na eth2 mi se nalazi PPPoe server koji sam podigao.Kada postavim usera bez limitiranja protoka sve radi odlicno i bez trzanja.Medjutim kada postavim limit,nebitno koji,na user-a odmah dolazi do ogromnog pinga kad routeru,ka gateway i ka internetu prilikom otvaranja webstranica ili bilo kakvog pokusaja izlaska na net.
Pokusao sam to sve isto kroz hotspot setup i ista stvar mi se desava.Sve radi odlicno dok ne postavim limit na user-a.
Konfiguracija za pppoe:
[admin@MikroTik] > ip address print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
0 192.168.1.19/24 192.168.1.0 ether1
1 10.10.10.1/24 10.10.10.0 ether2
[admin@MikroTik] > ip dns print
servers: 192.168.1.1,212.113.0.3
allow-remote-requests: yes
max-udp-packet-size: 512
cache-size: 2048KiB
cache-max-ttl: 1w
cache-used: 53KiB
[admin@MikroTik] > ip pool print
# NAME RANGES
0 pppoe-server 10.10.10.10-10.10.10.250
admin@MikroTik] > interface pppoe-server print
Flags: X - disabled, D - dynamic, R - running
# NAME USER SERVICE REMOTE-ADDRESS ENCODING UPTIME
0 pppoe-in1
admin@MikroTik] > ppp profile print
Flags: * - default
0 * name="default" use-ipv6=yes use-mpls=default use-compression=no use-vj-compression=default use-encryption=no
only-one=default change-tcp-mss=yes
1 name="128/64" local-address=10.10.10.1 remote-address=pppoe-server use-ipv6=no use-mpls=no use-compression=no use-vj-compression=no use-encryption=no only-one=yes
change-tcp-mss=yes rate-limit=128000/64000 dns-server=10.10.10.1
2 * name="default-encryption" use-ipv6=yes use-mpls=default use-compression=default use-vj-compression=default use-encryption=yes only-one=default change-tcp-mss=yes
admin@MikroTik] > ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade src-address=10.10.10.0/24
min@MikroTik] > ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 192.168.1.1 1
1 ADC 10.10.10.0/24 10.10.10.1 ether2 0
2 ADC 192.168.1.0/24 192.168.1.19 ether1 0
ply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=453ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1472ms TTL=64
eply from 192.168.1.19: bytes=32 time=1055ms TTL=64
eply from 192.168.1.19: bytes=32 time=362ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
eply from 192.168.1.19: bytes=32 time=1ms TTL=64
Jos jedna stvar,da li je moguce podesiti da kada se izvrsi autentikacija korisnika(kroz pppoe ili hotspot) da Mikrotik prepusti dodjeljivanje DHCP lease-a routeru koji se nalazi iza tj da ne radi NAT-ovanje?Trenutna konfiguracija je sledeca 1-2-3-4
1.Modem (Public IP)
2.Webproxy(Public IP) sa DHCP serverom
3.Mikrotik
4.korisnici na wirelles
Nisam bas najiskusniji sa mikrotikom pa nisam siguran da li je to moguce odraditi na njemu i na koji nacin.Bio bih jako zahvalan za bilo koju vrstu pomoci.
Pozdrav
Edit:Pokusao sam i sa user managerom da postavim ogranicenja ali se isti problem javlja.Stvarno sam vise bez ideja kako da rijesim ovo.
[Ovu poruku je menjao ognjenizrs dana 05.10.2011. u 15:51 GMT+1]