Hi,
I have a short question. I am using IBSS to create batman-adv mesh network. To secure the IBSS, i am using the IBSS key. I noticed that when i am on the mesh network, any device that is not having the key also can ping and iperf to me. I thought IBSS key is supposed to allow only legitimate device. Does anybody know where i do wrong here?.
Rgds, Zack.
Hi Zaki,
On 17/09/14 09:04, Zaki wrote:
Hi,
I have a short question. I am using IBSS to create batman-adv mesh network. To secure the IBSS, i am using the IBSS key. I noticed that when i am on the mesh network, any device that is not having the key also can ping and iperf to me. I thought IBSS key is supposed to allow only legitimate device. Does anybody know where i do wrong here?.
This is more a linux-wireless question other than a batman-adv one. batman-adv itself can't do much in this case since it does not know anything about what is happening on the layers below.
In my opinion you are doing something wrong while setting up the IBSS-RSN mechanism. (I guess you are using IBSS-RSN right ?)
A station not having the correct key should show up in the "station dump" output of the other nodes with the "Authorized" attribute set to "no". Is this the case? If not, then something i wrong with the wpa_supplicant setup.
Cheers,
p.s. I'd recommend CC'ing the linux wireledd mailing list if you have further questions.
Hi Antonio,
Thank you very much for your great support. Ok, now it clear to me that i need to troubleshoot on my IBSS setup rather than batman-adv. I will check again my IBSS-RSN.
Rgds, Zack.
On Wed, Sep 17, 2014 at 3:31 PM, Antonio Quartulli antonio@meshcoding.com wrote:
Hi Zaki,
On 17/09/14 09:04, Zaki wrote:
Hi,
I have a short question. I am using IBSS to create batman-adv mesh network. To secure the IBSS, i am using the IBSS key. I noticed that when i am on the mesh network, any device that is not having the key also can ping and iperf to me. I thought IBSS key is supposed to allow only legitimate device. Does anybody know where i do wrong here?.
This is more a linux-wireless question other than a batman-adv one. batman-adv itself can't do much in this case since it does not know anything about what is happening on the layers below.
In my opinion you are doing something wrong while setting up the IBSS-RSN mechanism. (I guess you are using IBSS-RSN right ?)
A station not having the correct key should show up in the "station dump" output of the other nodes with the "Authorized" attribute set to "no". Is this the case? If not, then something i wrong with the wpa_supplicant setup.
Cheers,
p.s. I'd recommend CC'ing the linux wireledd mailing list if you have further questions.
-- Antonio Quartulli
b.a.t.m.a.n@lists.open-mesh.org
-
Antonio Quartulli -
Zaki