cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
229
Views
5
Helpful
2
Replies
Highlighted
Beginner

Cisco ASA xlate vs conn count

Hi

I have Cisco ASA 5525 with 500k limit on the current license.

 

What i noticed if the conn count proportionate to xlate count things run smoothly. But at times if there is disruptions to the network when it comes back i see the xlates is rapidly increase so does the number of conn, and when conn count reach 500k, xlates count keep increase to 650k + and to a point i notice traffic start to drop .

 

Please could anyone shed some light the relationship between the two or maybe why there is so much xlates compare to the number of conn .... 

 

Have a good day.

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
VIP Advisor

Re: Cisco ASA xlate vs conn count

The connection table contains layer 4 TCP or UDP sessions and is used to track with whom the user has a current session. 

 

xlate table which you can view and this is a record of all NAT translations done by the firewall. Dynamic and static NAT translations are entered into the xlate table but dynamic entries will eventually time out if not used and be removed.(depends on configuration, default i guess 180minutes)

 

Some time performance directly and indirectly connected to these connections.

 

BB
*** Rate All Helpful Responses ***

View solution in original post

2 REPLIES 2
Highlighted
VIP Advisor

Re: Cisco ASA xlate vs conn count

The connection table contains layer 4 TCP or UDP sessions and is used to track with whom the user has a current session. 

 

xlate table which you can view and this is a record of all NAT translations done by the firewall. Dynamic and static NAT translations are entered into the xlate table but dynamic entries will eventually time out if not used and be removed.(depends on configuration, default i guess 180minutes)

 

Some time performance directly and indirectly connected to these connections.

 

BB
*** Rate All Helpful Responses ***

View solution in original post

Highlighted
Beginner

Re: Cisco ASA xlate vs conn count

manage to find a solution to this on another post .... thanks for your kind response ..

CreatePlease to create content
Content for Community-Ad
FusionCharts will render here
This widget could not be displayed.