[c-nsp] IP nat translation
cnsp at marenda.net
cnsp at marenda.net
Mon Sep 30 08:29:12 EDT 2013
> How do I change the dynamic time out ?
For example:
ip nat translation timeout 60
ip nat translation tcp-timeout 60
ip nat translation udp-timeout 30
ip nat translation finrst-timeout 10
ip nat translation syn-timeout 10
ip nat translation dns-timeout 30
ip nat translation icmp-timeout 10
Values to be discussed...
Iff you use reflexive ACL,
you should set their timeouts nearby, I think greater.
> > IIRC on router IOS the defaults are:
> > 24 hrs for tcp unless a rst or fin is seen non-dns udp is 5 mins;
> dns:
> > 1 min Only static entries remain indefinitely - as long as it is
> > present in config.
Just my $0.01
Juergen.
More information about the cisco-nsp
mailing list