Taking a successful distributed deployment to a large-scale solution. What I need to do and thus can the CCR1036 support the following:
Support full 4K VLANs
Support 4K DHCP servers/private IP pools
Support up to 20 HotSpot instances
Handle up to 4Gbps traffic in/out via the 10G SFP ports
Once a client device (MAC address) is authenticated to (redirected by the CCR) our cloud RADIUS system triggered by going thru one of the 20 HotSpot instances, the device will then just be routed thru the CCR with 802.1q VLAN tagged traffic. Thus, the Firewall rules are mostly for the operation of the HotSpot instances and ensuring VLAN traffic segregation is enforced.
Also have huge performance issues with these things. Really disappointed by them and most certainly won’t purchase them again.
Whilst the brochures, test data, “lab” tests, etc all look real pretty on paper, out there in the field with real live internet traffic, performance is FAR from what they (mikrotik) promises…
EDIT: Whilst I don’t have high CPU load, I have 1 x 10G to 8 x 1G LACP with a CPU load of ± 25%, battling to push more than 3Gbps “real” internet traffic…
Strange… All my fastpath counters indicate that it IS working…
Either way, LACP is a really simple thing. If MT can’t even get that right, in a ‘flagship’ product, then there’s obviously something wrong with the product.
That’s exactly my problem with these devices. Everyone rants and raves because it can FORWARD g*d knows how many PPS, but the moment you actually DO something with these routers, they fall apart, completely.