Dual-stack and CGN? You can get 8:1, 16:1 or even 32:1 out of a single
public IPv4 address. Give 8 customers 8k ports each, or 16 customer 4k
ports each, 32 customers 2k ports each. That's *source* ports, so
they're not limited to 8k, 4k or 2k connections total. You have to look
at in both directions. 10.10.10.10:1024 -> 8.8.8.8:53 and
10.10.10.10:1024 -> 8.8.4.4:53 mappings are both valid, and it obviously
goes a lot deeper than that.
Seems to be a whole lot easier than some crazy NAT appliance that's
running the whole network. I haven't done anything like this, but I'm
considering it. I think Juniper even lets you do this with a couple
commands? Yeah, I'm too cheap for that.
Something else to keep in mind is that most consumer grade routers still
have a fairly limited connection table. My Cambium cnPilot router I have
at home lets you adjust the max table size (up to 8192). Most are 2k or
4k. While even a low-end MikroTik will give you >100k.
On 1/15/2018 11:35 AM, Chuck McCown wrote:
Planning to buy another /21 or some such thing .... again ......
So going to attempt to NAT the whole frigging company.
Seems like I am going in reverse here.
If we can make NAT work for most customers, then that will buy us time
to build our magic V4 translator gateway box for a V6 only network.
Any suggestions on the best way to do this?
