Hotspot for specific IP's only

undecided · February 7, 2014, 8:26am

Hi all,

I have a mikrotik that is configured with PCC, four WAN links, NAT’ing private to public. No hotspot.

I’m a WISP, and up until now when a customer does not pay their bill I simply cut their internet connection. What I would like to do is redirect all their http to my website where I will have a page that tells them that they haven’t paid, then give them the walled garden access to paypal where they can settle their bill.

Now, I know I will have to setup hotspot to do this, however I do not want any users to see a hotspot login page, I just want to be able to stipulate that a specific IP be directed to my “not Paid” webpage, and then have a link to paypal for them.

Is this doable? I’m basically looking for an overview of how it would be done.

Thanks

undecided · February 13, 2014, 2:25pm

Ok, so after further testing I am able to configure a transparent web proxy and then create a DST NAT for a particular IP to be redirected to my proxy, at which point i redirect them to my payment reminder…works great.

BUT

On my production router I have 4 WAN PCC, and the only way to get a transparent proxy working with PCC is by marking connections in the output chain, as per http://www.syedjz.com/mikrotik-webproxy-with-pcc/

But my understanding is that this will then push ALL HTTP through the proxy? Since I only want to generate a payment reminder every 4 hours..or redirect them to a payment page i don’t want to send all HTTP through the proxy.

Is there another means to accomplish this? If I have to send all HTTP through the TransProxy then how much CPU overhead can I expect with 400+ users behind a RB1200? Will it manage?

Any help or guidance much appreciated.

undecided · February 14, 2014, 6:48pm

Anyone interested in lending me some direction here please?

undecided · February 19, 2014, 12:51pm

OK, simpler request here, there are a few posts on how to configure PCC with Proxy… none seem to work very well, when it does work, I get half the webpage loading and page loading takes quite some time.

So I currently have PCC using “src-address” as the classifier.

Is there no simple way to redirect per IP address to the proxy? i.e. create a mangle rule for the specific IP address and change the connection mark or the routing mark? Which will then allow me to successfully redirect that specific IP address to the proxy?

SurferTim · February 19, 2014, 1:01pm

You can change the user profile of the user to use the proxy. Would that be acceptable?

/ip hotspot user profile
add name=nopay transparent-proxy=yes

Then change the user to the profile nopay when they don’t pay in “/ip hotspot user” or send “Mikrotik-Group = nopay” from a RADIUS server.

undecided · February 19, 2014, 1:04pm

Thanks but I do not use a hotspot.

SurferTim · February 19, 2014, 1:13pm

And you do not want to use the proxy?