[Chilli] using coovachilli with wpa

Tekán Dávid tek.david at gmail.com
Wed Jul 24 17:41:31 UTC 2013


Hi all!

I set up a coovachilli + freeradius + mysql combo at my dorm. It's
working great with the wired network. Now we want to extend it to the
wireless as well. Installed an access point configured to wpa2
enterprise (with the same radius server) and connected to the
coovachillis's lan side. It can authenticate users and do the process
fine, but when i want to connect to the internet, i get redirected to
the coovachilli's captive portal.
I've read about the wpa guest config parameter, but i don't want to
let users without sufficient credentials to connect, and reach any of
my device (neither the captive portal nor the webpages which I allowed
with uam_allow).

So is there a way, that the users, who authenticated successfully
through wpa2 (peap + mschapv2) do not need to reauthenticate at the
captive portal page (and not let users who failed at wpa2 to try to
authenticate themselves on the captive portal).

Thanks for all the reply, all the best

Dávid


More information about the Chilli mailing list