P. 1
MikroTik Hotspot

MikroTik Hotspot

|Views: 425|Likes:
Published by Waqas Ashfaq

More info:

Published by: Waqas Ashfaq on Nov 30, 2010
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as DOC, PDF, TXT or read online from Scribd
See more
See less

10/27/2013

pdf

text

original

Setting up a basic MikroTik hotspot

Mikrotik RouterOS includes an excellent hotspot solution. Read on for details on getting a basic hotspot going using RouterOS on any standard x86 PC hardware or a RouterBOARD. The RouterOS hotspot solution is very powerful and only the very basics of the solution are covered here; just enough to get you started.

Getting the Hotspot to Work

First of all you will need to have a copy of RouterOS. You can purchase a license or download a 24-hour trial from Mikrotik. RouterBOARDs also usually come with RouterOS pre-licensed and installed. You will also need a computer with at least a 100MHz CPU, 32MB RAM and an IDE hard disk, or a RouterBOARD. Either method you choose will need a compatible wireless card and Ethernet adapter, or two Ethernet adapters with one connected to a standard wireless access point. You should check your hardware against the RouterOS compatibility list. If you are installing RouterOS for the first time, download the ISO image from Mikrotik and burn it to CD. Note that installation of RouterOS will completely wipe the contents of the hard disk! Boot the PC off this CD and install the following packages:
• • • • • •

System DHCP Wireless Hotspot Proxy User Manager (optional)

Change the hostname by typing in name. If you have an access point instead.168. Substitute wlan1 with ether2 if you have a separate access point.168. [admin@MikroTik] > ip route add gateway 192. [admin@Mikrotik] > ip address add address=192. Assign an IP address to each interface.168.recommended) Advanced tools (optional) Now to get started. If this box intended for deployment.1/24 interface=wlan1 Now we need to add a default route to the IP of the internet router.• • Security (optional .24. they will need to be on a different subnet. Log onto the PC as admin with no password. change set a password by typing in password at the prompt.24.1 Enable the wireless interface and set it to run as an access point as below.30.3/24 interface=ether1 [admin@Mikrotik] > ip address add address=192. ignore the command . As this is going to be set up as a router.

mydomain. The user account bears no relation to the admin account and is used for the hotspot service only.2 dns name: hotspot.4ghz-b mode=ap-bridge Run the hotspot setup as below.168.0 dns servers: 192. such as access points.net .1/24 masquerade network: yes address pool of network: 192.30. make sure it is running with no security enabled.30. You may also need to add a host record to your DNS server for the hostname of the hotspot box. [admin@MikroTik] > ip hotspot setup hotspot interface: wlan1 local address of network: 192.0.168. use a suitable SSID and channel and change its admin password. Substitute the values in italics to suit your network.0. Make sure the address pool does not conflict with any devices using static IPs.below.30.24. [admin@Mikrotik]> interface wireless set wlan1 ssid="My HotSpot" band=2.99 select certificate: none ip address of smtp server: 0.168.2-192.168.

Click the thumbnails for a full view of the default page. You should be redirected to the hotspot login page instead where you can enter the user credentials you set up earlier. You should now be able to access the web normally and a pop-up window will display your connection time and data usage as you go. . associate to the network and try to access a web page. Fire up your laptop.name of local hotspot user: user password for the user: password That’s the guts of it there.

Before getting the User Manager set up.dynamic # SERVER NAME ADDRESS PROFILE UPTIME 0 fred default 0s If any items are listed (in this case bob).disabled. D . run the following command to remove them: [admin@MikroTik] > ip hotspot user remove 0 . Setting up User Manager The User Manager is a nice and simple web administration for setting up user account for the MikroTik hotspot and other services. check for any existing hotspot account and remove them. If you intend on deploying the hotspot. To do this. you should install a certificate on it and set up SSL to protect account data from being sniffed. One User Manager package can control multiple hotspots. It can be hosted on either the same box as the hotspot or located in a separate box on the same local network. run the following command: [admin@MikroTik] > ip hotspot user print Flags: X .Bear in mind I have left out the certificate so usernames and passwords will be sent as plain text.

we need to set up the hotspot to use RADIUS for user .0. This is used to access the UM web administration.0.1 for the IP address. This is done under the user manager router section.You can delete multiple items at the same time. The shared secret can be any string of text and should be reasonably long and complex. simply separate each item number with a comma. use 127. [admin@MikroTik] > tool user-manager router add ipaddress=hotspot-ip shared-secret=12345 subscriber=hs_admin In return. [admin@MikroTik] > tool user-manager customer add login=hs_admin password=password Now we need to add the hotspot as a RADIUS client to the user manager. To get the User Manager working we first need to add a customer login. If you are setting the user manager up on the same box as the hotspot. Make sure you substitute the values in italics to suit.

authentication. the IP address should be set to 127.0.0.1. First this involves creating a RADIUS client to communicate with the UM. The secret should be the same as you set up above. First bring up a list of hotspot profiles: [admin@MikroTik] > ip hotspot profile print Locate the profile in use and type the following command where 1 is the number of the profile to configure: [admin@MikroTik] > ip hotspot profile set 1 useradius=yes . [admin@MikroTik] > radius add service=hotspot address=ip-address secret=12345 Now we tell the hotspot itself to use a RADIUS client. Remember that if you have both services on the same box.

click Generate and select the number of tickets per page. I’ll post more notes as I play with additional options. password and any other details you wish. 1. Browse to http://routerip/userman where router-ip is the IP address of the box you are configuring User Manager on. Login using the customer username and password created earlier.Now we are done with configuration.g. as this only skims the surface of the hotspot capabilities. Other Tips You can also go a step further and play with some other available options. You can limit the speed the client can access the internet by selecting the Rate limits checkbox and typing in a suitable speed (e. To disable communication between wireless clients (recommended). for a flat 128kBps download/64kBps upload speed limit simply type in 128k in the RX field and 64k in the TX field). Enter in a username. Click on the User menu and select Add. click on the Users link. interface wireless set wlan1 defaultforward=disabled . disable the default forward option on the wireless interface. If you want to generate a printable ticket for the users you set up. Click Add and you should be able to now access the hotspot using the username and password you specified. select the users to make a ticket for.

.. Taken From : Marlborough Wireless Project .website. use the following command: ip hotspot walled-garden add dsthost=www. You can access these via FTP... replacing profilename with the current hotspot profile in use and speed with the rate limit in bits per second: ip hotspot profile set profilename ratelimit=”speed“ 4.com 3. .2. You can customise the login and status pages by editing the files in the hotspot directory of the Mikrotik box. To set up a walled garden (pages people can access without authenticating). To limit client bandwidth type the following.

You're Reading a Free Preview

Download
scribd
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->