2022 CHAPTER 133: NAT CONFIGURATION COMMANDS
display nat connection-limit
Syntax display nat connection-limit [ source src-address { mask | mask-length }]
[ destination dst-address { mask | mask-length }] [destination-port { eq | gt | lt | neq
| range } port-number ] [ vpn-instance vpn-instance-name ]
View Any view
Parameter source src-address: Displays the connection-limit statistics of a specified source
address.
destination dst-address: Displays the connection-limit statistics of a specified
destination address.
mask: Network mask.
Interface:Ethernet1/0, Protocol:6(tcp),
[global] 202.110.10.10: 8080 [local]
10.110.10.10: 80(www)
An internal server, a WWW server, is
configured on interface Ethernet 1/0. Its
internal address and port number are
10.110.10.10 and 80 respectively. Its
external address and port number are
202.110.10.10 and 8080 respectively. The
protocol used is TCP.
NAT static information: Information about static NAT:
There are currently 2 static table(s) There are currently 2 static NAT entries.
GlobalAddr External IP address
InsideAddr Internal IP address
Vpn-instance Layer 3 VPN to which the internal IP
address belongs
tcp ---- aging-time value is 86400 (seconds) The aging time for TCP is 86,400 seconds.
udp ---- aging-time value is 300 (seconds) The aging time for UDP is 300 seconds.
icmp ---- aging-time value is 60 (seconds) The aging time for ICMP is 60 seconds.
pptp ---- aging-time value is 86400 (seconds) The aging time for PPTP is 86,400 seconds.
dns ---- aging-time value is 60 (seconds) The aging time for DNS is 60 seconds.
tcp-fin ---- aging-time value is 60 (seconds) The aging time for TCP fin or rst is 60
seconds.
tcp-syn ---- aging-time value is 3600 (seconds) The aging time for TCP syn is 3,600
seconds.
ftp-ctrl ---- aging-time value is 7200 (seconds) The aging time for FTP ctrl is 7,200
seconds.
ftp-data ---- aging-time value is 300 (seconds) The aging time for FTP data is 300 seconds.
NAT log information: NAT log information
log enable: enable acl 2000 Logging data flows matching acl 2000
flow-begin: enable Logging newly established sessions
flow-active: 10(minutes) Interval in logging active flows (10
minutes)
Table 525 Description on some fields of the display nat all command
Field Description