Logging traffic when hotspot enabled issue ..

Hi there,

I’m currently working on a best way of logging tcp/udp traffic for hotspot users, and got a small issue, with the firewall rules ..

I can log traffic with those rules no problem, shows all the connections with “new” state:

 0   chain=forward action=log connection-state=new protocol=tcp src-address=192.168.1.0/24 log-prefix="" 

 1   chain=forward action=log connection-state=new protocol=udp src-address=192.168.1.0/24 log-prefix=""

and getting something like that:

It logs all the connections that the user is making.

after enabling the hotspot, and the filter table looking like this:

Only sporadic traffic seems to be hitting the log rules, I have tried with other chains, but to no avail ..

Could anyone possibly point where I’m going wrong, thanks.

P.S.

mt setup:

net->ether1->bridge(ether ports)->hotspot user

PJD

thanks for looking, but found the issue in the meantime, for those interested ..

/ip hotspot user profile set default transparent-proxy=no

that solved the missing hotspot traffic issue ..

regards

Log in the prerouting chain, instead of in the forward chain.

Hotspots redirect traffic to themselves in destination NAT, between prerouting and forward/input. Therefore the traffic never makes it to the forward chain.

Or, as you posted, turn off the proxy.