LogoLogo
🇬🇧 English
🇬🇧 English
  • 💡Using this Academy
  • Getting Started
    • Creating your first venue
  • Hardware & Installation
    • Installation Guides
      • MikroTik
        • Winbox
        • WebFig
        • MikroTik Script Generator
        • VLANs & Additional APs
          • Add VLAN on MikroTik
          • Add additional APs to MikroTik
          • Whitelist a device in the guest network
          • UniFi APs and MikroTik
        • Connection Guide
      • Ubiquiti
        • Ubiquiti UniFi
        • Creating access credentials
        • Installing remote access tunnel
        • Guest network for physical ports
        • Ubiquiti UniFi Legacy
          • Overview
          • Controller configuration
            • New interface version
            • Legacy interface version
          • File upload
            • Cloud Key
            • Dream Machine
            • Software Controller
      • Ruckus
        • Ruckus ZoneDirector
        • Ruckus Unleashed
        • Ruckus Virtual SmartZone
      • Cisco
        • Cisco Catalyst
        • Cisco Meraki
        • Cisco Meraki - add Social WiFi account to your dashboard
        • Cisco WLC
      • TP-Link
        • TP-Link Omada
        • TP-Link Omada (Legacy)
      • Juniper Mist
      • Ruijie
      • Zyxel Nebula
      • OpenMesh
      • Huawei AC / FAT AP
      • Extreme Networks
        • WiNG Controller
        • Extreme Cloud IQ
      • Aruba
        • Aruba Central
        • Aruba IAP
        • Aruba Instant On
      • Alcatel-Lucent
        • OmniVista Cirrus
        • Alcatel-Lucent Express
      • Fortinet
        • FortiGate / FortiWiFi
        • FortiAP
      • Grandstream
        • Direct access
        • GWN Cloud
      • Aerohive
      • Teltonika
      • TanazaOS
      • IgniteNet
      • Cambium Networks
        • cnPilot
        • cnMaestro
      • DrayTek Vigor
      • DCN
    • Hardware FAQs
      • Recommended devices
      • Set network limits
      • How to set up session timeouts on MikroTik devices
      • Change MikroTik SSID
      • Why is there no Meraki GO integration?
      • Configure devices to make YouTube widget work
    • Setup FAQs
      • Login process
      • QR codes and Social WiFi
      • Troubleshooting
      • Setting up your first AnyDesk session
      • How to export configuration from a MikroTik device?
      • How to create HAR file on different internet browsers
      • What benefit is editable radius secret?
      • Can I charge customers for WiFi access?
      • Understanding Access Point statuses?
  • Dashboard Guides
    • Dashboard Guides
      • Location Management
        • How to add a new Project
        • How to add a new Venue
        • Duplicate a Venue design within a Project
        • What is the difference between a Project and a Venue?
        • How do I delete a Project or Venue
      • WiFi Splash Pages
        • How to add a Pre-Login Page
        • How to copy Login pages to other Venues in a Project
        • How to change the opt in slider to a button
        • Adding YouTube widget
        • Adding a countdown delay on the Pre-Login Page
        • Login button options
        • Embed Instagram posts on your Welcome Page
      • Online Reviews
        • Configuring the review system
        • Change the review redirection links
        • Where to find Google review redirection link?
        • Copy review settings to other Venues?
        • Change when a review request email is sent?
        • How to send a review reminder
        • Reply to user messages
        • Forward customer feedback to help desk systems
        • Turn off the review system?
        • TripAdvisor Review Express
        • How to change your review score style
        • Send a test review email
      • Email Marketing
        • Send an email after the first login
        • Send an email on login
        • Send an email after a visit
        • Send an email after X visits
        • Send an email if somebody hasn’t visited in so long
        • Copy emails to other Venues
        • Adding Email Attachments
        • Bulk email campaigns sending rules
        • Send emails using your own domain (address)
        • Setup your Gmail account as the email sender
        • How to set up your own SMTP server
        • Use Amazon SES to send your emails
        • Create a linked button in the email editor
      • Dashboard Users
        • Project and venue permissions
        • Adding an Admin User
      • SMS Marketing
        • Setup SMS Automation
        • USA Registration
      • How to export user data
      • Verified vs Unverified User Data
      • How to read device statistics
      • Dashboard statistics – what do they represent?
      • Adding Custom Fonts
      • How to remove a user from the Social WiFi database
      • Optional features – autologin, AP warnings and others
    • Dashboard FAQs
      • How do I delete content in the Media tab?
      • Why are the email and splash page editors different?
      • Can I import a database into Social WiFi?
      • How to ask a user for more feedback
      • How do I add more than one Pixel or Cookie to my Venue?
      • How to turn off New Feedback email notifications
      • Why do I get Access Point Warning emails?
      • How to turn off Access Point Warning email notifications
      • Can I move the "Connect to Internet" button?
      • Can I edit venue ID?
      • Can I add other review sites to my system?
      • Can I add a custom set of review emojis?
      • My data isn’t appearing in the User Data tab
      • Is the dashboard available in other languages?
      • Send a Project Report
      • Can I add other language versions?
      • My venue shows as Inactive
    • WiFi Login FAQs
      • Social Media Login
        • Can I authenticate for Facebook login via the app?
        • What data do you get from each login method?
        • Why Facebook widget is not enabled on MacBooks?
        • Can my guests like or check-in at my business?
        • Can I use Instagram login widget on my login page?
        • Can I use Google login widget on my login page?
      • Email Login
        • Turn off verification emails
        • Why are activation emails recommended?
        • How to make the email verification link compulsory
        • Why there are multiple activation emails for one user?
        • How to ask for more information on email login
      • Login Codes
        • Pre-login Code vs Login Bypass Codes?
        • Add a password unlock button on the Pre Login Page
        • How to generate Pre Login codes
        • How to generate Login Bypass codes
      • Known Issues
        • Issues with hotspot networks on Apple devices
      • How Auto Login works
      • Ask additional questions on WiFi login
      • How to collect phone numbers
      • Redirect to a webpage after login
      • I didn’t receive an email after logging in
      • How to gather feedback during the login process
  • Integrations
    • Connecting Social WiFi data
      • Integrate with Mailchimp
      • Integrate with Campaign Monitor
      • Integrate with Zapier
      • Integrate with HubSpot
      • Integrate with GetResponse
      • Integrate with Revinate
      • Integrate with Klaviyo
      • Integrate with Brevo
      • Integrate with SALESmanago
      • Integrate with Freshmail
      • Push historic data to your CRM
      • Copy Integrations to other Venues
    • Retargeting Pixels & Cookies
      • Pixels & Cookies Purpose
      • Add Facebook Pixel
      • Add TikTok Pixel
      • Add Snapchat Pixel
      • Add Google Ads Cookie
      • Copy Integrations to other Venues
  • Tips & Tricks
    • Sending surveys via WiFi with Google Forms
  • Billing
    • Invoicing & Payments
      • Can you automatically take my payments?
      • How do I cancel my service?
      • What are the payment terms?
      • How can I pay for my service?
      • When do Social WiFi send invoices?
  • Reseller Program
    • Brand Guidelines
    • White Label
      • White label configuration guide
      • White label hardware configuration guide
      • Account Management
      • Can Social WiFi be white labelled?
      • Can my company’s logo be placed in the dashboard?
Powered by GitBook
On this page
  • Compatibility
  • Connecting the device to the Internet
  • Accessing the device’s administration panel
  • Device configuration
  • Adding the MikroTik MAC address to the Social WiFi Dashboard.

Was this helpful?

  1. Hardware & Installation
  2. Installation Guides
  3. MikroTik

Winbox

PreviousMikroTikNextWebFig

Last updated 2 months ago

Was this helpful?

Compatibility

Social WiFi has been tested and is proven to work on the following configurations:

RouterOS versions:

  • 6.x

  • 7.5 and newer, tested up to 7.15.3 (hotspot doesn’t work on RouterOS 7.x below version 7.5)

The router should be accessed by using WinBox software

(downloadable at the manufacturer’s website).

If you are configuring on Mac, you should download this alternative software designed for macOS.

Connecting the device to the Internet

The router with factory settings should be connected to the Internet on first ethernet port (PoE in). The procedure of restoring factory settings can be found here.

The router needs to be connected to Internet source and, depending on the model, turned on with a proper switch.

Accessing the device’s administration panel

The PC should be connected to the second ethernet port of the device you are configuring. It should be receiving from it an IP address from the 192.168.88.2-192.168.88.254 pool.

After launching the program you will need to find the router on the list and log in using the login admin and leaving the password field empty.

If after logging in a window containing default configuration appears, press ENTER and close the window of the terminal

Device configuration

Interfaces → + → Bridge

Name
sw

OK

IP → Addresses → +

Address
10.8.0.1/16

Network

10.8.0.0

Interface

sw

OK

IP → Pool → +

Name
dhcp_pool_sw

Addresses

10.8.0.2-10.8.255.254

OK

IP → DHCP Server → +

Name
dhcp_sw

Interface

sw

Lease Time

3d 00:00:00

Address Pool

dhcp_pool_sw

OK

IP → DHCP Server → Networks → +

Address
10.8.0.0/16

Gateway

10.8.0.1

OK

Bridge → Ports → +

Interface
wlan1

Bridge

sw

OK

In case there is no wlan1 interface visible, it most likely means your MikroTik doesn’t provide WiFi by itself and you are going to need some access points connected to it. Please skip all the steps mentioning wlan1 and follow the guide on adding additional Access Points after finishing this guide.

If you wish to broadcast WiFi from an external Access Point, not directly from MikroTik, change wlan1 interface to ether3 in the following instructions. Also, make sure to connect your External Access Point to the ether3 port in your MikroTik device.

Configuring RADIUS

In order for Social WiFi to work you need to upload the files to your MikroTik device. To do that, please open the New Terminal window:

Copy and paste the following script to the terminal:

{ 
    :local downloadEndpoint "https://login.socialwifi.com/installation/mikrotik/download";
    :local fileNames {"login.html"; "rlogin.html"; "alogin.html"; "flogin.html"; "md5.js"}
    :local destinationDirectory "";
    :if ([:len [/file find name="flash" type="disk"]] > 0) do={
        :set destinationDirectory "/flash/";
    }
    :local ether1Mac ([/interface get [find name="ether1"]]->"mac-address");
    :foreach fileName in=$fileNames do={
        :put "Downloading file: $downloadEndpoint/$fileName\?mac=$ether1Mac"
        /tool fetch url="$downloadEndpoint/$fileName\?mac=$ether1Mac" dst-path="$destinationDirectory$fileName"
    }
}

After running the script files have downloaded automatically.

Now, from the menu on the left select RADIUS → +.

Service
hotspot

Address

35.205.62.147

Secret

Paste the content copied from Radius Secret in Social WiFi dashboard as described in the previous step

Authentication Port

31812

Accounting Port

31813

Timeout

1000

Accounting Backup

Unchecked

Require Message Auth

yes for request resp (This field is only in RouterOS versions above 7.13. If you're using a lower version, you won't see it.)

OK

Configuring Walled Garden DNS

New Terminal → paste the below commands into the terminal (all commands can be copied and pasted at once)

Pasting will not work with CTRL+V; right click and select Paste instead.

Copy all of the below section

## Social WiFi

/ip hotspot walled-garden
add comment="socialwifi: Allow captive portal main service." dst-host=*.socialwifi.com
add comment="socialwifi: Allow captive portal main service." dst-host=sw-login.com

## YouTube widget

/ip hotspot walled-garden
add comment="socialwifi: Allow YouTube widget." dst-host=*.youtube.com
add comment="socialwifi: Allow YouTube widget. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow www.youtube.com." dst-host=youtube-ui.l.google.com
add comment="socialwifi: Allow YouTube widget. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow img.youtube.com." dst-host=ytimg.l.google.com
add comment="socialwifi: Allow YouTube widget." dst-host=*.ytimg.com
add comment="socialwifi: Allow YouTube widget." dst-host=*.googlevideo.com
add comment="socialwifi: Allow YouTube widget." dst-host=yt3.ggpht.com
add comment="socialwifi: Allow YouTube widget. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow yt3.ggpht.com." dst-host=*.l.googleusercontent.com

## Facebook remarketing pixel

/ip hotspot walled-garden
add comment="socialwifi: Allow Facebook remarketing pixel." dst-host=*.facebook.com
add comment="socialwifi: Allow Facebook remarketing pixel." dst-host=connect.facebook.net
add comment="socialwifi: Allow Facebook remarketing pixel. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow connect.facebook.net." dst-host=*.fbcdn.net

## Google remarketing tag

/ip hotspot walled-garden
add comment="socialwifi: Allow Google remarketing tag." dst-host=www.googletagmanager.com
add comment="socialwifi: Allow Google remarketing tag. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow www.googletagmanager.com." dst-host=www-googletagmanager.l.google.com
add comment="socialwifi: Allow Google remarketing tag." dst-host=www.googleadservices.com
add comment="socialwifi: Allow Google remarketing tag. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow www.googleadservices.com." dst-host=pagead*.l.doubleclick.net
add comment="socialwifi: Allow Google remarketing tag." dst-host=www.google.*

## Facebook

/ip hotspot walled-garden
add comment="socialwifi: Allow login with Facebook." dst-host=facebook.com
add comment="socialwifi: Allow login with Facebook." dst-host=*.facebook.com
add comment="socialwifi: Allow login with Facebook." dst-host=*.fbcdn.net

## LinkedIn

/ip hotspot walled-garden
add comment="socialwifi: Allow login with LinkedIn." dst-host=linkedin.com
add comment="socialwifi: Allow login with LinkedIn." dst-host=*.linkedin.com
add comment="socialwifi: Allow login with LinkedIn. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow www.linkedin.com." dst-host=*.l-msedge.net
add comment="socialwifi: Allow login with LinkedIn. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow www.linkedin.com." dst-host=*.dc-msedge.net
add comment="socialwifi: Allow login with LinkedIn." dst-host=*.licdn.com
add comment="socialwifi: Allow login with LinkedIn. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow static-exp1.licdn.com." dst-host=*.epsiloncdn.net
add comment="socialwifi: Allow login with LinkedIn. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow static-exp1.licdn.com." dst-host=*.akamai.net
add comment="socialwifi: Allow login with LinkedIn. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow www.linkedin.com." dst-host=www.linkedin.com.cdn.cloudflare.net

## Twitter

/ip hotspot walled-garden
add comment="socialwifi: Allow login with Twitter." dst-host=x.com
add comment="socialwifi: Allow login with Twitter." dst-host=api.x.com
add comment="socialwifi: Allow login with Twitter. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow api.x.com." dst-host=tpop-api.x.com
add comment="socialwifi: Allow login with Twitter." dst-host=twitter.com
add comment="socialwifi: Allow login with Twitter." dst-host=api.twitter.com
add comment="socialwifi: Allow login with Twitter. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow api.twitter.com." dst-host=*.twitter.com
add comment="socialwifi: Allow login with Twitter." dst-host=*.twimg.com
​add comment="socialwifi: Allow login with Twitter. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow pbs.twimg.com." dst-host=pbs.twimg.com.cdn.cloudflare.net
add comment="socialwifi: Allow login with Twitter. It's a workaround for Mikrotik walled garden bug with CNAME in DNS response. Required to allow abs.twimg.com." dst-host=twimg.twitter.map.fastly.net

/

Configuring Captive Portal / Hotspot

IP → Hotspot → Server Profiles → default (click twice to access settings)

(in General tab) DNS Name
logging.sw.com

(in General tab) HTML Directory

change name to . (period) (If your Files section contains a “flash” folder, make sure this field says “flash/.” without question marks)

You can change the name of the directory by highlighting the previously set name and typing over it.

(in Login tab) Login By: HTTP PAP (uncheck everything else)

(in RADIUS tab) Use RADIUS: yes

Click OK

IP → Hotspot → Servers → +

Name
socialwifi

Interface

sw

Address Pool

none

Idle Timeout

00:05:00

Addresses Per MAC

(remove value and leave empty)

OK

Now, go to User Profiles tab and double click on default to edit. Set Keepalive Timeout to 3d 00:00:00.

Adding the MikroTik MAC address to the Social WiFi Dashboard.

The MAC address can be found in Interfaces -> ether1 (double click) -> MAC Address.

Copy the value from the "MAC Address" field and paste it in the Social WiFi panel. To do so, log in to your account in the Social WiFi Dashboard. In the “Access Points” tab, press “Add” (upper right corner), paste the MAC address you copied into the form (adding a name is optional) and click “Create”.