Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

CAT6509 FWSM nat issue

I have a new CAT6509 with a FWSM Blade that I am about to install into production. I want to configure the NAT so that the DMZ can talk, with the appropriate acl, to the private net with out nat’ing. The consultant that I am using to help me configure the switches/fwsm says that I will have issues doing this because of a 16k session nat limit in the fwsm. Can anyone confirm this and will it really be an issue. I have about 1000 users and maybe 50 dmz devices.

Thanks for the help.

Nitan Parikh

William Blair & Company, LLC

2 REPLIES
Silver

Re: CAT6509 FWSM nat issue

Indeed, there could be an issue due to 16k session nat limit of the blade.

Bronze

Re: CAT6509 FWSM nat issue

Nitan,

This does not seem to be correct information.

The FWSM can do 1 million concurrent connectins, and the nat limit is 256k, not 16k.

Plus, you are talking about dmz to inside with nat exemption. So why does nat limit have anything to do with this. I dont see any reason why this will have any issues.

-Sunil.

182
Views
0
Helpful
2
Replies
CreatePlease login to create content