About Stephan Dietrich

Stephan Dietrich · 09-06-2013

Hello,can someone pease explain when the untranslate_hits counts up on a PAT rule.I use ASA 8.4 and found in some PAT rules untraslate_hits are not 0 as expected.As PAT can only be build in one direction. How can i found a mapped to original hitcount...

Stephan Dietrich · 09-09-2013

Hello,yes this is the normal behaviour for static NAT, but i was talking about dynamic PAT (hide) or for instance your dynamic NAT rule (1). With telnet you will never get a "untranslate_hits". As a new session can not be build from outside.Thats way...

Stephan Dietrich · 09-09-2013

Hello,#show nat11 (inside) to (outside) source static obj-192.168.0.0_24 obj-x.x.x.x translate_hits = 1256, untranslate_hits = 5// comment // if you are CCIE/w and did not know, may your not the man i should talk with.// I came here to get a fast ...

Stephan Dietrich · 09-07-2013

I think i found the answer to myself, by testing in GNS3. Hope im right here. For protocols like FTP the data-channel may be build from outside to inside if inspected on the ASA.A new Translation (xlate) will be made for the data-channel which trigge...

Stephan Dietrich · 09-06-2013

Hello,i dont think your right here.way did i have normaly 0 or a few untranslated and 1000's translated hits on PAT rules.I think the hitcounter is not triggered by a Packet. It is triggered by a new (embrionic) connection which use a xlate entry bui...

Member Since	‎09-06-2013 11:15 PM
Date Last Visited	‎03-18-2019 04:11 PM
Posts	5

User Statistics

User Activity

untranslate_hits on PAT rule

Re: untranslate_hits on PAT rule

Re: untranslate_hits on PAT rule

Re: untranslate_hits on PAT rule

Re: untranslate_hits on PAT rule