AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers

227

RouterOS v3 Configuration and User Guide

 

 

 

10.1.3HotSpot Interface Setup

Submenu level: /ip hotspot

Description

HotSpot system is put on individual interfaces. You can run completely different HotSpot configurations on different interfaces

Property Description

HTTPS (read-only: flag) - whether the HTTPS service is actually running on the interface (i.e., it is set up in the server profile, and a valid certificate is imported in the router)

address-pool(name none; default: none) - IP address pool name for performing one-to-one NAT. You can choose not to use the one-to-one NAT

none - do not perform one-to-one NAT for the clients of this HotSpot interface addresses-per-mac(integer unlimited; default: 2) - number of IP addresses allowed to be bind with any particular MAC address (it is a small chance to reduce denial of service attack based on taking over all free IP addresses in the address pool). Not available if address-poolis set to none

unlimited - number of IP addresses per one MAC address is not limited

idle-timeout(time none; default: 00:05:00) - idle timeout (maximal period of inactivity) for unauthorized clients. It is used to detect, that client is not using outer networks (e.g. Internet), i.e., there is NO TRAFFIC coming from that client and going through the router. Reaching the timeout, user will be dropped of the host list, and the address used buy the user will be freed

none - do not timeout idle users

interface (name) - interface to run HotSpot on

ip-of-dns-name(read-only: IP address) - IP address of the HotSpot gateway's DNS name set in the HotSpot interface profile

keepalive-timeout(time none; default: none) - keepalive timeout for unauthorized clients. Used to detect, that the computer of the client is alive and reachable. If check will fail during this period, user will be dropped of the host list, and the address used buy the user will be freed

none - do not timeout unreachable users

profile (name; default: default) - default HotSpot profile for the interface

Command Description

reset-html (name) - overwrite the existing HotSpot servlet with the original HTML files. It is used if you have changed the servlet and it is not working after that

￿

addresses-per-mac property works only if address pool is defined. Also note that in case you are authenticating users connected through a router, than all the IP addresses will seem to have come from one MAC address.

Example

To add HotSpot system to the local interface, allowing the system to do one-to-one NAT for each client (addresses from the HS-realaddress pool will be used for the NAT):

[admin@AT-WR4562] ip hotspot> add interface=local address-pool=HS-real

[admin@AT-WR4562] ip hotspot> print

 

 

Flags: X - disabled, I - invalid, S - HTTPS

 

 

#

NAME

INTERFACE

ADDRESS-POOL PROFILE IDLE-TIMEOUT

0

hs-local

local

HS-real

default 00:05:00

[admin@AT-WR4562] ip hotspot>

Page 226 Page 228
Page 227
Image 227
Allied Telesis AT-WR4500 manual HotSpot Interface Setup, Name Interface
Page 226 Page 228
Top Page Image Contents