I use hotspot to cut unidentified users. Hotspot authenticates user by mac, unknown mac’s get to login page, where they have to register using customer id and password. That generally works.
Recently I saw some strange situations:
-
Unidentified user had http connections redirected to captive-portal, but dns and https worked correctly. That user could browse ssl pages and make any non-web connection on 443 ports. I didn’t turn anything similar on.
-
Unidentified user had full internet access. Mikrotiks logs are strange:
Jul 18 10:51:52 89.187.232.23 dhcp,info,debug ether2 assigned 10.2.64.226 to 00:04:61:54:2F:E8
Jul 18 10:51:52 89.187.232.23 dhcp,info,debug ether2 deassigned 10.2.64.226 from 00:04:61:54:2F:E8
Jul 18 10:51:59 89.187.232.23 hotspot,info,debug 00:04:61:54:2F:E8 (10.2.64.226): trying to log in by mac
Jul 18 15:09:37 89.187.232.23 dhcp,info,debug ether2 assigned 10.2.64.226 to 00:04:61:54:2F:E8
Jul 18 15:09:37 89.187.232.23 dhcp,info,debug ether2 deassigned 10.2.64.226 from 00:04:61:54:2F:E8
Jul 18 15:09:42 89.187.232.23 hotspot,info,debug 00:04:61:54:2F:E8 (10.2.64.226): trying to log in by mac
There were no other log entries with this mac address.
Such situations repeat and they concern about 2-5% of all users using this one mikrotik router (up to 10 users of 200). All other users behind this mikrotik had no internet access at all when their mac is unknown.
Had anyone similar behaviour? Does anybody know how to fix it?
Regards,
Gregor