Hi, I have a B1300 running firmware v2.264 and I’d like to connect it to my university’s network, but there is no option for WPA Enterprise security in LuCI.
Most guides for other routers suggest removing wpad-mini and installing wpad:
root@OpenWrt:~# opkg update
root@OpenWrt:~# opkg remove wpad-mini
root@OpenWrt:~# opkg install wpad
… but this router doesn’t have wpad-mini and wpad isn’t available. Is it possible to connect this router to a WPA Enterprise secured wifi network?
qcawifi can support wpa enterprise as encryption, with the default builtin qca-wpa-supplicant and qca-hostap,
but currently have no web GUI to set them.
For wpa enterprise client, the following is a uci example for /etc/config/wireless
config wifi-iface ‘sta’
option device ‘wifi0’
option ifname ‘wlan-sta0’
option network ‘wwan’
option mode ‘sta’
option ssid ‘GL-MT300A-6b9’
option encryption ‘8021x’
option eap_type ‘peap’
option identity ‘test’
option password ‘goodlife’
encryption ‘8021x’ is for wpa enterprise.
You may check /lib/wifi/wpa_supplicant.sh and your radius server config for proper option.
config wifi-iface ‘sta’
option device ‘wifi1’
option ifname ‘wlan-sta0’
option network ‘wwan’
option mode ‘sta’
option ssid ‘eduroam’
option encryption ‘8021x’
option eap_type ‘ttls’
option identity ‘myemail@rug.nl’
option password ‘MyPassword’
This should work.
I tested it ok with a default freeradius server setup from Docker Hub
Could you show me debug info of this command,
wpa_cli -p /var/run/wpa_supplicant-wlan-sta0 status
root@GL-B1300:~# ip link show wlan-sta0
14: wlan-sta0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default
link/ether ea:95:6e:44:c0:d1 brd ff:ff:ff:ff:ff:ff
root@GL-B1300:~# ifstatus wwan
Interface wwan not found
uci set network.wwan=interface
uci set network.wwan.proto='dhcp'
uci set network.wwan.ifname='wlan-sta0'
uci set network.wwan.metric='20'
uci commit network
Almost there. It now connects an acquires an IP address, and I can ping from the terminal once I SSH to the router, but the router does not bridge the connection to the wifi network it broadcasts.
Here is the contents of my wireless file (with passwords changed).