Appreciated. That is working now fine.
Now. When I repeat the wireless network from the Mikrotik with a Tender Router, I get the error below when I try to submit to the captive portal while the wifi from the Mikrotik is authenticating correctly on the captive portal.
Error: Web browser did not send challenge response (try again, enable JavaScript)
The interesting and critical word here is "repeat".
There are many repeater/extender/booster executions possible.
-Some will do ISO 2.5-level bridging (MT calls this "pseudobridge"), that is, replace the MAC address from the client (destination) with the MAC address from the "repeater", because wifi (IEEE 802.11) protocol per default only uses 3 MAC addresses, but this connection requires 4: source - sender - receiver- destination. It's imperfect and many things can go wrong.
-Some will just do a full gateway function (router with SRC-NAT or masquerade), replacing IP address and corresponding MAC address in the clients request. But client is on a different network then, so multicasts and broadcasts may not be forwarded.
- In both cases the MAC based authentication of the client will be confusing. Mostly ALL clients behind the 2.5 bridge or gateway are authenticated at once, as they all use the same MAC address towards the portal.
- In both cases the client device is not reachable from the portal, until after a first transmission., which will define the proper return path in the "repeater".
- Some repeater may do proxy-arp or other tricks. I have no idea how "Tender Router" works here.