Annotation of src/etc/hostapd.conf, Revision 1.5
1.5 ! reyk 1: # $OpenBSD$
! 2: # sample hostapd configuration file
! 3: # see hostapd.conf(5)
! 4:
! 5: # "wavelan is a battle field"
! 6:
! 7: #
! 8: # Macros
! 9: #
! 10:
! 11: # Define macros for the interfaces to be used by hostapd. The "wlan"
! 12: # interface is optional.
! 13: wlan="ath0"
! 14: wired="sis0"
! 15:
! 16: #
! 17: # Tables
! 18: #
! 19:
! 20: # Define the MAC addresses (BSSIDs) for your accesspoints in a table.
! 21: table <myess> {
! 22: 00:90:4b:0d:fd:c8,
! 23: 00:02:6f:21:ea:8b
! 24: }
! 25:
! 26: # Address masks are providing a simple way to match by MAC vendor ID.
! 27: #
! 28: # table <senao> { 00:02:6f:ff:ff:ff & ff:ff:ff:00:00:00 }
! 29:
! 30: #
! 31: # Global options
! 32: #
! 33:
! 34: # Uncomment this option to run hostapd in passive IAPP monitoring mode.
! 35: set hostap interface $wlan
! 36:
! 37: # Should be the default, the opposite is "pcap" without radiotap headers.
! 38: set hostap mode radiotap
! 39:
! 40: # According to the revised standard, multicast is used. hostapd supports
! 41: # broadcast for IAPP messages as well.
! 42: set iapp interface $wired
! 43: set iapp mode multicast
! 44:
! 45: #
! 46: # Event rules
! 47: #
! 48:
! 49: # Log probe requests
! 50: hostap handle type management subtype probe request \
! 51: with iapp type radiotap
! 52:
! 53: # Log and annoy foreign accesspoints
! 54: #
! 55: # This will be logged as well but the important thing is to
! 56: # annoy other accesspoints in your wireless territory.
! 57: hostap handle type data bssid !<myess> \
! 58: with frame type management subtype deauth reason auth expire \
! 59: from &bssid to ff:ff:ff:ff:ff:ff bssid &bssid
! 60:
! 61: # The first deauth example will not work with some newer stuff, like
! 62: # iwi(4)/ipw(4) "centrino", because they ignore management frames to
! 63: # the broadcast address as a countermeasure against the "void11"
! 64: # attack.
! 65: #
! 66: # hostap handle type data bssid !<myess> \
! 67: # with frame type management subtype deauth reason auth expire \
! 68: # from &bssid to &from bssid &bssid
! 69:
! 70: # Finally log any rogue accesspoints limited to every second.
! 71: # The skip keywords instructs hostapd to ignore further IAPP
! 72: # processing.
! 73: hostap handle skip type management subtype beacon bssid !<myess> \
! 74: with iapp type radiotap limit 1 sec