https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/4037073#M1067101 <P>the show resources commands are not showing this information. Maybe this has changed over the past 8 years. I see no way to tell how high a number we can set. We have pools of ip's NATing to Internet so we can go higher than 65k xlates and we do. This is on an ASA 5555. Some of the resources do show a percentage of possible limits to set but others, like xlates, do not. Even with a limit set in every class</P><P>&nbsp;</P><P>asa5555-fw# sh resource allocation<BR />Resource Total % of Avail<BR />Conns [rate] 31000 0.00%<BR />Inspects [rate] 13500 0.00%<BR />Syslogs [rate] 38000 0.00%<BR />Conns 392500 39.21%<BR />Hosts 32000 0.00%<BR />IPSec unlimited<BR />Mac-addresses 22000 33.56%<BR />ASDM 25 12.50%<BR />SSH Client 15(U) 15.00%<BR />SSH Server 22 22.00%<BR />Storage unlimited<BR />Telnet 15 15.00%<BR /><STRONG>Xlates 218000 0.00%</STRONG><BR />Routes 4200 0.00%<BR />Other VPN Sessions 0<BR />Other VPN Burst 0<BR />AnyConnect 0<BR />AnyConnect Burst 0<BR />IKEv1 in-negotiatio 960 19.20%<BR />U = Unlimited: Some contexts have no limit and are not included in the total</P> Thu, 27 Feb 2020 19:13:43 GMT jimgriffin 2020-02-27T19:13:43Z https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/1923688#M458359 <P>I have an ASA 5520 in a school environment.&nbsp; I currently only have 1 public IP NATing for about 3000 students.&nbsp; I was wondering if there were any limits per public IP as far as translations go.</P><P></P><P>Thanks in advance!</P><P>Mark</P> Mon, 11 Mar 2019 22:39:55 GMT https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/1923688#M458359 mdieken01 2019-03-11T22:39:55Z https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/1923689#M458360 <HTML><HEAD></HEAD><BODY><P>Mark,</P><P></P><P>I have not found anything about the XLATES, but the following gives you the basics about how many connections for all the ASA5500 series devices and what their basic capabilites are.&nbsp; </P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/prod_brochure0900aecd80285492.pdf">http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/prod_brochure0900aecd80285492.pdf</A></P><P></P><P>Thanks and do rate helpful posts.</P><P></P><P>Kimberly</P></BODY></HTML> Thu, 08 Mar 2012 22:56:37 GMT https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/1923689#M458360 Kimberly Adams 2012-03-08T22:56:37Z https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/1923690#M458361 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>You can use the "show resource usage summary"&nbsp; or "show resource usage resource Xlates" command on the ASA to see information about ASAs own resource usage and limits.</P><P></P><P>As you are using single public IP address for users with PAT translation I think it limits the connections </P><P>65535 as thats the maximum amount of ports you have at our disposal for PAT translations. Not sure if thats the exact amount.</P><P></P><P>- Jouni</P></BODY></HTML> Fri, 09 Mar 2012 13:16:24 GMT https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/1923690#M458361 Jouni Forss 2012-03-09T13:16:24Z https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/4037073#M1067101 <P>the show resources commands are not showing this information. Maybe this has changed over the past 8 years. I see no way to tell how high a number we can set. We have pools of ip's NATing to Internet so we can go higher than 65k xlates and we do. This is on an ASA 5555. Some of the resources do show a percentage of possible limits to set but others, like xlates, do not. Even with a limit set in every class</P><P>&nbsp;</P><P>asa5555-fw# sh resource allocation<BR />Resource Total % of Avail<BR />Conns [rate] 31000 0.00%<BR />Inspects [rate] 13500 0.00%<BR />Syslogs [rate] 38000 0.00%<BR />Conns 392500 39.21%<BR />Hosts 32000 0.00%<BR />IPSec unlimited<BR />Mac-addresses 22000 33.56%<BR />ASDM 25 12.50%<BR />SSH Client 15(U) 15.00%<BR />SSH Server 22 22.00%<BR />Storage unlimited<BR />Telnet 15 15.00%<BR /><STRONG>Xlates 218000 0.00%</STRONG><BR />Routes 4200 0.00%<BR />Other VPN Sessions 0<BR />Other VPN Burst 0<BR />AnyConnect 0<BR />AnyConnect Burst 0<BR />IKEv1 in-negotiatio 960 19.20%<BR />U = Unlimited: Some contexts have no limit and are not included in the total</P> Thu, 27 Feb 2020 19:13:43 GMT https://community.cisco.com/t5/network-security/asa-xlate-limits/m-p/4037073#M1067101 jimgriffin 2020-02-27T19:13:43Z