[Battlemesh] Extending Eduroam over the community network

leonardo mail at leonardo.ma
Mon Mar 21 10:02:28 CET 2016


On Sun, 2016-02-21 at 00:55 -0800, Mitar wrote:
> Hi!
> 
> Eduroam has some interesting usefulness as a global network and I
> started wondering if it would be possible to add to our nodes Eduroam
> SSID as a parallel SSID. One thing is to do it officially, but could
> this be done unofficially by connecting to an existing AP somehow and
> just bridge everything over? Can this work with 801.2x in place? So
> that
> you would bridge the whole AP network over, including the 801.2x on
> the
> SSID?

I think it is easy o do if you can get a RADIUS key, and thus enter in
the Eduroam network, almost officially. Else, the client connected from
the community network to the 802.1x AP should be able to set-up
multiple EAPOL sessions with the Eduroam AP, each one for a different
client somewhere else in the community network, probably with a spoofed
MAC address and then tunnel it to the real client. Then you have PTK
negotiations that are l-2 packet and you should tunnel them too, per
client... If I understood what you mean, I see it pretty hard to do.

l.
> 
> 
> Mitar
> 



More information about the Battlemesh mailing list