Hotspot security bypass

redsalamander · December 6, 2012, 9:19am

I set-up a Hotspot and it seems to be working great.

Now they have posed a challenge the owner lives on-site and her access is from behind the guest network via a AP that is connected to the hotspot port.
getting her on the internet should not be a problem I will simply create a unlimited login.
However the network behind the hotspot hosts their LAN with accounting mail server etc.

How do I create a way for her to login via the hotspot port and get to the network I’ve essentially set to not be accessible.

I’m thinking the best way would be based on her MAC.

But what is the best method to accomplish this.

cbrown · December 6, 2012, 1:31pm

I think the best way would be to create a vlan for the private network and then create a virtualAP that is bridged with the vlan.

redsalamander · January 22, 2013, 12:58pm

Ok That sounds good.

How would I go about doing so.

I can’t make head of tails of what I’m trying to accomplish.
And how do I stop everyone else from gaining access to the network?

SurferTim · January 22, 2013, 1:18pm

If you need to bypass all behind her router, use ip binding.

/ip hotspot ip-binding
add mac-address=xx:xx:xx:xx:xx:xx type=bypassed

You could use the ip also, but that may change unless you assign the dhcp server to use that as a static issue for that mac address.