802.1x feature in v23

Discussion in 'DD-WRT Firmware' started by Fman99, Dec 6, 2005.

  1. Fman99

    Fman99 Network Guru Member

    Using the 3-12-05 build on my WRT54G v2. There is a feature on the Services tab for 802.1x. The help menu indicates that this feature is to serve as an authentication server for wireless radius (I don't have the exact wording as I'm at work right now). I have mine enabled but there are no settings for it.

    My question: shouldn't I be able to set a shared secret for my NAS, which I would then also set up in the Wireless Security tab for WPA RADIUS or WPA2 RADIUS? There is only an enable button and that's it for the 802.1x service.

    I'd like to be able to run RADIUS but I don't want to give up all the features of DD-WRT to run TinyPeap...
  2. Fman99

    Fman99 Network Guru Member

    Correction, the link is under Administration -> Management. It also occurred to me that if this was a built in 802.1x server you'd need a spot to add usernames/passwords...
  3. Lazybones

    Lazybones Network Guru Member

    I haven't tried to set it up, but you need an external RADIUS server to handle the user authentication aspect. There are some threads on it in this forum.
  4. Fman99

    Fman99 Network Guru Member

    Right... but the help menu indicates that this 802.1x feature is to act as a stand-alone service for WPA (that is, not with a PSK). So I am confused as to why it's there if there are no configuration options.
  5. 4Access

    4Access Network Guru Member

    It doesn't explicitly say WPA-PSK but I believe that's what it's there for. There's no RADIUS server build into DD-WRT.
  6. cgondo

    cgondo Network Guru Member

    if you want built in RADIUS then try tinyPEAP
  7. Fman99

    Fman99 Network Guru Member


    Well the whole idea is that I like DD-WRT's added functionality and various perks far more than I want to be able to run WPA-RADIUS. I figure that between using WPA2-AES with a 20 character random preshared key and also running PPTP, I am pretty much locking down my wireless traffic beyond anyone's ability to crack it. Encrypted at layer 2 and 3. And besides, I live in a neighborhood where there does not seem to be any other 802.11 traffic (at least none that Kismet will see).

    Part of the problem also is that there are no simple and free RADIUS programs to be run on Win XP. I have tried WinRADIUS without success, and some others as well.

    I just wondered why DD-WRT software had a feature called '802.1x' which is described as being something to use to get my clients to run WPA, if it is in fact not a stand-alone RADIUS server.
  8. 4Access

    4Access Network Guru Member

    www.radiuz.net might be worth a look if you haven't checked it out already.

    I haven't used WinRADIUS but I just downloaded it and it looks interesting. I might try setting up a RADIUS server and then write up a mini howto if I get it working. What other RADIUS software have you tried?
  9. Fman99

    Fman99 Network Guru Member

    I tried WinRadius, and a program called radl.exe from LoriotPro. Also the Windows version of FreeRADIUS and the WinBinary of TinyPEAP. All to no avail.

    I signed up for Radiuz.net last night though and that did the trick. And while their site doesn't say so, they do seem to support WPA2/AES keys and not just TKIP.

    Thanks for the help!
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice