I have programmed some automatic billing code for the hotspot login pages and also have it generate a wep key for each MAC that signs up. From there it updates the radio.
My problem is that when hotspot is turned on and you try to use wep at the same time, nothing over port 80 works (possibly others).
I can ping ips and hosts just fine, I just cant hit websites when wep is on. What do I need to do to fix this?
disable web-proxy on the hotspot maybe?
I didn’t even have the web-proxy package installed… any other ideas?
It seems it has to be a firewall ruleset I’m missing or something. I get an IP via DHCP when I have wep enabled, DNS resolves (I can ping ips/hostnames), but when I try to access any other ports it just hangs. I’m not even seeing a connection to radius when I submit my username/pass from the hotspot page. As soon as I disable wep on the hotspot and client it works fine… what am I missing here? Someone please respond, this problem is taking too much time to fix. Thanks.
Why doesn’t anyone have an aswer to this? Sure someone has used wep with hotspot turned on?!
why use wep at all? wep is totally insecure (i think even i could crack it, using the many tutorials on the web 
and old-school. just imho
I just want an answer to my question, you’re stating the obvious… why not post a solution instead?
because the solution doesn’t accomplish the objective, securing data.
You presumptions are fairly rediculous. You have no idea how much traffic is being used with these keys and for how long they’ll be active. Keys can’t be cracked in 1-2 hours when a very minimal amount of packets are being used. When you have one wep key issued per client, only issued for a certain amount of time it’s perfectly fine to use this. Even once someone cracks a key, they won’t be active much longer after that. This is if they crack the key in record breaking time with a very minimal amount of packets to gather dup IVs with.
Everyone knows the wep flaws.
I found the answer: It just doesn’t work with Orinico gold/silver cards (maybe other hermes based cards?). It works fine with all prism chipset based cards. MT is working on this.
v2.9 beta 19 has AP to station wpa working. It still might need some work before it will fit into everybodies network design/config needs. WDS wpa is in the works. But you can test it now. RouterOS doesn’t support Orinoco/Avaya/Proxim cards in AP mode.
John