i notice that when i restart my router and their is client who use internet

he get out from my active users until he make login again but when he is out

their is alot off connection that made from this user and it affect on router load as it marked on firewall by TCP state as close



how could i drop this close connection from clients whom they aren't use the net and allow only for established connection with authorize users??

my router is Mikrotik 3.30 with hotspot

lan ip 50.60.70.0/24
wan ip 10.20.30.9/24

Closed connections will automatically fall out of the connection table after a short time.

You can't enforce there just being established connections. There are states before "established", if you don't allow those states no connections can be made at all. You also can't enforce just logged in users creating connections. They need to create connections the router can use to show a log in page, after all.

If you're having a problem with clients generating too many sessions, you can always set up a firewall rule that will limit the number of allowed TCP sessions. This has to be a reasonable number however, for example, on most of our hotspots we have a TCP limit set to 200 sessions at a time, but some of them go up to 400 depending on the needs of the network.