So the WISP i work for is using mikrotik 433/450g's at our tower sites and radius to make a PPPOE connection to our subscribers. which works great unless our subscriber uses a service that breaks when behind more than one NAT, like VPN, or running a server. for those people i create a 1-1 nat rule so that a public IP gets forwarded to the customer private IP (10.0.0.x).
to limit the speed for the 1-1 nat customer ive done the following simple rule:
add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" direction=both disabled=no dst-address=\
10.0.0.90/32 interface=ether1 limit-at=1M/256k max-limit=1M/256k name=queue1 parent=none priority=3 \
which does indeed limit the speed for us, however on the bench today i was testing, and when a PPPOE user (which creates a simple rule automatically when they log on) and my 1-1 nat user run a speedtest, at the same time, they both get spotty, shitty speed results. watching the two computers speedtest is like watching two kids fighting over a waterhose for a drink, one drinks, then the ther grabs it and drinks.
when i disable the simple rule for 1-1 nat one gets like 30meg and the other gets his proper speed too.
howcome I cant get both simple rules to play nice together? here is a photo of what it looks like in winbox.
- goof.JPG (142.18 KiB) Viewed 528 times