Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

NAT rate limit when using ACL

Hi,

I have the following NAT rate limit commands in my 2851 router config:

ip nat translation max-entries all-host 1000
ip nat translation max-entries list 27 10000

I would expect the router applies 10000 entries limit for the packets match ACL 27 and 1000 entries limit for all other hosts. However "show ip nat statistics" shows I am wrong in my assumptions:

#show ip nat statistics
  acl 27: max allowed 10000, used 0, missed 0

host 192.168.1.1: max allowed 1000, used 1000, missed 31519

host 192.168.1.2: max allowed 1000, used 1000, missed 21143

#show ip access-lists 27
Standard IP access list 27
     10 permit 192.168.1.1 (93103 matches)
     20 permit 192.168.1.2 (9951 matches)

I will appreciate if someone can clarify what I am doing wrong. Thanks you in advance.

#show version
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 12.4(24)T, RELEASE SOFTWARE (fc1)

Everyone's tags (4)
1127
Views
0
Helpful
0
Replies
CreatePlease to create content