Monitor NAT Traffic?

Reply
Highlighted
Not applicable

Monitor NAT Traffic?

Can anyone think of a method to monitor the NAT Translation?  The back story is this... We have remote access points that point to a public IP address and then get NAT over to the private address of the wireless controllers.  When we migrated to the PA, we spent a few hours trying to figure out why the remote APs weren't able to communicate with the controller.  We eventually found the problem, which was that the external IP was part of the internal space in the Virtual Router. 

The bottom line was that after we figured this out, we were trying to see if there was a way to easily monitor the NAT traffic without having to look at each half separately.  It would have been helpful to see the "U-Turn"-like behavior while we were troubleshooting it. 

Any thoughts/suggestions would be appreciated.  Thanks!

-- Will

L5 Sessionator

Re: Monitor NAT Traffic?

Best Bet would be to include Columns such as NAT  Source IP,NAT Destination IP and for NATed ports as well in the GUI Traffic Logs (Monitor>Logs>Traffic)  to have a bird's eye view.

If you need detailed view click the "Magnifying Glass"" icon at start of the log.

Refer: https://live.paloaltonetworks.com/docs/DOC-2799

Regards,

Ameya

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!