I’m using an RB450G to end PPPoE tunnels, actually with a load of 50/60 tunnels and 5Mbps of traffic (cpu is on 20 to 25% with this load), no other function on the board otherless snmp agent and ntp client.
I’m not shure if this hardware can support this load gracefully in a production enviroment.
Can you give us you opinion ?
Regards.
oh!, sorry, I missed to mention that this board is a router also with a few static routes (no routing protocols enabled).
Nobody knows.
If you post your results, then we’ll all know more.
I’d suggest paying attention to the IP-Firewall-Nat-Connection Timeout settings, cos the defaults are silly.
Depends if you have a Nat Masquerade rule though.
Ah crap.
RB450G has 256Mb Ram.
So, about 340 bytes per NAT tracking entry, times 65535 max possible ports = 22.3Mb (roughly) of Ram for a totally shedded NAT tracking table.
It has a 680Mhz processor too, so unless it gets bored and starts playing CounterStrike …
It should be absolutely fine at that data rate (5Mb/s).
ok, thank you. This board is only a pppoe server with some static routes, no nat/masquerade.
I run a 450G as my PPPoE server with around 230 tunnels right now. A few firewall rules and doing some routing. CPU averages around 15-20% with a load of between 5 and 10 megs. I’m sure it could easily go up to 500 active sessions with my config. Time will tell.
Could you please show you config command,
How 230 pppoe run on 450G?
Not really doing anything special. Port1 is my WAN to the internet, and port 2 is LAN to the rest of my network. PPPoE server runs on the LAN. Some static IP customers, most most are NATed from private IP’s. I run Usermanager on the same board as my radius server for setting IP addresses and rate limits. I also run a Web Proxy (still on the same board) but its only purpose is to redirect suspended accounts to a page explaining why they are suspended.
Other than that, just a few firewall rules to block or allow certain ports and a few scrips to change bandwidth sources if my main goes down.
I also don’t run encrypted PPPoE sessions, which I’m sure reduces load. All of my clients have their MTU set to 1400 so I don’t need any mangle rules to change the MSS.
Some of the original RB450Gs shipped with a level 4 license which would have limited you to only 200 PPPoE connections, but they all should be upgradable to level 5 licenses. Just click the upgrade key button on the system → license tab and it should grab the new one from Mikrotik.
(I’m assuming you were trying to make a license level comment…if not, then I’m not sure what point you were actually trying to make.)