pokusavam od sinoc da oznacavam pakete koji pripadaju odredjenoj grupi korisnika na hotspot-u ali mi nikako ne polazi za rukom pa bih vas molio za pomoc.
Grupu korisnika sam podesio ovako:
Code:
[test1@presretac] /ip hotspot user profile> print
Flags: * - default
0 * name="gosti" idle-timeout=none keepalive-timeout=2m status-autorefresh=1m
shared-users=3 transparent-proxy=no
1 name="test" idle-timeout=none keepalive-timeout=2m status-autorefresh=1m shared-users=1
rate-limit="64k/512k" incoming-packet-mark="hotspot test"
outgoing-packet-mark="hotspot test" transparent-proxy=no
[test1@presretac] /ip hotspot user profile> print
Flags: * - default
0 * name="gosti" idle-timeout=none keepalive-timeout=2m status-autorefresh=1m
shared-users=3 transparent-proxy=no
1 name="test" idle-timeout=none keepalive-timeout=2m status-autorefresh=1m shared-users=1
rate-limit="64k/512k" incoming-packet-mark="hotspot test"
outgoing-packet-mark="hotspot test" transparent-proxy=no
Dakle gledamo drugi item. Podeseno je tako da se paketi oznacavaju sa "hotspot test" bilo da su odlazni ili dolazni.
Kada se korisnik uloguje tada hotspot sam napravi mangle pravilo koje oznacava pakete i to ovako:
Code:
[test1@presretac] /ip firewall mangle> print
Flags: X - disabled, I - invalid, D - dynamic
0 D chain=hotspot action=mark-packet new-packet-mark=hotspot test passthrough=yes
src-address=192.168.1.1
1 D chain=hotspot action=mark-packet new-packet-mark=hotspot test passthrough=yes
dst-address=192.168.1.1
[test1@presretac] /ip firewall mangle> print
Flags: X - disabled, I - invalid, D - dynamic
0 D chain=hotspot action=mark-packet new-packet-mark=hotspot test passthrough=yes
src-address=192.168.1.1
1 D chain=hotspot action=mark-packet new-packet-mark=hotspot test passthrough=yes
dst-address=192.168.1.1
I ta pravila ne "hvataju" nista kada korisnici prave protok:
Code:
[test1@presretac] /ip firewall mangle> print stats
Flags: X - disabled, I - invalid, D - dynamic
# CHAIN ACTION BYTES PACKETS
0 D hotspot mark-packet 0 0
1 D hotspot mark-packet 0 0
[test1@presretac] /ip firewall mangle> print stats
Flags: X - disabled, I - invalid, D - dynamic
# CHAIN ACTION BYTES PACKETS
0 D hotspot mark-packet 0 0
1 D hotspot mark-packet 0 0
Probao sam da napravim staticka pravila gde nema IP adresa odnosno gde se hvata sve sto prolazi kroz hotspot chain i opet sve nule. Ima li neko ideju kako da poteram ovo da radi?
Pozzz