I am encountering some issues assigning public IPs to customers. I've tried a pretty good Google search and surprised I didn't turn anything up. Currently it's working with NAT but I want all customers to have their own IP.
I have a Mikrotik CCR1009-7G-1C-1S+
I have a /24 block of IPs with a gateway of 45.xxx.yyy.1
I don't have any other IPs from my upstream provider.
ether1 is my WAN
ether2 is my LAN
What has been suggested to me, is to have ether1 with 45.xxx.xxx.2 and ether2 with 45.xxx.xxx.3
I had used 172.16.1.1/24 for ether2 but didn't think I needed it?
Now, first question...what subnet should the .2 and the .3 be on? Should I put the .2 to a /30 ? Then the rest for .3 ? Should there even be a .3 ? Yes...very confused
On ether2 I have 10.0.0.0/8 used for internal addresses for my aps and equipment.
In theory, a customer will get an ip between 45.xxx.xxx.10 and 45.xxx.xxx.245 and be routed to the internet with a speed test showing as that IP and NOT 45.xxx.xxx.2 or 45.xxx.xxx.3 which is happening right now.
Under firewall, NAT I have action=masquerade chain=srcnat src-address=!45.xxx.xxx.0/28 out-interface=ether1 which I thought did the trick
I was told that I should use 45.xxx.xxx.2 as my gateway for the customer IPs and then in turn use 45.xxx.xxx.1 as a gateway for 45.xxx.xxx.2 - does that make sense?
If there is a better way of 'dumping' information from the mikrotik so somebody can better help out I'm all ears
It seams like a pretty simple thing I'd like to do here, however, try as I might it isn't for me lol
Any help is appreciated, diagrams...anything...I'm pretty confused