If you have a range of addresses available on your external interface you could use something like this.
/ip firewall nat add chain=srcnat action=same to-addresses=192.0.2.2-192.0.2.10 out-interface=ether1 -- Blake Covarrubias On Nov 29, 2010, at 6:38 AM, Optimum Wireless Services wrote: > I disabled squid and noticed facebook worked fine but, after hours it > was the same: sluggish and slow. > > Matt can I just add an alias to my external network interface and do > something like you mentioned? Could it be nat? > > > On Fri, 2010-11-26 at 11:38 -0700, Matt Larsen - Lists wrote: >> I don't know whether it helps or not, but we put in policy routes so >> that every four or eight routed subnets were NATed out through a >> different IP address. Something like: >> >> 192.168.248.0-192.168.255.0 goes out through 208.14.222.10 >> 192.168.240.0-192.168.247.0 goes out through 208.14.222.11 >> etc etc >> >> Since putting these rules in, a lot of our NAT issues have gone away. >> We have a LOT of customers on Facebook and Hotmail, and they get very >> vocal when stuff isn't working, so I know that it is working well for >> the most part. >> >> This is on a StarOS NAT box, but we are going to be replacing it with >> Mikrotik in another month or so. >> >> Matt Larsen >> vistabeam.com >> >> On 11/26/2010 9:16 AM, Jason Hensley wrote: >>> Hmm, I ran into issues with NAT'ing that many customers too. I had to break >>> it out better than what I had. My issues were similar to what you're seeing >>> - just really unpredictable behavior from some sites. Was going over the >>> max possible NAT connections. I'm pretty sure this was on a Mikrotik at the >>> time, but it's been a few years back so I can't remember all the details. >>> >>> With this many customers I would be looking at something better than ADSL >>> connections. >>> >>> >>> >>> >>> -----Original Message----- >>> From: wireless-boun...@wispa.org [mailto:wireless-boun...@wispa.org] On >>> Behalf Of Optimum Wireless Services >>> Sent: Friday, November 26, 2010 10:10 AM >>> To: WISPA General List >>> Subject: Re: [WISPA] Problems with facebook and hotmail >>> >>> Yes. I'm doing NAT for the entire network. >>> >>> Someone suggested to upgrade to the squid ver 3.1. I was using 3.0.24. >>> Upgraded and will run the newer version and see how things work. I need >>> squid on the network to save a little bit of bw. Also I'm running >>> videocache which needs squid. >>> >>> I'll let you know how things go from here. >>> >>> >>> On Fri, 2010-11-26 at 09:57 -0600, Matt wrote: >>>>> profile on facebook. Don't know if is our network or what. We have 3 >>>>> 5mbps/1mbps dsl lines that really give us 4.5/800. We have about 120 >>>> Just curious, do you NAT everyone? >>>> >>>> >>>> >>> ---------------------------------------------------------------------------- >>> ---- >>>> WISPA Wants You! Join today! >>>> http://signup.wispa.org/ >>>> >>> ---------------------------------------------------------------------------- >>> ---- >>>> >>>> WISPA Wireless List: wireless@wispa.org >>>> >>>> Subscribe/Unsubscribe: >>>> http://lists.wispa.org/mailman/listinfo/wireless >>>> >>>> Archives: http://lists.wispa.org/pipermail/wireless/ >>> >>> >>> ---------------------------------------------------------------------------- >>> ---- >>> WISPA Wants You! Join today! >>> http://signup.wispa.org/ >>> ---------------------------------------------------------------------------- >>> ---- >>> >>> WISPA Wireless List: wireless@wispa.org >>> >>> Subscribe/Unsubscribe: >>> http://lists.wispa.org/mailman/listinfo/wireless >>> >>> Archives: http://lists.wispa.org/pipermail/wireless/ >>> >>> >>> >>> -------------------------------------------------------------------------------- >>> WISPA Wants You! Join today! >>> http://signup.wispa.org/ >>> -------------------------------------------------------------------------------- >>> >>> WISPA Wireless List: wireless@wispa.org >>> >>> Subscribe/Unsubscribe: >>> http://lists.wispa.org/mailman/listinfo/wireless >>> >>> Archives: http://lists.wispa.org/pipermail/wireless/ >>> >> >> >> >> -------------------------------------------------------------------------------- >> WISPA Wants You! Join today! >> http://signup.wispa.org/ >> -------------------------------------------------------------------------------- >> >> WISPA Wireless List: wireless@wispa.org >> >> Subscribe/Unsubscribe: >> http://lists.wispa.org/mailman/listinfo/wireless >> >> Archives: http://lists.wispa.org/pipermail/wireless/ > > > > -------------------------------------------------------------------------------- > WISPA Wants You! Join today! > http://signup.wispa.org/ > -------------------------------------------------------------------------------- > > WISPA Wireless List: wireless@wispa.org > > Subscribe/Unsubscribe: > http://lists.wispa.org/mailman/listinfo/wireless > > Archives: http://lists.wispa.org/pipermail/wireless/ -------------------------------------------------------------------------------- WISPA Wants You! Join today! http://signup.wispa.org/ -------------------------------------------------------------------------------- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
