Is there solution to src-nat to multiple address range ?
I have few public subnets /24, /25, /23 and want to do dynamic srcnat 1300 users.
Some idea ?
Nope. It doesn’t really do that.
You can use PCC and nth to distribute across multiple IPs, but for a pool of 768 IPs that would be 768 NAT rules. Which would REALLY slow the router down. Across 16 IPs or 8 IPs wouldn’t be a problem.
That said, why waste that many IPs for port overload? 8 IPs will be WAY more than sufficient for 1300 hosts.
I want my users not to have problems with rapidshare od sites like that.
I also want to have logs for ip dedication for users if some abuse accure.
I undestand that pppoe or hotspot would be best solution, but now it is problem to transfer all my users to new auth.
With ppoe i could give public ip directly to user interface.
I have about 150Mbps trafic peak and 55% peak on RB1000.
For now I dont want to change my curent network configuration. Best thing is to find way to mangle/nat.
Adding 768 NAT rules would kill that router, then. And RouterOS doesn’t support the concept of NAT pools, so you can’t do without as many rules as IPs you want to use. Either change your plan, or change your hardware.
You could use netmap as an action, however there is a downside to that, you can only give it FULL subnets (broadcast and network IPs must be useable) as the action. This means that in order to use it, you won’t be able to use all 768 IP addresses, only about 1/4 of them with one rule, with two rules you could use 1/2 of the addresses, and you would need to subnet it further with more rules to use more of your available IP addresses. You also won’t be able to keep track of who gets nat’d out of what IP.