Re: Problems with the show xlate command on WS-SVC-FWM-1

ans · ‎05-24-2004

Hi All

I am running with the following firewall blade in our 6500 switches:

FWSM Firewall Version 1.1(3)

Compiled on Wed 10-Sep-03 14:53 by dalecki

Hardware: WS-SVC-FWM-1, 1024 MB RAM, CPU Pentium III 1000 MHz

After a reload of the firewall blade, I am able to see all PAT translations with the show xlate command - but after some time, the translations statement disappear - you have an example here:

nat# show xlate

11822 in use, 17583 most used

Global 129.142.34.21 Local 129.142.34.21

Global 192.38.224.189 Local 192.38.224.189

Global 129.142.34.26 Local 129.142.34.26

Global 192.38.224.194 Local 192.38.224.194

Global 192.38.224.130 Local 192.38.224.130

Global 129.142.34.4 Local 129.142.34.4

nat#

you can see, I have more than 11000 connections, but I am not able to see any? If I then try to clear the xlate the module crashes and I have to take the power off and on. Instead I can reload the module, and then I am able to see all the translations again. Anyone seen this, or does anyone know a command, where I can look at the xlates, without rebooting the module. I have been trying to find bug info on CCO, but I have not been able to find any info.

nkhawaja · ‎05-25-2004

This seems more like a bug to me. You also mentioned about FWSM crashing, so something is not right here. Could you collect the "show crash" output and send over. We can analyze it

Thanks

Nadeem

nkhawaja · ‎05-25-2004

okay i found an internal bug on that. it should be fixed in 2.1 code. The bug id is CSCdz06832

Thanks

Nadeem