Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

NAT table full .

Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.

All traffic is stopped ?

MR

Everyone's tags (2)
2 REPLIES
Hall of Fame Super Blue

Re: NAT table full .

mrobert wrote:

Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.

All traffic is stopped ?

MR

MR

As far as i know it should stop all new connections but still continue to pass traffic for connections that have already been setup in the xlate table.

Jon

Cisco Employee

Re: NAT table full .

Are you seeing port map translation creation failed messages in the syslogs?

If there is one attack host, trying to establish too many connections it can quickly exhaust the PAT pool.

If there are no more translations slot available then yes all new connections will fail.

-KS

1354
Views
0
Helpful
2
Replies
CreatePlease to create content