA-PSK-SHA256
#wpa_pairwise=TKIP CCMP
rsn_pairwise=CCMP
##?:
wpa_group_rekey=600
wpa_strict_rekey=1
wpa_gmk_rekey=86400
#wpa_ptk_rekey=600
#rsn_preauth=1
#rsn_preauth_interfaces=eth0
#peerkey=1
#ieee80211w=0
#assoc_sa_query_max_timeout=1000
#assoc_sa_query_retry_timeout=201
#disable_pmksa_caching=0
#okc=1
#mobility_domain=a1b2
#r0_key_lifetime=10000
#r1_key_holder=000102030405
#reassociation_deadline=1000
#r0kh=02:01:02:03:04:05 r0kh-1.example.com 000102030405060708090a0b0c0d0e0f
#r0kh=02:01:02:03:04:06 r0kh-2.example.com 00112233445566778899aabbccddeeff
# And so on.. One line per R0KH.
#r1kh=02:01:02:03:04:05 02:11:22:33:44:55 000102030405060708090a0b0c0d0e0f
#r1kh=02:01:02:03:04:06 02:11:22:33:44:66 00112233445566778899aabbccddeeff
# And so on.. One line per R1KH.
#pmk_r1_push=1
#ap_table_max_size=255
#ap_table_expiration_time=3600
#default wps = disabled
#wps_state=0
#ap_setup_locked=1
#uuid=12345678-9abc-def0-1234-56789abcdef0
#wps_pin_requests=/var/run/hostapd_wps_pin_requests
#device_name=Wireless AP
#manufacturer=Company
#model_name=WAP
#model_number=123
#serial_number=12345
#device_type=6-0050F204-1
#os_version=01020300
#config_methods=label virtual_display virtual_push_button keypad
#pbc_in_m1=1
#ap_pin=12345670
#skip_cred_build=1
#extra_cred=hostapd.cred
#wps_cred_processing=0
#ap_settings=hostapd.ap_settings
#upnp_iface=br0
#friendly_name=WPS Access Point
#manufacturer_url=http://www.example.com/
#model_description=Wireless Access Point
#model_url=http://www.example.com/model/
#upc=123456789012
#manage_p2p=1
#allow_cross_connection=1
#tdls_prohibit=1
#tdls_prohibit_chan_switch=1
#time_advertisement=2
#time_zone=EST5
#interworking=1
#access_network_type=0
#internet=1
#asra=0
#esr=0
#uesa=0
#venue_group=7
#venue_type=1
#hessid=02:03:04:05:06:07
#roaming_consortium=021122
#roaming_consortium=2233445566
#bss=wlan0_0
#ssid=test2
# most of the above items can be used here (apart from radio interface specific
# items, like channel)
#
#bss=wlan0_1
#bssid=00:13:10:95:fe:0b
# ...

Notes

systemctl and the /etc/conf.d dir? I edited dhcpcd and added -t 30

Notes:

    1. ??##
  1. pacman -Sv ifplugd

pacman -Sv bridge-utils pacman -Sv netcfg pacman -Sv hostapd

Notes