Cisco ASA 5506-X Configuration Manual page 95
Cli
Hide thumbs
Also See for ASA 5506-X:
- Installation manual (46 pages) ,
- Hardware installation manual (26 pages) ,
- Quick start manual (14 pages)
Advertisement
Chapter 4
Network Address Translation (NAT
Feature Name
Flat range of PAT ports for a PAT pool
Extended PAT for a PAT pool
Platform
Releases
Description
8.4(3)
If available, the real source port number is used for the
mapped port. However, if the real port is not available, by
default the mapped ports are chosen from the same range of
ports as the real port number: 0 to 511, 512 to 1023, and
1024 to 65535. Therefore, ports below 1024 have only a
small PAT pool.
If you have a lot of traffic that uses the lower port ranges,
when using a PAT pool, you can now specify a flat range of
ports to be used instead of the three unequal-sized tiers:
either 1024 to 65535, or 1 to 65535.
We modifed the following commands: nat dynamic
[pat-pool mapped_object [flat [include-reserve]]] and nat
source dynamic [pat-pool mapped_object [flat
[include-reserve]]].
This feature is not available in 8.5(1) or 8.6(1).
8.4(3)
Each PAT IP address allows up to 65535 ports. If 65535
ports do not provide enough translations, you can now
enable extended PAT for a PAT pool. Extended PAT uses
65535 ports per service, as opposed to per IP address, by
including the destination address and port in the translation
information.
We modifed the following command: nat dynamic
[pat-pool mapped_object [extended]] and nat source
dynamic [pat-pool mapped_object [extended]].
This feature is not available in 8.5(1) or 8.6(1).
Cisco ASA Series Firewall CLI Configuration Guide
History for NAT
4-43
- Quick Links:
- Table of Contents
Hide quick links:
Advertisement
