Configuring timeouts, Displaying nat settings – Extreme Networks 200 Series User Manual
Page 143
Displaying NAT Settings
Summit 200 Series Switch Installation and User Guide
141
Configuring Timeouts
When an inside host initiates a session, a session table entry is created. Depending on the type of traffic
or the current TCP state, the table entries timeout after the configured timeout expires.
Table 35 describes the commands used to configure timeout periods.
Displaying NAT Settings
To display NAT rules, use the following command:
show nat rules {vlan <outside_vlan>}
This command displays the NAT rules for a specific VLAN. Rules are displayed in the order they are
processed, starting with the first one.
To display NAT traffic statistics, use the following command:
show nat stats
This command displays statistics for the NAT traffic, and includes:
•
The number of rules
•
The number of current connections
•
The number of translated packets on the inside and outside VLANs
•
Information on missed translations
To display NAT connection information, use the following command:
show nat connections
This command displays the current NAT connection table, including source IP/Layer 4 port mappings
from inside to outside.
Table 35: NAT Timeout Commands
Command
Description
config nat finrst-timeout <seconds>
Configures the timeout for a TCP session
that has been torn down or reset. The
default setting is 60 seconds.
config nat icmp-timeout <seconds>
Configures the timeout for an ICMP packet.
The default setting is 3 seconds.
config nat syn-timeout <seconds>
Configures the timeout for an entry with an
unacknowledged TCP SYN state. The
default setting is 60 seconds.
config nat tcp-timeout <seconds>
Configures the timeout for a fully setup TCP
SYN session. The default setting is 120
seconds.
config nat udp-timeout <seconds>
Configures the timeout for an UDP session.
The default setting is 120 seconds.
config nat timeout <seconds>
Configures the timeout for any IP packet that
is not TCP,UDP or ICMP. The default setting
is 600 seconds.
show nat timeout
Displays NAT timeout settings.