Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
273
Views
0
Helpful
2
Replies

firewall nat ports being used

suthomas1
Level 6
Level 6

‎11-03-2009 03:30 AM - edited ‎03-11-2019 09:35 AM

This is a general query & doesnt the error seen is not of a cisco firewall. this is from a mcafee firewall which quite often gives "all nat ports being used" message.

Not certain what it means & if it has impact on overall performance of the firewall.

Appreciate suggestions.

Thanks!

Labels:
0 Helpful
2 Replies 2

Jon Marshall
Hall of Fame
Hall of Fame

‎11-03-2009 03:48 AM

Sunny

It may be to do with a NAT overload ie. where you translate multiple private IP addresses to one public IP address.

With this setup the firewall doesn't just translate the IP address but also has to modify the port number. Because there is a finite number of ports ie. 1 - 65535 it may be that the firewall has run out of available ports ie. there are too many private addresses that need translating for the available ports.

Note that not all of the 1 - 65535 port numbers are available to the firewall when doing NAT overload.

Jon

0 Helpful

suthomas1
Level 6
Level 6
In response to Jon Marshall

‎11-03-2009 04:01 AM

Thanks Jon. This one involves a one on one NAT description for an application server to be made accessible from internet.

Any indications on how this could be the case.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card