Sorry for the simple questions, I am still getting use to MIkrotik. I have a small WISP which I have the hotspot feature running.
I would like to be able to have regular users log in without the hotspot feature and . I would like to have it set so I can fix the IP addresses and MAC address.

Can someone direct me where to look for these settings?

I am using v 2.8.28

Jeff Kratka

1) you may use ARP table with arp=reply-only on interface, and IP addresses and MAC-addresses binded in static ARP table, another scenario to use firewall rules.

2) HotSpot is a very advavanced method of local users authentication,
another scenario setup PPPoE server for router local interface, clients will be PPPoE clients.

1) you may use ARP table with arp=reply-only on interface, and IP addresses and MAC-addresses binded in static ARP table, another scenario to use firewall rules.

Do I do this with the hospot feature also. I would like to be able to limit bandwidth usage also.


2) HotSpot is a very advavanced method of local users authentication,
another scenario setup PPPoE server for router local interface, clients will be PPPoE clients.

To keep the Hotspot feature running which would be the better and easiest setup.

Jeff Kratka

I can't really understand your question, however you may use HotSpot MAC-authentication method.
User will not be required to type login and password, but his MAC-address will be used automaticaly as username, description here:
http://www.mikrotik.com/docs/ros/2.9/ip ... 2166439034
Is it suitable for you ?

I can't really understand your question, however you may use HotSpot MAC-authentication method.
User will not be required to type login and password, but his MAC-address will be used automaticaly as username, description here:
http://www.mikrotik.com/docs/ros/2.9/ip ... 2166439034
Is it suitable for you ?

Sorry about that. With the hotspot feature running (which I like very much and has lots of features), is there a way to add it where regular customers would not need to keep adding in their username and password. I have a 24 hour cookie but I have some people that get upset that they have to re-type in their information (I know it's odd but some people are lazy)
If I add the IP address and the MAC address to the ARP list do I also have to add this information to the Hotspot user list?

Jeff Kratka

The 2.9 (!) hotspot does provide a feature called "ip binding".
This let's you enter IP addresses and/or MAC addresses that should bypass the hotspot, i.e. no hotspot authentication at all.

Does that sound like what you want?

Best regards,
Christian Meis

The 2.9 (!) hotspot does provide a feature called "ip binding".
This let's you enter IP addresses and/or MAC addresses that should bypass the hotspot, i.e. no hotspot authentication at all.

Does that sound like what you want?

Best regards,
Christian Meis

Yes it does. Can v2.8.28 do this also? Last time I went in and tried to update my version everything got messed up. I was going to try to stay with my current version.

Jeff

Sorry, the 2.8 hotspot does not have this feature. You can try to get around it by mangling the packets from your "bypass-customers" with a mark of "hs_auth" (I think - 2.8 is gone in my mind please check the manual or the firewall rules created by hotspot in 2..
This will let the RouterOS machine think those clients ARE authenticated...

Best regards,
Christian Meis

Sorry, the 2.8 hotspot does not have this feature. You can try to get around it by mangling the packets from your "bypass-customers" with a mark of "hs_auth" (I think - 2.8 is gone in my mind please check the manual or the firewall rules created by hotspot in 2..
This will let the RouterOS machine think those clients ARE authenticated...

Best regards,
Christian Meis

Ok, is there another way to do it and keep the hotspot feature running also, in v2.8.28?

Jeff Kratka