2
I am considering trying to implement something similar to the diagram below and need to know how this would be possible. Networking is not my strong suit so forgive any errors in my description.
I have a switch/router in place that is BGPing with an ISP. Connected to this are some wireless AP's and I have people connecting to these as a station. The stations have VLAN 100 set and a public IP, in this example 1.1.1.2. The gateway is set on the main router and then a default route pushes that traffic to the ISP. The flow would be something like: 1.1.1.2 connects to AP (in bridge mode), traffic routes to the main switch gateway 1.1.1.1. Default route is then used to pass 1.1.1.2 to 2.2.2.3 which the ISP then determines the routing from here for the public ip.
I want to start using NAT, the main aim is to dual stack and NAT ipv4 for services which are still unattainable on ipv6.I wish to use a mikrotik or similar to do the natting for a small number of people, nothing too intensive. However, rather than physically connecting devices to the mikrotik it seems much cleaner to route only the necessary traffic to the mikrotik as not all people will be natted.
If I use for example 10.20.0.1/24 as the local range and set the CPE with: IP: 10.20.0.2 Gateway: 10.20.0.1
Setting the mikrotik with 10.20.0.1. Ideally traffic would then passthrough the AP to the main router and then to the mikrotik ie the local NAT range gateway, at this point, it would be natted to a public ip ie 1.1.1.3 and then routed back to the main switch gateway of 1.1.1.1 and finally out to the ISP like normal traffic.
Is the physical setup possible and can someone give me an idea on the main points of consideration to achieve the following.