Simplest thing to do is use either PPTP or PPPoE. Have the user
set up the necessary client interface on his MT to log in to your
MT and it will bypass your HotSpot firewall rules.

If the HotSpot function is being controlled by an external device
then there's nothing you can do from the perspective of your MT
to allow him through. You would have to check the device and see
if there is a setting to allow specific users in without requiring a
login.

Kevin Summers
KISTech Internet
www.kistech.com



-----Original Message-----
From: routeros-***@bruno.pmi.lv
[mailto:routeros-***@bruno.pmi.lv]On Behalf Of Dev Team
Sent: Friday, May 28, 2004 11:31 AM
To: Lee Quince
Cc: General questions about MikroTik RouterOS
Subject: Re[2]: [MikroTik] Hostspot question...


Hello Lee,

Friday, May 28, 2004, 4:46:46 AM, you wrote:

LQ> Setup managle rule to mark the packets going to the MT box.

what do you mean by that ?
how can i bypass the hotspot procedure with this ?

LQ> -----Original Message-----
LQ> From: routeros-***@bruno.pmi.lv
LQ> [mailto:routeros-***@bruno.pmi.lv] On Behalf Of George..
LQ> Sent: 28 May 2004 02:08
LQ> To: ***@bruno.pmi.lv
LQ> Subject: [MikroTik] Hostspot question...


LQ> Hello all,

LQ> I have a hotspot configured in an external ethernet AP device with the
LQ> wizard.. As far as I checked, it works fine..

LQ> I want to allow a specific client to connect with his MT router, to this
LQ> AP, without all this login procedure. Should I give him a static ip ?
LQ> What do I have to do with the fw ?







LQ> George A. Michalopoulos

LQ> Thessaloniki's Wireless Metropolitan Network
LQ> http://TWMN.net


LQ> _______________________________________________
LQ> ALL POSTS SHOULD BE ABOUT GENERAL ROUTEROS QUESTIONS
LQ> To post to the list, address emails to ***@bruno.pmi.lv
LQ> To unsubscribe/subscribe: email to
LQ> RouterOS-***@bruno.pmi.lv ,
LQ> with text in the body "unsubscribe <password>" or "subscribe"
LQ> _______________________________________________
LQ> ALL POSTS SHOULD BE ABOUT GENERAL ROUTEROS QUESTIONS
LQ> To post to the list, address emails to ***@bruno.pmi.lv
LQ> To unsubscribe/subscribe: email to
LQ> RouterOS-***@bruno.pmi.lv ,
LQ> with text in the body "unsubscribe <password>" or "subscribe"



--
Best regards,
Dev mailto:***@sae.gr

_______________________________________________
ALL POSTS SHOULD BE ABOUT GENERAL ROUTEROS QUESTIONS
To post to the list, address emails to ***@bruno.pmi.lv
To unsubscribe/subscribe: email to RouterOS-***@bruno.pmi.lv ,
with text in the body "unsubscribe <password>" or "subscribe"

The input chain controls only what is being sent directly to an
IP address on the router. If the packet is meant to pass through
the router then you use the Forward chain.

There is typically very little, if anything, in the input and output
chains for our routers. A little housekeeping to prevent attacks
on it, and some allow rules to let people get to the HotSpot servlet.
Other than that, almost everything you want to allow or deny will
be specified in the forward chain.

Kevin Summers
KISTech Internet
www.kistech.com



-----Original Message-----
From: routeros-***@bruno.pmi.lv
[mailto:routeros-***@bruno.pmi.lv]On Behalf Of George..
Sent: Friday, May 28, 2004 4:51 PM
To: 'Andrew Luck'; 'General questions about MikroTik RouterOS'
Subject: RE: [MikroTik] Hostspot question...


I suppose I have to add a rule to Input chain first,
Then jump to hotspot-temp,
Then allow everything to this ip and return to input chan, right ?

Well, it does not work ;(
_______________________________________________
ALL POSTS SHOULD BE ABOUT GENERAL ROUTEROS QUESTIONS
To post to the list, address emails to ***@bruno.pmi.lv
To unsubscribe/subscribe: email to RouterOS-***@bruno.pmi.lv ,
with text in the body "unsubscribe <password>" or "subscribe"