Sam Fourman Jr. wrote:
I am looking for ways to Authenticate Wireless users(Windows Xp , Mac
OSX) that connect to a wireless AP (several using OpenBSD's new
Roaming in hostapd) running OpenBSD 4.0
the way i understand it if I use authpf that requires a user to
maintain a SSH session.
is there some reasonably secure solution(for an Exclusively OpenBSD
4.0 on the back end network) that would maybe allow users to login
via a web page portal? LDAP RADIUS maybe?
and a side note Does anyone know is Trunk(4) supports wireless cards
running in hostap mode?
example Failover or loadbalance maybe?
I am Looking for Suggestions
The best option would be to use IPSEC between the clients and OpenBSD
and setup PF on the wireless interface to only permit IPSEC traffic.
The setup provides strong authentication and encryption.
I don't recommend authpf, since all it does is authenticate. Your
wireless traffic is not encrypted. The only other way to encrypt your
traffic would be to use IPSEC or an SSH tunnel (-w option).
