Hi

In order to use UM for Wireless Users do I need a separate RB (for example an RB750) as well as (my) RB411AR?

My current setup is a RB411AR (with R52Hn card) that connects to an IPCOP firewall that in turn connects to an ADSL modem. RB411AR is setup in ap bridge mode with wlan2 and ether1 bridged, clients authenticate using WPA2 PSK (aes as I discovered wireless n wouldn't work with tkip only.)

The reason I use this setup is because IPCOP has an addon (Traffic Control and Reports) that I use to monitor my 10 wireless clients (pc's / laptops) internet usage as well as send them usage reports once a day.

I would like to replace IPCOP with User Manager and instead of emailing them usage reports allow them to check their own usage on a webpage they can view but not edit.

Can I replace ipcop with UM and achieve the above?

New to MT so any help very much appreciated / have used the following link as a guide

http://wiki.mikrotik.com/wiki/User_Mana ... ss_Example

Thanks.

Hi
yes, you can connect your ADSL modem directly to your RB411AR on it's single Ethernet port(you loose your direct access to RB,but if your ADSL modem have more than 1 port it's OK), but you need to unbridge wlan2 and ether1 because you want to use UM.
About usage reports, each user can login to user page(http://wiki.mikrotik.com/wiki/User_Mana ... to_find.3F) and see the reports without permission to change it.

If you need more help, Do not hesitate to contact me.

Thanks for the quick reply.

My question on weather or not I need a separate RB (i.e RB750) from my AP (RB411AR) stems from my not understanding the following extracts from http://wiki.mikrotik.com/wiki/User_Mana ... ss_Example

"Note, first local router database is consulted, then User Manager database.

Are "local router database" and "User Manager database" on separate RB's? or can they both to be found on my RB411AR?

"Wireless client will be unable to connect to Access Point, if Access Points router does not contain any entry in the 'interface wireless access-list' for the particular configuration"

Does "Wireless Client" refer to one of the 10 PC's / laptops connecting to my RB411AR AP?

What do they mean by Access Points Router i.e (again) is that a separate router form my 411AR?

I understand the above will use MAC authentication rather than WPA / WPA2; is this a lot less secure and allow hack by MAC spoof?

My understanding based on the wiki example and your (very much appreciated) response is that I can;

1) Remove IPCOP from my setup

2) Connect my RB411AR directly to my ADSL (4port) Modem

3) Unbridge wlan2 and LAN

4) Set my ADSl modem to bridge mode and dial using PPPoE from RB411AR? Or dial from Modem and let RB get IP via DHCP?

5) Follow the instructions in the above wiki example where after users who's MAC addresses have been correctly added will be able to authenticate , be authorized and their have their usage accounted for.

Thanks again.

Hi,
About first question, yes the local database and the UM can be on the same Router. To do this just go to radius and add a server with 127.0.0.1. Also you need to upload user-manager package to your router.Notice that you should check your Router license level. Go to http://wiki.mikrotik.com/wiki/Manual:License and you will see for example in level 4 license you can have maximum 20 User manager active sessions.

About wireless clients, you can either authenticate them with mac address or allow them to connect via PPPoE connection. If I want to setup such network, I prefer to create a Hotspot server. http://wiki.mikrotik.com/wiki/Hotspot_server_setup. It's really easy for both admin and also users. let me describe, everyone can connect to AP but when open browser a webpage comes in and say give your username and password.
Just read about it and then make your decision.
In future, I'm ready to help you if there is any problem.