cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1049
Views
0
Helpful
1
Replies

ASA5550 NAT table connection Limit.

neinlolaeo
Level 1
Level 1

Hi . I want to know ASA5550 Nat Table Limit connection.  i search ASA5550 datasheet.  but i can't find NAT table.

Below is ASA5550 . License is default (Premium License)

====================================================================

Cisco Adaptive Security Appliance Software Version 8.4(1)
Device Manager Version 6.4(1)

Compiled on Mon 31-Jan-11 02:11 by builders
System image file is "disk0:/asa841-k8.bin"
Config file at boot was "startup-config"

fw01schgr up 1 year 333 days
failover cluster up 5 years 43 days

Hardware:   ASA5550, 4096 MB RAM, CPU Pentium 4 3000 MHz
Internal ATA Compact Flash, 256MB
BIOS Flash M50FW016 @ 0xfff00000, 2048KB

Encryption hardware device : Cisco ASA-55x0 on-board accelerator (revision 0x0)
                             Boot microcode        : CN1000-MC-BOOT-2.00
                             SSL/IKE microcode     : CNLite-MC-SSLm-PLUS-2.03
                             IPSec microcode       : CNlite-MC-IPSECm-MAIN-2.06
                             Number of accelerators: 1

 0: Ext: GigabitEthernet0/0  : address is c84c.7522.3972, irq 9
 1: Ext: GigabitEthernet0/1  : address is c84c.7522.3973, irq 9
 2: Ext: GigabitEthernet0/2  : address is c84c.7522.3974, irq 9
 3: Ext: GigabitEthernet0/3  : address is c84c.7522.3975, irq 9
 4: Ext: Management0/0       : address is c84c.7522.3971, irq 11
 5: Int: Internal-Data0/0    : address is 0000.0001.0002, irq 11
 6: Int: Not used            : irq 5
 7: Ext: GigabitEthernet1/0  : address is 5475.d0f0.4976, irq 255
 8: Ext: GigabitEthernet1/1  : address is 5475.d0f0.4977, irq 255
 9: Ext: GigabitEthernet1/2  : address is 5475.d0f0.4978, irq 255
10: Ext: GigabitEthernet1/3  : address is 5475.d0f0.4979, irq 255
11: Int: Internal-Data1/0    : address is 0000.0003.0002, irq 255

Licensed features for this platform:
Maximum Physical Interfaces       : Unlimited      perpetual
Maximum VLANs                     : 400            perpetual
Inside Hosts                      : Unlimited      perpetual
Failover                          : Active/Active  perpetual
VPN-DES                           : Enabled        perpetual
VPN-3DES-AES                      : Enabled        perpetual
Security Contexts                 : 2              perpetual
GTP/GPRS                          : Disabled       perpetual
AnyConnect Premium Peers          : 2              perpetual
AnyConnect Essentials             : Disabled       perpetual
Other VPN Peers                   : 5000           perpetual
Total VPN Peers                   : 5000           perpetual
Shared License                    : Disabled       perpetual
AnyConnect for Mobile             : Disabled       perpetual
AnyConnect for Cisco VPN Phone    : Disabled       perpetual
Advanced Endpoint Assessment      : Disabled       perpetual
UC Phone Proxy Sessions           : 2              perpetual
Total UC Proxy Sessions           : 2              perpetual
Botnet Traffic Filter             : Disabled       perpetual
Intercompany Media Engine         : Disabled       perpetual

This platform has an ASA 5550 VPN Premium license.


Failover cluster licensed features for this platform:
Maximum Physical Interfaces       : Unlimited      perpetual
Maximum VLANs                     : 400            perpetual
Inside Hosts                      : Unlimited      perpetual
Failover                          : Active/Active  perpetual
VPN-DES                           : Enabled        perpetual
VPN-3DES-AES                      : Enabled        perpetual
Security Contexts                 : 4              perpetual
GTP/GPRS                          : Disabled       perpetual
AnyConnect Premium Peers          : 4              perpetual
AnyConnect Essentials             : Disabled       perpetual
Other VPN Peers                   : 5000           perpetual
Total VPN Peers                   : 5000           perpetual
Shared License                    : Disabled       perpetual
AnyConnect for Mobile             : Disabled       perpetual
AnyConnect for Cisco VPN Phone    : Disabled       perpetual
Advanced Endpoint Assessment      : Disabled       perpetual
UC Phone Proxy Sessions           : 4              perpetual
Total UC Proxy Sessions           : 4              perpetual
Botnet Traffic Filter             : Disabled       perpetual
Intercompany Media Engine         : Disabled       perpetual

This platform has an ASA 5550 VPN Premium license.

====================================================================

 

ASA5550 limited Connection is 650,000 . Thorughput is 1.2G . conetext is 2/50 . NAT Table connection is unlimited ?? or limited ??

 

 

 

1 Reply 1

Rishabh Seth
Level 7
Level 7

Hi,

The total number of xlates will depend on the  IP and port pool available for NAT. Per IP there are ~ 65k ports. 

>> You can check the xlate resource usage on ASA by following command:

sh resource usage all

 

 

Thanks,

R.Seth

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: