Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
03-07-2024 09:01 AM
Hi Mates,
We have particular Source NAT based on IP address and want to understand if there is any way to check the current utilization of IP's for NAT. This might help to add more IPs to prevent from overutilized.
Thanks in advance.
Ankit
03-08-2024 07:34 AM
If you mean the port utilization used for your source NAT IPs you can check with
show running ippool
while Used shows the current allocation of each of your NAT policies, Available shows what's available in total. The Available value is higher depending on oversubscription-rate, which is the Ratio value shown, which differs between firewall models.
03-08-2024 03:09 PM
Thanks for your reply, But I am confused with below 2 output. How can I understand whether we have enough space for the natting.
(active)> show running nat-rule-ippool show-freelist yes rule XXX
VSYS 2 Rule yes:
Rule: XXX, Pool index: 114, memory usage: 36472
-----------------------------------------
Oversubscription Ratio: 4
Number of Allocates: 1033739
Last Allocated Index: 11824
-----------------------------------------
------------ Private Pool ---------------
Number of Allocates: 0
Last Allocated Index: 0
(active)> show running ippool | match XXX
XXX Dynamic IP/Port 51621 206427 36472 4
Please help to understand.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
