As the title states, I am having an issue marking hotspot user traffic with the packet marking option in the user profile. Essentially what I am trying to do is dynamically mark hotspot user traffic so that I can add it to a custom queue and limit the bandwidth.
I have a RouterBoard 450G w/fresh install & hotspot configured and working as you can see here:
I have updated the hotspot user profile to include incoming and outgoing packet marks. After doing this the router dynamically creates packet markers in mangle after the user logs in but they are not matching any traffic:
I noticed that these dynamic rules are using the “hotspot” chain instead of the “forward” chain so to test and see if these rules would work properly I simply opened them up, selected copy, changed the chain to “forward”, and applied them. As you can see, they immediately started marking traffic from the client and could be used in queues to manipulate a user’s traffic.
I have also tried changing the following in an effort to get this to work to no avail:
Tried all three available versions of RouterOS (4.17 / 5.24 / 6.0rc11) and all have the same results.
Tried creating another user profile and configuring the user to use this one in case the “default” user profile was the issue.
Tried manually creating mangle rules with “hotspot” typed into the chain field to see if these rules would match traffic. They would not.
Tried eating some grilled chicken and mushrooms. This did not help but was very tasty.
Ah hah! The solution is quite simple really… since the hotspot is producing mangle rules that are in the “hotspot” chain I just had to setup a jump rule in mangle using the forward chain and a jump target of “hotspot”. Since I didn’t want the router to have to analyze every single packet, I also added an address list name in the hotspot user profile and then used this list in the jump rule to qualify matching traffic.
Two jump rules were used, one for uploading and one for downloading. Thanks Sergejs for the help with this!
I have a set-up similar to this and have used your jump idea.
Next I need to redirect those users from the specific Hotspot profile to a seperate port2 Gateway. (other hotspot users will go through normal port 1 gateway).
I have tried adding in a mangle rule (using various chains) with ‘mark routing’ to the 'HospotUsers2" seperate route but the mangle rule is not getting any traffic.
I was exploring the Incoming/Outgoing filter and Incoming/Outgoing Filters options in the hotspot user profile. Are they different ways of achieving the same thing? I want to integrate MT Hotspot with PCQ Queues with multiple rate traffic control.
I have a hotspot offering 1mbps and 512kbps speed tiers. How can i use the Incoming/Outgoing Packet Mark to mark the two packet types separately so that I can limit each profile users bandwidth with PCQ Queues?
Or can i create PCQ queues and queue trees and reference them in the Incoming/Outgoing Filters in the hotspot profile to do the same thing?
