Problem NAT 1500 NAT ip's

husamaga · June 6, 2011, 1:54pm

Hi All,
i’m using mikrotik RB1000 V 3.23 and have a problem with NAT:
i made an address list 192.168.200.0/28, 192.168.200.16/28 etc… and made a NAT with action src-net to addrress 10.0.0.1 10.0.0.2 etc… every 16 ip’s NAT to one IP.

    chain=srcnat action=src-nat to-addresses=10.0.0.1 src-address-list=1javna16privatne_01 
     out-interface=ether1 

54   chain=srcnat action=src-nat to-addresses=10.0.0.2 src-address-list=1javna16privatne_02 
     out-interface=ether1

and it works lets say fine, and i made alot of these NAT addresses, more than 1500 IP’s on NAT.
i have a situation that ip’s still reserved for some reason, which meens that i have 300 used IP’s in the NAT but in NAT table it shows that about 1500 IP’s are in use. (i have only 300).
i allways have to add new IP’s so the all users can work.
is there any solution? or any help please?

husamaga · June 6, 2011, 1:55pm

i forgot to mention i have 4 routers, one of them is version 4. and have the same situation.
thanks

fewi · June 6, 2011, 2:14pm

Why are you doing that at all? Any particular reason you don’t want to overload more than 16 IPs to one? Usually up to 1,000 IPs isn’t much of a problem.

Also, from your description it isn’t clear what actual issue you’re experiencing.

husamaga · June 6, 2011, 2:24pm

just want it that way, want to avoid bannes on chat and problem with ip’s on rapidshare etc…
the problem is that the 300 users take all NAT ip’s, and i must allways add a new ip’s on NAT (i have now 1500) and it’s almost full, i dont know why dont every user take a one NAT IP. if that happened i will have only 300 ip’s in use.
any help?

fewi · June 6, 2011, 2:31pm

No. I still don’t understand. The router is going to NAT however you’re telling it to. Can you maybe take a screenshot or copy/paste of what you’re seeing, and what you think you should be seeing?

husamaga · June 6, 2011, 2:39pm

these are images from MT, the first one shows the address list i create, as shown in code. i realy create a big list (180 lines).
the second one shows the NAT. as you see some lines have 0 bytes and packets. donw know why? these addresses never been used, for some reason MT just jumpes these IP’s. and the other problem is that MT uses a lot of IP’s i natted, so i allways had to create new address-list.
i checked the IP’s and the list more than 100 times.
thanks

fewi · June 6, 2011, 2:40pm

If those entries aren’t being used that’s because the router isn’t seeing traffic from IPs on the source address lists associated with the NAT rule. How do you assign IPs to your customers?

husamaga · June 6, 2011, 2:42pm

by dhcp server. some ip’s never been used on mikrotik, but i think they had been used on the dhcp server.

fewi · June 6, 2011, 2:48pm

Check your leases. Clients tend to renew the same lease over and over. Some leases may not be in use. If they are not, they will of course never trigger NAT.

You may have better luck using PCC to spread NAT IPs around, rather than going by static subnets you can’t guarantee will be used.

husamaga · June 7, 2011, 6:08am

Yes, i thought that could be the problem, but i needed a pro’s opinion
Can you tell me what do you meen by PCC? i will try that.
thanks

husamaga · June 7, 2011, 6:26am

i found PCC, as i read about it i can make NAT for 2 ISP’s. dont know how to make it to work for my situation for example.