traffic accounting

gianluca · December 12, 2004, 10:53pm

actually we are using several mikrotiks as firewall/traffic shaping/policy routing, still on v2.8

we would like now to set up a max 4 GByte per user limit and then ask some euros on the extra traffic each user will be consuming. We are using no radius. customers will prepay it. we will of course need also a web page where clients can see their traffic usage etc..

looking into v2.9 (near futuro I hope), what would be the best solution. Any free or commercial software that will work for this ? any experience on it?

many many thanks
Gianluca

edzix · December 13, 2004, 12:29pm

actually, with MikroTik HotSpot Manager you can set this easy up (RADIUS based product):
http://www.mikrotik.com/download.html#hotspot

Edgars

gianluca · December 13, 2004, 1:29pm

thank you very much Edgards.

I had a look at the docs and demo.
Just 2 more questions, since I am a bit lost:

1- we are a fixed WISP, our customers will be soon on a pppoe connections using winxp. Can we eliminate them to introduce the username/password, can it be done automatically or they have each time to introduce it through the web page?

2- I suppose this radius must be installed somewhere. How can I test the program, where can I download it ? or it will be just on your premises ?

thanks
Gianluca

normis · December 13, 2004, 2:03pm

if you use HotSpot, not PPPoE then it is easier. You can make it where the users log in the first time they use the internet (in the morning) and re login each day. Or that they log in one time, and only one time.
This is a service that we offer - nothing has to be downloaded or installed. Simply add your routers into the http://moon.mt.lv/radius/ server and it will work - it is a fully functional system. it will stay on our servers.

gianluca · December 13, 2004, 7:23pm

we cannot ask to our “adsl-like” customers to log-in everytime.
I hope we can do it somehow. any suggestions ? how people are doing it???

wildbill442 · December 14, 2004, 3:18am

MAC address filtering… I believe the hotspot manager supports this, I’ve yet to use the hotspot functions tho. You could mangle the traffic coming in from the local interface and mark it as Auth-MAC for all your authorized users MAC addresses (and of course create the neccessary firewall rules/chains) and for anyone not authorized use dst-nat to redirect to a sign up page or the hotspot manager login…

edzix · December 14, 2004, 11:36am

actually, this is not in the competense of the HS Manager. It’s because of the fact that RADIUS request is being made only after the user fills the login information and press accepting button.
This could manually done, like wildbill442 described.

Edgars