I didn't think this work myself. But the docs, sorta, give some clues.
https://help.mikrotik.com/docs/display/ ... entication
Apparently you have just ignore the reference to "query-radius" under the "MAC Authentication" when reading the docs. And apparently reject just needs to match something
, but the defaults don't match anything
, so a "reject" alone
doesn't just work. So if you extrapolate from the "print" (not "export") in the "examples", they use a "signal
-range" which gives the reject something match on.
So adding this add the end will cause it to use the whitelisted MAC's above it in the access-list (and presumable added via QuickSet "Copy to ACL" PREVIOUSLY* to add this rule).
/interface/wifiwave2/access-list/add action=reject disabled=no signal-range=0..-120 time=0s-0s
*You can't go back to QuickSet and use "Copy to ACL" after adding that "reject". The "Copy to ACL" stuff becomes grey'ed out, so you can't use QuickSet to add new items to the whitelist, if the rules flagged them as rejected.
But I'm pretty sure in V6, there was an Use ACL and the "Copy to ACL" stuff worked fine – this was one area of QuickSet that was SAFE to use multiple times since the ACL buttons just modifed the Wi-Fi access-list, but the rest of config is unaffected by doing ACL stuff.