'show local-host' and 'show xlate count' should be sufficient to in addition to the syslog messages.Have you tried reducing the xlate to 5 minutes and see if that makes a difference yet?Binh
Leon:Did you try the 'downgrade' command?See the following command reference on how to use the command appropriately:http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_70/70cmdref/df.htm#wp1271201Thanks,Binh
Hello:An inside host is counted toward the limit when one of the following conditions is true:–The inside host has forwarded traffic through the PIX Firewall within the last five minutes.–The inside host currently reserved an xlate connection or user...
Hello Ryan:Have you tried enabling inspection for ICMP and see if that works?Please also upload your 7.0 config for analysis.See release notes for PIX 7.0 code below as regards to ICMP inspection.----Version 7.0(1) introduces an ICMP inspection engin...
