Hi Guys.
Let me explain the scenario:
is there some way to create dynamic firewall rules based on radius attributes ,as well as MkT create the TCP MSS rules ?
¹ Firewall rules that control Traffic Shapping 
Thanks
MikroTik RouterOS supports the particular attribute,
Filter-Id - firewall filter chain name. It is used to make a dynamic firewall rule. Firewall chain name can have suffix .in or .out, that will install rule only for incoming or outgoing traffic. Multiple Filter-id can be provided, but only last ones for incoming and outgoing is used. For PPPs - filter rules in ppp chain that will jump to the specified chain, if a packet has come to/from the client (that means that you should first create a ppp chain and make jump rules that would put actual traffic to this chain). The same applies for HotSpot, but the rules will be created in hotspot chain