ccr1036-12g-4s 2.5 /gb max throughput under NAT

aacable · April 18, 2020, 6:13pm

I have one Mikrotik Router ccr1036-12g-4s model. currently doing NATTING only (not pppoe). 4x1g bonding-1 is configured for wan & 4x1g bonding-2 for Lan. No firewall rules. Avg 2500 users internet traffic is passing.
Cpu load remsins average 30 to 40 %
Traffic is precisely distributing among all interfaces equally under bonding.
There is no limitation on WAN link. But i can see its not crossing 2.5 , 2.6 Gb.nder full user traffic load, Maximum throughput I can get from WAN is touching 2.5 - 2.6 Gbit maximum. is this the maximum ccr1036 can offer?

can i use core i7 x86 PC for mikrotik with 10g cards for better throughput ? what are real life exepriences of ISP’s with CCR?

Zacharias · April 18, 2020, 6:53pm

It could be… it depends on the packet size…
However i would say it can do an average of 12Gbps…
https://mikrotik.com/product/CCR1036-12G-4S-EM#fndtn-testresults

mkx · April 18, 2020, 8:05pm

What does CPU profile say when CCR is fully loaded? Any particular process eating too much processor? You have 4-way bond, is the traffic evenly distributed over bond members?

aacable · April 19, 2020, 6:22am

Cpu load remsins average 30 to 40 %

Avg 2500 users internet traffic is passing.

Traffic is precisely distributing among all interfaces equally under bonding.

There is no limitation on WAN link. But i can see its not crossing 2.5 , 2.6 Gb.

mkx · April 19, 2020, 10:15am

Your device has 36 CPU cores, so average CPU load means nothing (e.g. a BGP exchange process can use 100% of single CPU and average CPU load would be less than 3% and yet routing tables wouldn’t be updated any faster).
Do a CPU profile: /tool profile cpu=all to see

are some CPUs consistently fully loaded
what kind of processes are using up CPUs

aacable · April 20, 2020, 3:21am

I can see that load is properly distributed among all CPU cores, there is no BGP configured on this router.
What throughput I can expect under this configuration?

sheikhtijan · December 14, 2023, 2:12pm

Hy do you have solution for that problem?

TomjNorthIdaho · December 14, 2023, 4:20pm

IMO ,
I had a similar throughput issue when I first started using Mikrotik NAT ( Nat 44 ) with a large number of connected clients ( ~ 1,000 clients ).
I then changed to a CGN NAT-444 and wow ! - everything got much faster.

I use a couple of Mikrotik CHR’s for my NAT-444 functions.

North Idaho Tom Jones

sirbryan · December 14, 2023, 7:11pm

I’m doing CGNAT for 500+ people on a 1036 with 2.5-3Gbps of traffic at peak and only 5-10% of CPU load running RouterOS 7.11.2. Minimal firewall rules (to protect the router itself) and minimal shaping (about 30 of the 500+ customers).

TomjNorthIdaho · December 15, 2023, 1:55am

Is your CGNAT doing normal NAT44 or NAT444.

NAT444 maps port ranges from your live IP address to your inside natted side - and it also uses firewall jump tables.

Example ,
Live-IP-Address ports 30000-through-30099 to 100.64.0.100
Live-IP-Address ports 30100-through-20199 to 100.64.0.101
Live-IP-Address ports 30200-through-20299 to 100.64.0.102

Maggiore81 · December 15, 2023, 8:18am

What about fasttrack?
We have some 1036 for our wholesale customers, with the 7.11.x on it,
the average cpu is very very low (thanks to the 36 cpu), bgp on it just for about 2000 internal routes.
Both v4+v6 we reach easily 4/5G with very very very very low cpu and 0 issues.

I would check if fasttrack is enabled and if some unnecessary rules are engaged.
You should use jump rules to didive users in the nat part as suggest @TomjNorthIdaho