For example, look at this email exchange:
First, I state the issue and ask for soultions:
I get this reply:>>>> I have an issue here with users stealing internet via apps like Freedom
>>>> and HTTP injectors.
>>>> AFAIK they can do this because mikrotik hotspot allows DNS requests for
>>>> unauthorized users
>>>>
>>>> Any solutions?
He says to drop DNS requests to the router, I note that the portal requires DNS>> On 6/26/2018 2:09 PM, Martins S. [MikroTik Support] wrote:
>>> Hello,
>>>
>>> You can add firewall filter rules that drop DNS requests to your router. You can learn how to configure firewall rules from this wiki page:
>>>
>>> https://wiki.mikrotik.com/wiki/Manual:I ... all/Filter
>>>
>>> Best regards,
>>> Martins S.
On 6/27/2018 8:32 AM, Martins S. [MikroTik Support] wrote:
> Hello,
>
> Drop DNS requests by using firewall rule that works only with parameter "hotspot=!auth".
>
> Best regards,
> Martins S.
> --
He suggests that the PAREMETER should be used, ie parameter "hotspot=!auth"
I did not understand. I ask for clarification:
My email:
> I have a Hotspot running. If I drop all DNS requests clients will not be
> able to resolve the hotspot portal address!
Please send me the command do drop all dns requests for unauthorized
hotspot users
Mikrotik reply:
Hello,
You can not drop DNS requests from unauthorised users on local interface and allow to resolve hotspot DNS at the same time. If you want to drop DNS requests from unauthorised users under local interface, then you can not use dns-name on hotspot server.
Best regards,
Martins S.
--
None of my questions answered, just repeating exactly what I told him, that is frustrating.
I ask:
Mikrotik reply:What is meant by Paremeter:
Drop DNS requests by using firewall rule that works only with parameter "hotspot=!auth".
Hello,
Hotspot is parameter that can be configured on firewall filter rule.
Best regards,
Martins S.
--
Makes sense??
To note, this valuable exchange took over 10 days to complete...... no, not complete........
And I still dont have a solution.