Please help me. I installed Mikrotik RB1100ahx2 and set up a hotspot for my office. My internal address is 192.168.1.x/24
Then, I set gateway to 192.168.1.1 and DNS to 8.8.8.8 and 8.8.4.4
According to my conventional knowledge. If my computer at 192.168.1.3 accesses web server at 192.168.1.4, it can just access right away. In my case, it cannot. It has to fill the password from the hotspot portal first.
How can I make users to always login to hotspot portal ONLY if they want to access external IP and not the internal IP??
Last I checked, this is caused by the hotspot interface doing a 1:1 NAT on all localnet devices. Whatever IP you try to connect with on the localnet, the hotspot intercepts that attempt.
Try disabling that 1:1 NAT. Everything else should still work ok, but any device connected to the hotspot interface with an IP out of the localnet range will not have internet access.
Can you tell me how to do this on winbox? I am still newbie. What I did for now is by setting walled garder list and set the source address and dest host with internal network address and set to pass the connection. Is this correct. Your way seems better to me. But please tell me how to do this on winbox.