06-08-2010 02:05 AM - edited 03-11-2019 10:55 AM
Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.
All traffic is stopped ?
MR
06-08-2010 04:43 AM
mrobert wrote:
Hi, what happens when the nat table (memory !) is full on a firewall module 4.0.
All traffic is stopped ?
MR
MR
As far as i know it should stop all new connections but still continue to pass traffic for connections that have already been setup in the xlate table.
Jon
06-08-2010 04:45 AM
Are you seeing port map translation creation failed messages in the syslogs?
If there is one attack host, trying to establish too many connections it can quickly exhaust the PAT pool.
If there are no more translations slot available then yes all new connections will fail.
-KS
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide