Can anybody explain to me why the NAT TCP translation timeout default is 86400 seconds (1 day). I am running NAT overload and most of the time my NAT space gets filled over with lot of translations. I want to know the appropriate TCP fine tuning in this regard.
I think you have many P2P application, like BT, EDonkey etc. Each NAT entry uses around 20 bytes of memory, router would run out os memory if sessions burst out in a high volume. So you need limit the nat entry number on router, try:
ip nat translation tcp-timeout 60
ip nat translation max-entries 70
You can tune tcp-timeout and max-entries smaller until it works fine.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...