Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2732
Views
0
Helpful
2
Replies

NAT table full .

mrobert
Level 1
Level 1

‎06-08-2010 02:05 AM - edited ‎03-11-2019 10:55 AM

Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.

All traffic is stopped ?

MR

Labels:
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎06-08-2010 04:43 AM 

mrobert wrote:
Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.
All traffic is stopped ? 
MR

MR

As far as i know it should stop all new connections but still continue to pass traffic for connections that have already been setup in the xlate table.

Jon

0 Helpful

Kureli Sankar
Cisco Employee
Cisco Employee

‎06-08-2010 04:45 AM

Are you seeing port map translation creation failed messages in the syslogs?

If there is one attack host, trying to establish too many connections it can quickly exhaust the PAT pool.

If there are no more translations slot available then yes all new connections will fail.

-KS

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card