Not to sure if this is possible. I would like to use a RB532 as a wireless AP connecting all workstations in a office forming a WLAN. When these workstations access the internet, I would like them to be directed to the hotspot login page for authentication but only for internet, their current connection to the WLAN should remain unaffected. Is this possible and if so, how?
Yes, it is possible with HotSpot server enabled (default configuration), add local subnet to the ‘walled-garden ip’ list (addresses that should be available without authentication).
confuse, if available without authentication there means connected to hotspot and got internet access
This is very useful option, when you want to provide some resources without authentication (imagine you are ISP and running HotSpot server, probably you want to allow access to your web-page for all connected users, as HotSpot is enabled it is not possible until you are not authenticated, however walled-garden provides you with such option).
On this topic,
My walled garden is working just great for website access.
But my local network windows shares (or other services) has to be reset
every…well, I counted my one service being reconnected 9 times over night.
This is not how it usually run is it? Or is this normal?
Just a noob question - what does the “Src.Address” and “Dst.Address” point to?
I mean, which one is which? If computer A and B is on the same network,
I don’t need to put the local sub on both Src and Dst do I? Cause I tried this too…
ip hotspot walled-garden states for HTTP and HTTPs traffic,
ip hotspot walled-garden ip is used, when you need to specify non-HTTP,non-HTTPs traffic.
Source address is address of the host, which is sending the data, destination address is address of the host, which data is destined to.
Hey there, thank you for that clear description…
So technically speaking, if I put my local subnet (ex. 10.1.1.0/24) in the Src and
in the Dst part of (ip - hotspot - walled-garden - ip list), any thing and every thing
SHOULD be accessible on the local net…? (given I didn’t mess around with the
firewall - like blocking port 445 for instance)
Cause that is what I did and it keeps messing around 
Any ideas?
Yes, packets that are going through the router from client subnet to client subnet should bypass HotSpot authentication.