<font size="3"><b>I am sorry sending a no newline document last time, I send the </b></font><font size="3"><b>document again with the other mailbox.</b></font><br><font size="3"><b><br>I have used 802.1x auth with freeradius-2.1.3,hostapd-0.4.8 and wpa_supplicant-o.4.8 period of time,it's running well.<br>
<br>The network framework was:<br>----------------------------------------------------------------------------------------------------------------------<br></b></font><font size="3"><b>radius server</b></font><font size="3"><b> (</b></font><font size="3"><b>freeradius</b></font><font size="3"><b>)--cisco 3500 switch--a nas device(</b></font><font size="3"><b>hostapd</b></font><font size="3"><b>)--a terminal device(wpa_supplicant)--a computer.<br>
</b></font><font size="3"><b>----------------------------------------------------------------------------------------------------------------------</b></font><br><font size="3"><b>The terminal device could sended a 802.1x auth request to the </b></font><font size="3"><b>radius server by the nas device.<br>
<br>For the safe management, we added the management vlan in the </b></font><font size="3"><b>cisco 3500 switch, the nas device and the terminal device.</b></font><font size="3"><b>The network framework has changed to this:<br>
</b></font><font size="3"><b>----------------------------------------------------------------------------------------------------------------------</b></font><br><font size="3"><b>radius server</b></font><font size="3"><b> (</b></font><font size="3"><b>freeradius</b></font><font size="3"><b>)--(vlan trunk)cisco 3500 switch(vlan id 100)--a nas device(</b></font><font size="3"><b>hostapd,</b></font><font size="3"><b>vlan id 100</b></font><font size="3"><b>)--a terminal device(wpa_supplicant</b></font><font size="3"><b>,</b></font><font size="3"><b>vlan id 100</b></font><font size="3"><b>)--a
computer. <br></b></font><font size="3"><b>----------------------------------------------------------------------------------------------------------------------</b></font><br><font size="3"><b>I can be sucess ping the nas device from the terminal
device before enable 802.1x auth.When I enable the hostapd daemon in
the nas device and enable the wpa_supplicant daemon in the terminal
device, the auth info cann't pass the nas device.<br><br>The hostapd log:<br></b></font><font size="3"><b>----------------------------------------------------------------------------------------------------------------------</b></font><br>
<font size="3"><b>br0: STA 00:0f:1e:00:00:83 IEEE 802.1X: start authentication<br>br0: STA 00:0f:1e:00:00:83 IEEE 802.1X: unauthorizing port<br>br0: STA 00:0f:1e:00:00:83 IEEE 802.1X: EAP timeout<br>br0: STA 00:0f:1e:00:00:83 IEEE 802.1X: aborting authentication<br>
br0: STA 00:0f:1e:00:00:83 IEEE 802.1X: EAP timeout<br>br0: STA 00:0f:1e:00:00:83 IEEE 802.1X: aborting authentication<br>br0: STA 00:0f:1e:00:00:83 IEEE 802.1X: unauthorizing port<br></b></font><font size="3"><b><br>The </b></font><font size="3"><b>terminal 00:0f:1e:00:00:83 auth info can pass the nas device in the no management vlan environment, but failed in </b></font><font size="3"><b>in the management vlan environment.<br>
<br>How to build 802.1x auth in the management vlan environment? Thank you very much!!!</b></font>