CGNAT BPA log - IOS XE

Octavio Alfageme · ‎05-25-2016

I'd be grateful if anybody could help me with the following doubt...

I'm running IOS-XE 15.4(3)S4 in an ASR1001X. I've configured CGNAT BPA with the following settings:

RTR01#sh ip nat bpa

Paired Address Pooling (PAP)
Limit: 120 local addresses per global address
Bulk Port Allocation (BPA)
Port set size: 512 ports in each port set allocation
Port step size: 1
Single set: False

I wanted to reduce CGNAT log size with BPA. However, I see log messages per port allocation instead of per port-block allocation. For instance:

May 26 08:06:44.024: %IOSXE-6-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:118 TS:00017682475414017010 %NAT-6-LOG_TRANSLATION: Created Translation ICMP 172.30.10.3:305 193.187.109.110:1024 230.142.130.2:305 230.142.130.2:305 2

May 26 08:07:48.275: %IOSXE-6-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:115 TS:00017682539664490294 %NAT-6-LOG_TRANSLATION: Deleted Translation ICMP 172.30.10.3:305 193.187.109.110:1024 0.0.0.0:0 0.0.0.0:0 2

Is there anything else to config to get a log associated to port-block-allocations?

My config is pretty simple. Apart from the NAT pool and inside/outside interfaces:

ip nat settings mode cgn

ip nat settings pap limit 120

ip nat settings pap bpa set-size 512 step-size 1

ip nat log translations syslog

Thanks in advance

Kind regards

Octavio

Yanes ABDELLI · ‎05-22-2017

Hello Octavio,

I have the same probleme with the output of syslog. However the syslog is not supported in IOS XE you need to use the netflow to see the log associated to port-block-allocations, personally i did not try it.

You can look at this doccument for mor details :

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_nat/configuration/xe-3s/nat-xe-3s-book/iadnat-bpa.pdf