By default hotspot will proxy all traffic, even that of authenticated users. This will slow authenticated user traffic as well as make the CPU work harder on your router. To bypass this behavior you can use the following NAT rule:
/ip nat firewall
add chain=pre-hotspot dst-address=!local hotspot=auth action=accept
“local” should be set to your local subnet. Be sure to drag this rule to the top.
Thanks to Felix (AKA fewi). If you guys were at the US MUM in Phoenix, you would have gotten an ear full. I’m still not sure why his presentation didn’t make it to tiktube.
Leave a Reply