H3C S9500 Series Operation Manual page 963
Routing switches
Hide thumbs
Also See for S9500 Series:
- Command manual (1842 pages) ,
- Operation manual (1504 pages) ,
- Operating manual (76 pages)
Table of Contents
Advertisement
Operation Manual – NAT-URPF-VPLS
H3C S9500 Series Routing Switches
I. Enabling NAT logging
Use the ip userlog nat command to enable NAT logging.
Perform the following configuration in system view.
Table 1-14 Enable NAT logging
Enable NAT logging
Disable NAT logging
By default, NAT logging is disabled on each service processor card.
II. Setting the time to start logging an active NAT connection
If a connection is still active after a configured period, the NAT process logs the
connection. Use the ip userlog nat active-time command to set the time after which
the active NAT process starts to perform logging.
Perform the following configuration in system view.
Table 1-15 Set the time to start log a NAT connection
Set the time to start logging an active
NAT connection
Disable the configured logging function
If the NAT process performs logging only when a NAT connection is deleted, some
connections may be active for a long time without being logged. But in fact, this type of
connection needs to be logged regularly. The main board sets this timer by the
corresponding commands.
The minutes parameter indicates the time duration of an active NAT connection in
minutes. The default time duration is 0.
Logging the elapsed time of an active NAT connection is disabled by default.
III. Setting the address and port number of the destination server for log
packets
Use the ip userlog nat export command to set the address and port number of the
destination server for log packets.
Perform the following configuration in system view.
Operation
Operation
1-15
Chapter 1 NAT Configuration
Command
ip userlog nat acl acl-number
undo ip userlog nat
Command
ip userlog nat active-time minutes
undo ip userlog nat active-time
Advertisement
Chapters
Table of Contents
Troubleshooting
