Is there anyway to prevent the Hotspot from redirecting all DNS requests to the DNS cache short of deleting the dynamic firewall rule? Is it possible to add this option to the Hotspot in the future? Say, and option during the Hotspot setting asking “Use local DNS cache?” like with 2.8.
Starting from version 2.9.19 it will be possible to override hotspot dynamic
firewall rules. To use client’s DNS server instead of local dns cache, add
following rule:
/ip firewall nat add chain=pre-hotspot protocol=udp dst-port=53 action=accept
However, keep in mind, that each of those rules have some meaning. If
something is changed there, some hotspot functionality can be broken.
For example, if local dns cache is not used by hotspot clients, following
features will not work anymore:
- “/ip hotspot walled-garden” by dst-host for https sites;
- “/ip hotspot profile” dns-name will not work automatically - if specified, must resolve to hotspot-address from the same profile;
This is great news! While there are ways around the dynamic rules, I’ve still found a few cases where I’ve wanted to put jumps or rules in before the dynamic rules which is problematic after a reboot. Thanks for mentioning the issues with disabling DNS. Even more thanks for changing the dynamic rules in the next release 
This is an good news to us, by the way , can i override the dynamic rules for the following purpose?
I want to setup some ip range don’t catch by hotspot , this means the hotspot can’t see this ip address range , so these ip address will not control by hotspot
Thanks a lot~! I LOVE ROS
That should be the ip binding feature of hotspot - there you can configure it to allow some addresses to bypass the hotspot…
Best regards,
Christian Meis