# # AC-Tube default config file # # --------------------------------------------------- # General settings # --------------------------------------------------- # ac_name # The ac name reported by AC-Tube # If ommited ac_name is build from macaddress. # #Default: ac_name = Cisco80 ac_name = "TubesAC" # ac_id # A unique ID for this AC # If not specified, an id is build from macaddress. # # Default: # ac_id = # hardware_version # Hardware version for the AC # If ommited, the hardware version is build from # the underlying OS # # Default: # hardware_version = # software_version # Software version for this AC # If not specified, the compiled in software version is used. # # Default: # software_version = # cisco_hardware_version # Hardware version sent, when AC operates in cisco-mode # # Default: hardware_version = .x01000001 # cisco_software_version # Software version sent, when operating in cisco-mode # # If ommited, the controller sends the same software version # to the WTP as the WTP has sent in discovery or join # request. # # Default: # cisco_software_version = # strict_capwap # # Strict CAPWAP protocol # If set to YES, AC-Tube for example complains about any message # with missing mandatory elements. # # Default: # strict_capwap = on strict_capwap = off # strict_headers # # If set to on, any malformed packets will be thrown away. # # Default: # strict_headers = on # capwap_mode # # can be either "capwap" or "cipwap" # # If mode is set to "capwap", AC-Tube knows only to deal with *real* "CAPWAP" # If mode is seto cipwap, AC-Tube tries to detec the connecting client. So # a Cisco WTP has a chance to connect. For Cisco WPTs this works only in conjunction # with strict_headers = 0 # # Default: # capwap_mpode = capwap # # image_dir # Directorie where firmware images are stored # # Default # image_dir=/tftpboot # use_loopback # # Let AC-Tube also listen on loopback interfaces in auto-detect mode. # Turning this option on makes possibly only sense for some testing purpose. # # Default: # use_loopback = off # --------------------------------------------------- # Network related # --------------------------------------------------- # ipv4 # Use IPv4 protocol # # Default: # ipv4=true # ipv6 # Use IPv6 protocol # # Default: # ipv6=true # listen - Listen addresses # If ommited, AC-Tube tries to find listen addresses by itself. # # If set, the format for a listen address goes as follows: # address:port/protocol # Port or protocol can be ommited. # Examples: # listen = 10.0.3.1:5426/cawap # listens for capwap on 10.3.0.1 port 5426 # listen += 10.3.0.1:8426 # listens for capwap (default) on 10.3.0. port 8426 # listen += 10.3.0.1/lwapp # listens for lwapp on 10.3.0.1 port 12222(default) # listen += [fe80::a00:27ff:fe6b:b8e3%em0]:5426/capwap # yes, its IPv6 # # Currently as protocol only capwap is suppert # # Defalut: #listen = 192.168.0.14 # broadcast_listen - Broadcast listen address # If ommited, the boraadcast listen adresses a determined automatically # Otherwise, for address syntax, see listen. # # Default: # broadcast_listen = # # use_loopback # Include loopback interfaces if listen addresses are auto detected # # Default: # use_loopback = false # --------------------------------------------------- # SSL related stuff # --------------------------------------------------- # dtls_psk # Specify a dtls pre-shared key # # Default: dtls_psk = # ssl_key # Certificate key file # # Default: ssl_key="../../ssl/certs/ac-cisco.key" # ssl_key_pass # Password to unlock key file # # Default: # ssl_key_pass = # ssl_cert # SSL certificate that will be sent to the client # # Default: ssl_cert="../../ssl/certs/ac-cisco.pem" # dtls_verify_peer # Verfify peer's certificate # # Default: # dtls_verify_peer=true # dbg # Set debug level # dbg = info # Show all kind of infos dbg += msg_in # Incomming CAPWAP messages dbg += msg_out # Outgoing CAPWAP messages dbg += msg_err # Be verbose about capwap message errors like re-transmission dbg += msg_dmp dbg += elem_in # CAPWAP message elements dbg += elem_out dbg += subelem # dbg += elem_err # Errors in message elements dbg += elem_dmp # Print hex dump for capwap messages elements dbg += rfc # Show warnings if CAPWAP messages don't conform to RFC dbg += pkt_in # CAPWAP packets received dbg += pkt_out # CAPWAP packets sent dbg += pkt # CAPWAP packets both sent and received dbg += pkt_dmp # Hex dump CAPWAP packets. dbg += pkt_err # Show messages about malformed packets when detected # dbg += dtls # Messages concerning DTLS # dbg += dtls_detail # DTLS in more detail # dbg += dtls_bio # DTLS BIO operations # dbg += dtls_bio_dmp # HeXy dump data in BIO operations dbg += warn # misc warnings dbg += mod # Debugs specific to mod dbg += cfg_dmp dbg += all # # dbg += all # all of the above # dbg += err # Same as dbg_err and pkt_err # # Default: # dbg= # mods # List of modsules to load. These modules asked from left to right, if theay can # handle discovery or jon request messages. The module witch gibves a positive # answer first will handle a connectio. So the ordering is important. # # Default: # mods = { capwap, capwap80211 } # #mods = { cisco, capwap } mods = { cisco, capwap, capwap80211 } #, capwap80211 } mods_dir = ../../lib