Ok. I have 2 Mikrotik Routers running version 3.10.
I have one radio card for AP and one radio card for wds bridge.
One AP is the main unit that connects to the internet via ether1. I have the hotspot setup on this unit. I am using Winbox to manage the users. I have no interest in setting up User Manager.
I can connect to either AP and get the Mikrotik login page. I can ping out to the internet just fine from either AP. I can use winbox. I can access the main internet router webpage at 192.168.1.1.
I cannot browse webpages. It gives me a gateway timeout and this error:
Your cache administrator is webmaster.
Generated Tue, 08 Jul 2008 00:46:01 GMT by 10.5.50.1 (Mikrotik HttpProxy)
I do not remember setting up any proxy. Does this happen automatically? How do I disable the proxy and just let people browse the internet.
How do I fix this so my users can browse the internet.
Thanks!!
Check out the DNS “Client” settings on the router…
The hotspot uses a proxy client / server system to provide access…
Set the DNS server to a DNS server that can resolve public “addresses”..
I think this is your issue..
I have the DNS servers set to opendns.org servers:
208.67.222.222
208.67.220.220
Those should be public DNS servers right?
Also,
I seem to be able to resolve addresses using nslookup. I get the IP’s and can ping them, but when I browse they don’t come p. I just the webproxy error.
Greetings!
Under your DNS settings, do you have allow-remote-requests=yes?
I setup the DNS using Winbox.
Where would I look to check that option?
Keep in mind that I can use nslookup on my workstation that is connected and authenticated via Hotspot to resolve dns names. I can also ping dns names just fine. I.e. ping www,yahoo.com. Its just when I open my browser and try to go to http://www.yahoo.com I get a httpproxy error.
Also, I see a lot of firewall rules on this unit. Are they supposed to be there? I just want to allow validated hotspot users access to the internet. There are a lot of “Jump” rules put in there. Dunno what this is about. Could these rules be keeping me from browsing the internet?
Thanks for the help so far.
The firewall rules could stop you. If you are looking for a basic setup, remove the firewall filter rules and start over.
To avoid locking yourself out of your own box, remove this rule first:
chain=input action=drop.
You will want to protect your router from hackers, so check the docs on the firewall and start with the “protect your router” rules. There are only a half dozen or so basic rules.
Also check the firewall nat and see if you are being redirected somewhere on port 80.