Annotation of src/etc/hostapd.conf, Revision 1.6
1.6 ! reyk 1: # $OpenBSD: hostapd.conf,v 1.5 2005/09/29 23:24:56 reyk Exp $
1.5 reyk 2: # sample hostapd configuration file
3: # see hostapd.conf(5)
4:
5: # "wavelan is a battle field"
6:
7: #
8: # Macros
9: #
10:
11: # Define macros for the interfaces to be used by hostapd. The "wlan"
12: # interface is optional.
13: wlan="ath0"
14: wired="sis0"
15:
16: #
17: # Tables
18: #
19:
20: # Define the MAC addresses (BSSIDs) for your accesspoints in a table.
21: table <myess> {
22: 00:90:4b:0d:fd:c8,
23: 00:02:6f:21:ea:8b
24: }
25:
26: # Address masks are providing a simple way to match by MAC vendor ID.
27: #
28: # table <senao> { 00:02:6f:ff:ff:ff & ff:ff:ff:00:00:00 }
29:
30: #
31: # Global options
32: #
33:
34: # Uncomment this option to run hostapd in passive IAPP monitoring mode.
35: set hostap interface $wlan
36:
37: # Should be the default, the opposite is "pcap" without radiotap headers.
38: set hostap mode radiotap
39:
40: # According to the revised standard, multicast is used. hostapd supports
41: # broadcast for IAPP messages as well.
42: set iapp interface $wired
43: set iapp mode multicast
44:
45: #
46: # Event rules
47: #
48:
49: # Log probe requests
50: hostap handle type management subtype probe request \
51: with iapp type radiotap
52:
53: # Log and annoy foreign accesspoints
54: #
55: # This will be logged as well but the important thing is to
56: # annoy other accesspoints in your wireless territory.
57: hostap handle type data bssid !<myess> \
58: with frame type management subtype deauth reason auth expire \
59: from &bssid to ff:ff:ff:ff:ff:ff bssid &bssid
60:
1.6 ! reyk 61: # The first de-auth example will not work with some newer stuff, like
1.5 reyk 62: # iwi(4)/ipw(4) "centrino", because they ignore management frames to
63: # the broadcast address as a countermeasure against the "void11"
64: # attack.
65: #
66: # hostap handle type data bssid !<myess> \
67: # with frame type management subtype deauth reason auth expire \
68: # from &bssid to &from bssid &bssid
1.6 ! reyk 69:
! 70: # Detect flooding of management frames except beacons.
! 71: # This will detect some possible Denial of Service attacks
! 72: # against the IEEE 802.11 protocol (like "void11").
! 73: hostap handle skip type management subtype ! beacon \
! 74: with log \
! 75: rate 100 / 10 sec
1.5 reyk 76:
77: # Finally log any rogue accesspoints limited to every second.
78: # The skip keywords instructs hostapd to ignore further IAPP
79: # processing.
80: hostap handle skip type management subtype beacon bssid !<myess> \
81: with iapp type radiotap limit 1 sec