At first, what I have running:
I have a mesh wireless network running, with wpa-2 enterprise (username/password) loggin, users are stored in a FreeRadius (MySQL backend).
HostAPd it's being used to provide users an wireless network to connect to. HostAPd roaming is running too.
IBSS links are made with iw interface. So these links aren't secure and no MIMO or HT40 is used.
What I need:
1-. I need to assign HostAPd clients the vLan definend in FreeRadius. It must be dynamically assigned.
2-. The traffic go through the mesh network to a gateway-node, behind that gateway-node there's a firewall. The traffic that arrives to that firewall from the network mesh MUST be vlan tagged to filter it.
3-. DHCP pools per vLan (dnsMasq).
4-. Links between nodes must be done with wpa_supplicant. IBSS RSN and HT40 are a MUST.
I'll provide graph to explain all of this asap.
This project is divided