Ip Userlog Nat Active-Time - H3C S9500 Series Command Manual
Routing switches
Hide thumbs
Also See for S9500 Series:
- Command manual (1842 pages) ,
- Operation manual (1504 pages) ,
- Operating manual (76 pages)
Table of Contents
Advertisement
Command Manual – NAT
H3C S9500 Series Routing Switches
Caution:
The ACL for NAT logging supports the SIP and DIP fields only.
Examples
# Employ ACL 2000 as the logging rule, and enable NAT logging.
<H3C> system-view
[H3C] ip userlog nat slot 3 acl 2000
1.2.3 ip userlog nat active-time
Syntax
ip userlog nat active-time minutes
undo ip userlog nat active-time
View
System view
Parameters
minutes: Time duration of an active NAT connection before a log record is created for it,
ranging from 10 to 120, in minutes. The default time duration is 0, which indicates that
this function is disabled.
Description
Use the ip userlog nat active-time command to set the time duration of an active NAT
connection before a log record is created for it.
Use the undo ip userlog nat active-time command to cancel the threshold configured
for logging.
If the NAT process performs logging only when a NAT connection is deleted, some
connections may be active for a long time without being logged. Devices can record this
type of connection regularly after this command is configured.
Examples
# Set the active time of a connection after which a NAT log record is created to 30
minutes.
<H3C> system-view
[H3C] ip userlog nat active-time 30
Chapter 1 NAT Configuration Commands
1-30
Advertisement
Table of Contents
