On Aug 6, 2019, at 10:53 AM, Flole <flole@xxxxxxxx> wrote: > > Thanks for your fast answer! > > So it is normal that during the EAP Handshake an unencrypted SIP Packet (this is a Softphone connecting to a PBX) originating from the PBX targeted to the wifi device that is currently in Authentication shows up unencrypted on air, revealing the IP Address of the PBX, the Username of the Device aswell as other details that are part of this packet? I don't think so... That shouldn't happen. Pretty much ethernet traffic to the device should be blocked until the device is authenticated. There are some caveats with wired connections, but that's basically true. > I understand that EAP is mostly unencrypted (thats "management traffic" in my opinion), however data traffic should *never* be unencrypted and there should not be any data traffic until the Handshake is finished. Yes. Alan DeKok. _______________________________________________ Hostap mailing list Hostap@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/hostap
