We're already using RADIUS and the MikroTik-Rate-Limit attribute for DHCP customers, but I'm curious if you can rig up RouterOS to do this with static IP customers.. something like this:
Packet comes in on wlan1 (for instance) on the forward chain. The MAC address associated with this packet gets sent to the RADIUS server.
Then...
Code: Select all
if (radius_reply == ok)
{
rate_limit = radius_reply[1]; // for example
if (static_ip is_not_found_in simple_queue_list)
add simple queue using rate_limit
elseif (static_ip is_found_in simple_queue_list)
check and update, if necessary, the simple queue's rate_limit
}
else
{
add firewall rule(s) to block their IP on the forward chain.
}
All suggestions are welcome.