MikroTik

Hello,

I have to block HTTPS connection for costumers that don't pay and redirect every connection to a page that says "You forgot to pay this month" and other things.
How can I do that?

Create group in address list and move customers(who not pay) to this group. In firewall do "redirect" to you web-server with message "Pay for services" .

Please listen to the people saying this is not possible. If anyone could redirect HTTPS, what's to stop anyone on the internet doing that to google or a banking website? Redirecting HTTPS is only possible if you also own all the client devices and have installed a MITM root certificate into the OS. If you try to do it anyway, you will cause users to see security errors in their browser.

If you tell your users to ignore the error, you are training them in the worst possible way as when a legitimate error happens they will happily ignore it and end up with all their data stolen (example). As an ISP you hold a certain amount of responsibility as users will generally believe you to be more technically competent than themselves, don't abuse that by trying to do bullshit things like HTTPS interception.

The correct solution for this use case is to redirect all DNS and HTTP connections to a local site and block internet access. Modern operating systems and phones will recognize this as a captive portal situation and direct the user to the desired page.

Please listen to the people saying this is not possible. If anyone could redirect HTTPS, what's to stop anyone on the internet doing that to google or a banking website? Redirecting HTTPS is only possible if you also own all the client devices and have installed a MITM root certificate into the OS. If you try to do it anyway, you will cause users to see security errors in their browser.

If you tell your users to ignore the error, you are training them in the worst possible way as when a legitimate error happens they will happily ignore it and end up with all their data stolen (example). As an ISP you hold a certain amount of responsibility as users will generally believe you to be more technically competent than themselves, don't abuse that by trying to do bullshit things like HTTPS interception.

The correct solution for this use case is to redirect all DNS and HTTP connections to a local site and block internet access. Modern operating systems and phones will recognize this as a captive portal situation and direct the user to the desired page.

I was looking for the same thing but I think it's impossible to redirect HTTPS.

Sorry about the confusion, I am not asking to or how to block HTTPS, I am asking how can I redirect customers on my network to a website for customers that forgot to pay their monthly payments. Typically this can be done with http, but I am unsure about the procedure on how to create it.