Filter
Top Products
AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers 227
RouterOS v3 Configuration and User Guide
10.1.3 HotSpot Interface Setup
Submenu level: /ip hotspot
Description
HotSpot system is put on individual interfaces. You can run completely different HotSpot configurations
on different interfaces
Property Description
HTTPS (read-only: flag) - whether the HTTPS service is actually running on the interface (i.e., it is set up
in the server profile, and a valid certificate is imported in the router)
address-pool (name | none; default: none) - IP address pool name for performing one-to-one NAT. You
can choose not to use the one-to-one NAT
none - do not perform one-to-one NAT for the clients of this HotSpot interface
addresses-per-mac (integer | unlimited; default: 2) - number of IP addresses allowed to be bind with any
particular MAC address (it is a small chance to reduce denial of service attack based on taking over all
free IP addresses in the address pool). Not available if address-pool is set to none
unlimited - number of IP addresses per one MAC address is not limited
idle-timeout (time | none; default: 00:05:00) - idle timeout (maximal period of inactivity) for
unauthorized clients. It is used to detect, that client is not using outer networks (e.g. Internet), i.e., there
is NO TRAFFIC coming from that client and going through the router. Reaching the timeout, user will be
dropped of the host list, and the address used buy the user will be freed
none - do not timeout idle users
interface (name) - interface to run HotSpot on
ip-of-dns-name (read-only: IP address) - IP address of the HotSpot gateway's DNS name set in the
HotSpot interface profile
keepalive-timeout (time | none; default: none) - keepalive timeout for unauthorized clients. Used to
detect, that the computer of the client is alive and reachable. If check will fail during this period, user will
be dropped of the host list, and the address used buy the user will be freed
none - do not timeout unreachable users
profile (name; default: default) - default HotSpot profile for the interface
Command Description
reset-html (name) - overwrite the existing HotSpot servlet with the original HTML files. It is used if you
have changed the servlet and it is not working after that
addresses-per-mac property works only if address pool is defined. Also note that in case you are
authenticating users connected through a router, than all the IP addresses will seem to have come from
one MAC address.
Example
To add HotSpot system to the local interface, allowing the system to do one-to-one NAT for each client
(addresses from the HS-real address pool will be used for the NAT):
[admin@AT-WR4562] ip hotspot> add interface=local address-pool=HS-real
[admin@AT-WR4562] ip hotspot> print
Flags: X - disabled, I - invalid, S - HTTPS
# NAME INTERFACE ADDRESS-POOL PROFILE IDLE-TIMEOUT
0 hs-local local HS-real default 00:05:00
[admin@AT-WR4562] ip hotspot>