Hello,
We have sometimes hundreds / thousands mac addresses on WAN public interface that’s not related to our gateway addresses, like 74.125.136.188, 92.62.130.180, 217.73.200.219, but mac address is same like our gateway. We need only one mac address on wan interface (only gateway mac). If we disable arp, we have problem when arp expire on our operator network, then we need back enable arp, when mac address is learned on isp we can again disable. Maybe its possible to set arp enable and filter others mac address’es on wan interface (limit mac only to our gateway)?
Our setup is simple:
We have 4 isp lines on load balancing we use per connection classifier (mangle) and we route by routing mark.
Simple nat:
/ip firewall nat
add action=masquerade chain=srcnat
Strange, but many mac addresses is only on WAN interfaces that’s routing is by routing mark. On default gateway we don’t have mac address flooding.