L3 Hardware Offloading with fast-track and NAT

douglas168 · March 7, 2022, 2:56am

Hi all,

I have a CRS312-4C+8XG (both OS and firmware are running 7.1.3) acting as a basic NAT router with ether1 port as WAN port and rest of ports as internal LAN. I also configured fast-track on established and related traffic. Internal LAN traffic can NAT out to outside networks successfully.

Yet, when I tried to enable “L3 Hardware Offloading” on switch1 and all switch ports except ether1 (as per https://help.mikrotik.com/docs/display/ROS/L3+Hardware+Offloading#L3HardwareOffloading-L3HWDeviceSupport), all NAT traffic to the outside fails. Just for testing, I also enable “L3 Hardware Offloading” on all switch ports but still can’t connect to the outside.

What is the correct way to figure “L3 Hardware Offloading” with fast-track and NAT?

Below is the config file:
MikroTik_L3_HW_Offloading_20220307.txt (3.68 KB)
Appreciate the help!
Douglas Kuo

ekarin · March 19, 2023, 9:21am

The current RouterOS v7 now runs L3 HW Offloading for fasttrack connection without problems. You can try the current RouterOS v7. It should be OK.

chechito · March 20, 2023, 2:40pm

i think need to try at least with 7.6 version

rextended · March 20, 2023, 2:45pm

The post is one year old, I do not think the user wait till now for your (useless… I do not read any advice) reply,
L3HW is already available from 7.1
https://help.mikrotik.com/docs/display/ROS/L3+Hardware+Offloading#L3HardwareOffloading-CRS3xx,CRS5xx:SwitchDX8000andDX4000Series

That user at that time have L3HW not working as expected because add the ether9 to main bridge, contravventing to the indications…
https://help.mikrotik.com/docs/display/ROS/L3+Hardware+Offloading#L3HardwareOffloading-Usingportsthatdonotbelongtotheswitch

Some devices have two switch chips or the management port directly connected to the CPU.
For example, > CRS312-4C+8XG > has an ether9 port connected to a separate switch chip.
Trying to add this port to a bridge or involve it in the L3HW setup leads to unexpected results.
Leave the management port for management!

ekarin · April 28, 2023, 8:11am

@chechito
OK. Please us know what the result is.

rextended · April 28, 2023, 8:16am

Is your favorite sport the resurrection?

The user clearly has an error in the configuration and has absolutely nothing to do with the version used.

ekarin · July 15, 2023, 9:13am

No, my favourite sport is Muaythai.

Configuration is not an issue, we tested and waited for the version fixed for a long time even now no a long term release of version 7 yet.