I want to create a wifi hotspot that is in a truck stop. The truckers will pay for access by the day. The users will rarely repeat so the hotspot functions in the rb133 will not work. I have a web page that can modify the config of the rb133.
I planned to use something like:
ip firewall filter add chain=mc action=jump jump-target=allow_access n-interface=wlan1 src-address=10.22.46.254 src-mac-address=MAC_OF_MACHINE
ip firewall filter add chain=sn action=jump jump-target=login in-interface=wlan1 src-address=10.22.46.254
ip firewall filter add chain=allow_access action=masquerade
ip firewall filter add chain=login action=dst-nat src-address=10.22.46.0/24 dst-port=80 to-address=192.168.0.7 to-ports=80
If the MAC_OF_MACHINE the router matches it allows the system to masquerade. If the MAC does not match it falls through and allows only access to the login system where the user types in a password into a web form. If there is a match ( random generated and stored in a mysql database ) the ip is matched with the MAC in the rb133 dhcp-server lease and the MAC_OF_MACHINE in the line is modified.
I have currently, because of time constraints, been working on temporarily using 2 routers with a iptables solution on the web server. Any time there is a change in the config ( timeout or new account ) I regen the /etc/inid.d/iptables file and rerun it.
I have tried it several ways and none work.
I will make the php code available to the Mikrotik wiki when I get it working.
