On Mon, Sep 28, 2009 at 11:30:55PM -0600, Matt Larsen - Lists wrote: > connections coming into it. This server is running StarOS. We have > about 1700 subs NATted behind a single IP address on this server. > > Behind it, I have a Mikrotik server that is handling all traffic > coming into that server from the private network side. Looking at > the IP/Firewall/Connections listing on this server, I see 69000-71000 > items
Time to use more IPs. The one server may be able to handle the load, but you need a pool of IPs. I'd go for 8 or 16 IPs to start with and try to get down to 1 IP for 100 or 200 hosts. Then I'd go get a /20 from ARIN, to start, and work on doing it without the NAT. You have the hosts to justify it. That many subs on PPPoE would probably only need a /21, but with DHCP subnets per sector, you could need a /19 or more. I dislike NAT at the ISP level. It's not horrible at the SOHO level. Has IPv6 come to the Mikrotik/StarOS world? -- Scott Lambert KC5MLE Unix SysAdmin [email protected] -------------------------------------------------------------------------------- WISPA Wants You! Join today! http://signup.wispa.org/ -------------------------------------------------------------------------------- WISPA Wireless List: [email protected] Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
