Lets say i've got 150 100.64.0.0/10 addresses I need to NAT to a public address. Assigning them 400 ports for both udp and tcp I'm looking at 300 NAT rules. See Example:
add action=netmap chain=srcnat out-interface=wlan1 protocol=tcp srcaddress=100.64.0.2/24 to-addresses=X.X.X.X/30 to-ports=1024-1424
add action=netmap chain=srcnat out-interface=wlan1 protocol=tcp srcaddress=100.64.0.3/24 to-addresses=X.X.X.X/30 to-ports=1425-1824
add action=netmap chain=srcnat out-interface=wlan1 protocol=tcp srcaddress=100.64.0.4/24 to-addresses=X.X.X.X/30 to-ports=1825-2224
add action=netmap chain=srcnat out-interface=wlan1 protocol=tcp srcaddress=100.64.0.5/24 to-addresses=X.X.X.X/30 to-ports=2225-2624
add action=netmap chain=srcnat out-interface=wlan1 protocol=udp srcaddress=100.64.0.2/24 to-addresses=X.X.X.X/30 to-ports=1024-1424
add action=netmap chain=srcnat out-interface=wlan1 protocol=udp srcaddress=100.64.0.3/24 to-addresses=X.X.X.X/30 to-ports=1425-1824
add action=netmap chain=srcnat out-interface=wlan1 protocol=udp srcaddress=100.64.0.4/24 to-addresses=X.X.X.X/30 to-ports=1825-2224
add action=netmap chain=srcnat out-interface=wlan1 protocol=udp srcaddress=100.64.0.5/24 to-addresses=X.X.X.X/30 to-ports=2225-2624
1. Is this way too many rules?
2. Is there a better way to accomplish this?
Also this is going on a CCR1072-1G-8S+ with 16Gb of ram.
Thanks.