I am using ASR1004 for address translation for my subscriber. I have a problem that nat translation session is already a half (1 million) of what ASR1K ESP20 limitation (2 million session). Below is the output of "show ip nat statistics":
Total active translations: 1066570 (31 static, 1066539 dynamic; 1066506 extended)
[Id: 7] route-map NATuser pool New-Pool refcount 1066163
pool New-Pool: netmask 255.255.224.0
start 126.96.36.199 end 188.8.131.52
type generic, total addresses 8190, allocated 2516 (30%), misses 0
max entry: max allowed 10000000, used 1066539, missed 0
Pool stats drop: 0 Mapping stats drop: 0
Port block alloc fail: 0
IP alias add fail: 0
Limit entry add fail: 0
My question is, how to decrease this entry without causing harm to the subs? I have seen these commands:
ip nat translation [timeout|tcp-timeout|...] --> will this command delete idle NAT session or any particular NAT session
ip nat transation max-enries .... --> I understand that this will limit session a host/group of host can make. But if the threshold is exceeded, what will happen to the host? Say for example max entriy for a host is 10, what if a host want to make 11 session? What will happen with the last session.
I also have read about carier grade NAT/ large scale NAT, but have not found detail document. Could someone direct me?
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...