Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,can someone pease explain when the untranslate_hits counts up on a PAT rule.I use ASA 8.4 and found in some PAT rules untraslate_hits are not 0 as expected.As PAT can only be build in one direction. How can i found a mapped to original hitcount...
Hello,yes this is the normal behaviour for static NAT, but i was talking about dynamic PAT (hide) or for instance your dynamic NAT rule (1). With telnet you will never get a "untranslate_hits". As a new session can not be build from outside.Thats way...
Hello,#show nat11 (inside) to (outside) source static obj-192.168.0.0_24 obj-x.x.x.x translate_hits = 1256, untranslate_hits = 5// comment // if you are CCIE/w and did not know, may your not the man i should talk with.// I came here to get a fast ...
I think i found the answer to myself, by testing in GNS3. Hope im right here. For protocols like FTP the data-channel may be build from outside to inside if inspected on the ASA.A new Translation (xlate) will be made for the data-channel which trigge...
Hello,i dont think your right here.way did i have normaly 0 or a few untranslated and 1000's translated hits on PAT rules.I think the hitcounter is not triggered by a Packet. It is triggered by a new (embrionic) connection which use a xlate entry bui...
