06-08-2010 02:05 AM - edited 03-11-2019 10:55 AM
Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.
All traffic is stopped ?
MR
06-08-2010 04:43 AM
mrobert wrote:
Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.
All traffic is stopped ?
MR
MR
As far as i know it should stop all new connections but still continue to pass traffic for connections that have already been setup in the xlate table.
Jon
06-08-2010 04:45 AM
Are you seeing port map translation creation failed messages in the syslogs?
If there is one attack host, trying to establish too many connections it can quickly exhaust the PAT pool.
If there are no more translations slot available then yes all new connections will fail.
-KS
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: