I’m working with a customer who is a fixed WISP and formerly used NAT and private IP schemes in most of their network.
They have recently upgraded a lot of equipment and purchased enough public IPs to cover all of their customers and then some.
They have one location that is running a Mikrotik RB493AH it is setup with the following
ether2 (connected to border router)
ip 192.168.10.170
gw 192.168.10.1
Bridge1 (ether3-9)
10.0.12.1/22
10.0.24.1/21
they only have one firewall->NAT rule
chain=srcnat out-interface=ether2 action=masquerade
i need to have it masquerade these addresses:
10.0.12.1/22
10.0.24.1/21
and I need to allow for customers to have a static public IP in the following subnets
x.x.116.128/26
x.x.116.192/27
where the gateway is these IP addresses (border router)
x.x.116.129
x.x.116.193
I know I need to set the Src. Address in the masquerade rule to include the 10.0.x.x addresses.
How to I allow for the public IPs to be routed seamlessly? Is it just a matter of creating a route? and do i need to assign this router an IP within those ranges? (if so, do i assign it to ether2 or bridge1?)
any help is greatly appreciated!
thanks,
Kalen