04-27-2014 02:02 PM - edited 03-11-2019 09:07 PM
Hi All,
In ASA 8.0, ASA have function that can specify the maximum number of TCP/UDP connections by using the NAT Static Rule.
like:
static (inside,outside) TCP 209.165.200.15 smtp 172.16.11.15 smtp netmask 255.255.255.255 TCP 100 50
that can limit maximum TCP/UDP connection, maximum embryonic connections, but I can't find to use this in ASA9.1.
Is it still existing? Or it change to other command that be compatible with NAT object. Please help.
Best Regards,
Bintasan.
Solved! Go to Solution.
04-28-2014 10:16 AM
The ability to limit this per NAT rule was deprecated with the overhaul of NAT functions in ASA 8.3.
Currently we can only limit connections globally or in policy maps using the "set connection" options. Here is a link to the command reference.
04-28-2014 10:16 AM
The ability to limit this per NAT rule was deprecated with the overhaul of NAT functions in ASA 8.3.
Currently we can only limit connections globally or in policy maps using the "set connection" options. Here is a link to the command reference.
04-28-2014 04:46 PM
Thank you for your answer.
May I ask you if I still must use it to limit the connection or I have other choices that have same result?
I have to use varied limit connection number, so I can't make it in globally.
Do I need to create it with policy map and many access-lists?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide