MOST customers will not need the public directly on their PC. Many customers want to run more than one pc in their home. If you configure the NS2/NS5 as a nat device, then the /32 is their public IP (on the cpe). I'd make bridging the cpe the exception instead of the rule.
well... most of my customers will use their own indoor AP that will be doing NAT... That's why I'd like to provide /32 public IP right to the customer interface - customer's AP would use PPPoE to get the IP.
I'd love to set-up Nano to do PPPoE server but that's not possible and that's why I'd need Nano to be "transparent" and forward PPPoe requests from cusomer's AP to RouterBoard's PPPoE server at the tower...
I could use Nano's DHCP to assign public IP to client but that has at least 2 drawbacks: I'd have to waste /30 for each customer and I 'd have to assign it "statically" (can't setup nano's DHCP to use radius as far as I know). Another drawback is that Nanos don't support OSPF I'd have a lot of static routes at my AP...
I may be wrong but customer's equipment (be it PC or AP) talking PPPoE directly to my Mikrotik (via "transparent" Nano) seems to be the best solution here. What I'd have then is PPPoE server assigning /32 to customer, RADIUS for authentication and IP assignment and routing between APs at the tower and the rest of the network (and I coudl easily create separate OSPF areas per sector or per tower and summarize customer's /32 into bigger subnets (and thus avoiding crowded backbone area)...
The only problem is that I'm not sure if I can set-up Nano to be "transparent" to PPPoE traffic (I guess I need to get one to check that...)
BTW - Mikrotik in Nano's form-factor and price tag would be even better solution
I can't find anything like that here I'm afraid...