I am trying to get ARP-NAT working in our lab and not getting the results I expected...
Our SMs are in bridge mode to avoid a tripple NAT. Most of our residential customers are already served a private from our routers due to a lack of IPv4 public space. This works fine. We give public IPs to those that need them.
Anyway, I really want a way to track customer MAC addresses in our Mikrotik's better. When a customer replaces a home router, it messes up our queues for that customer and is becomming a headache to keep track of.
I thought by reading the description in the SM about ARP-NAT, I would leave the SM in bridge mode but all traffic behind it would show as coming from the Ethernet MAC address of the SM. That is not the case with my testing.
If I do not create a 255.255.255.255 relay in our DHCP server, the devices behind the SM never pull an address. Once I add that, they pull an IP but the MAC associated with that IP is the MAC of the computer or router behind the SM, not the SM Ethernet MAC like I was expecting.
Am I missing the concept here of ARP-NAT? I really want to avoid running the SM in router or NAT mode since that creates a tripple NAT and that seems to be asking for trouble down the road...
What do you mean by regualr traffic? I don't think I am very complicated... SM in bridge mode, router behind SM. That's it. Put SM in ARP-NAT mode and all traffic appears to be coming to/from the MAC of the SM, not the router behind it. Right? I can't even make that work. When I do that (put the SM in ARP-NAT mode), traffic still comes to/from the MAC of the device behind the SM, not the SM itself.