Layer 7 before hotspot

Hi,

I have always gotten a lot of problems with users connecting to a hotspot who are using non-standard ports for proxies connecting behind a hotspot.

I assume this happens because in the hotspot only a few ports are forwarded to the hotspot servlet. I understand that it will impact performance heavily if I send all ports to the servlet but will it be possible to make a layer 7 rule that catches all HTTP traffic and forward it to the hotspot, that way no matter the port the user uses it should work fine.

I tried but was unsuccessfull

add action=redirect chain=hs-unauth comment=“L7 Http Redirect” disabled=no layer7-protocol=http protocol=tcp to-ports=64874


Is this even possible?

I have always gotten a lot of problems with users connecting to a hotspot who are using non-standard ports for proxies connecting behind a hotspot.

Please clarify your problems, as far as I know HotSpot should redirect any port to HotSpot servlet.

basically some users with proxies configured in their browsers do not get redirected, until we manually switch the proxy off

I guess you need to make support output file and send it to MikroTik support department (support@mikrotik.com), specify IP addresses of clients that get access without Hotspot authentication.