can any one write a script which checks for connected wireless users on a particular interface whose hardware frames=frames count *3 for about 15mins
no one knows this
no reply yet??
It was a holiday weekend for many.
Something like this… I have not tested this as I don’t use it for wireless, nor have the hardware to test it. It also doesn’t ban them for 15 minutes. I’d have to look into the best way to do that. I “think” the way to do that would be to add them to an access-list and have a time in the comment and then loop through them… but thats just my initial take. I’d have to play around with that a bit.
#.* by RouterOS
/interface wireless registration-table {
:foreach i in [find] do={
:local myHardwareFrames [:pick [get $i hw-frames] 0]
:local myFrames [:pick [get $i frames] 0]
:if ($myHardwareFrames = ($myFrames * 3)) do={
remove [find mac-address [get $i mac-address]]
}
}
}
i have them already in access list
just need to remove authentication for them for say 15 mins one the rule is satisfied
not sure what your main aim is - but you could attempt to add them to the address list via firewall rule as that way you can create dynamic entries, and these entries will have timeout value and items will time out automatically. So no script is required only placement of firewall rules that will allow access to certain resource or not.
Something along the lines of “port knocking”. You can look up examples here in the forums.
what i am trying to do is as bellow
sometimes packet fails for wifi users and the AP is retying to resend them so consuming more time from AP and also slowing down the network
what i want is the users with more packet retry should be banned for some time