[rbak-nsp] NAT configuration
Navin Nepali
navin_n at yahoo.com
Mon Feb 18 07:54:42 EST 2013
I think in SE, the NAT is not ALG based..I remember when i used NAT in my network many connections are dropped for applications such as FTP, IPSec VPN etc. When I asked the SE support, they told me the NAT is not ALG based.
I don't know as of now many be Ericsson may have already developed NAT ALG.
Thanks.
________________________________
From: Piotrek S. <komuch at gmail.com>
To: redback-nsp at puck.nether.net
Sent: Monday, February 18, 2013 4:13 PM
Subject: [rbak-nsp] NAT configuration
Hi,
Can anyone tell me how can i configure NAT many to many ?
Currently i have:
ip nat pool pool-NAT-customers napt multibind
address xxx.xxx.xxx.xx1/32 port-block 15 to 15
address xxx.xxx.xxx.xx2/32 port-block 15 to 15
address xxx.xxx.xxx.xx3/32 port-block 15 to 15
address xxx.xxx.xxx.xx4/32 port-block 15 to 15
...
address xxx.xxx.xxx.x49/32 port-block 15 to 15
nat policy pol1
! Default class
ignore
icmp-notification
! Named classes
access-group NAT-ACL
class NONAT
ignore
icmp-notification
class cls-NAT-1-26
pool pool-NAT-customers BRAS
timeout tcp 18000
timeout udp 60
timeout fin-reset 60
timeout icmp 30
timeout syn 60
admission-control tcp
admission-control udp
admission-control icmp
endpoint-independent filtering udp
no icmp-notification
!
Why many established connections are dropped (like SSH, HTTPS sessions, etc.) after short period of idle time even though tcp timeout is set to 18000 ?
Thanks for help.
Regards
_______________________________________________
redback-nsp mailing list
redback-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/redback-nsp
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/redback-nsp/attachments/20130218/28188f6c/attachment-0001.html>
More information about the redback-nsp
mailing list