Some of the CGNAT implementations actually simply subdivide the ports on each address so you've assigned a fixed range of ports to each sub. So for instance, if you decided that each customer could have at most 1024 sessions open, you would assign ports 0-1023 to customer 1, 1024-2047 to customer 2, and so on.... This allows 64 customers per address, and eliminates the 'I don't know which customer this matches' issue.
-forrest On Wed, May 10, 2017 at 5:34 PM, Matt <matt.mailingli...@gmail.com> wrote: > Why not dual stack with CGNAT IPv4 and public IPv6? > > Hand your lower speed tier accounts a NATed IPv4 in 100.64.0.0/10 and > a public /64 in IPv6. > > What I am thinking of doing when the IPv4 squeeze hits us but I still > have not figured out how to track abuse etc in the NATed space. > Anyone made that work with Mikrotik? > > We are doing dual stack public IPv4 and IPv6 with PPPoE right now but > it seems that mostly only pppoe users with Mikrotik routers pick up > the IPv6. Mikrotik seems to be lagging a bit on IPv6 support as well. > No IPv6 accounting yet, no easy way to assign IPv6 subnet with radius > etc. > > > > On Wed, May 10, 2017 at 5:50 PM, Chris Wright <ch...@velociter.net> wrote: > > I’m weighing the pros/cons of purchasing another block of IPv4 at > auction or > > finding a NAT64 solution that will enable me to start handing IPv6 > addresses > > to customers and know they’ll be able to get to IPv4 internet without > issue. > > Mikrotik doesn’t seem too concerned with implementing NAT64, so I’d be > > looking at adding complexity to my network if I go that direction. On the > > other hand, I don’t like spending thousands of dollars on antiquated > address > > space if I can help it. I’d rather do my part in moving IP standards > forward > > instead of staying stuck in the past. > > > > > > > > What’s working for you all? > > > > > > > > Chris Wright > > > > Network Administrator > > > > > -- *Forrest Christian* *CEO**, PacketFlux Technologies, Inc.* Tel: 406-449-3345 | Address: 3577 Countryside Road, Helena, MT 59602 forre...@imach.com | http://www.packetflux.com <http://www.linkedin.com/in/fwchristian> <http://facebook.com/packetflux> <http://twitter.com/@packetflux>
