I need a solution to kick certain MAC addresses out of my WiFi network from time A (let’s say 22:00) to time B (6:00). I cannot stop forwarding their packets using IP filter rules as my AP (hAP lite) is in bridged mode (was set to bridged mode by my ISP, because I have a directional radio connection to my provider).
When I had a look at the settings of my device, I figured out that I could deny those devices’ access by adding them to the Wireless Access List and just saying “authentication=no” with the command
/interface wireless access-list set 0 authentication=no
Is it possible to somehow automate that command base on current time by means of scripting or do you maybe know a better solution in my case?
If it was me you tried to kick out, I just change my mac address.
That I also do on the airport when 30 min free internet runs out. Change mac, get 30 min more.
There is the “time” option in the access list itself.
You can have default-authenticate=yes and add some rules, that won’t allow authentication in the needed time window.
Isn’t this the thing that “kid control” tries to solve? It should be easy to configure it.
Also, the original assumption that you cannot use IP rules because it is bridged, is not valid. You can set an option in the bridge menu to apply the IP firewall to bridged traffic.
(first setup suitable firewall rules before you enable that)
