Table of Contents
Advertisement
ip nat translation
Syntax
Release Information
Description
Options
Mode
Copyright © 2010, Juniper Networks, Inc.
ip nat translation { timeout | udp-timeout | dns-timeout | tcp-timeout | first-timeout
|icmp-timeout | gre-timeout } seconds
no ip nat translation { timeout | udp-timeout | dns-timeout | tcp-timeout | first-timeout
|icmp-timeout | gre-timeout}
Command introduced before JunosE Release 7.1.0.
gre-timeout keyword added in JunosE Release 7.3.0.
Changes or disables translation timeouts, per virtual router, for existing and newly created
translations in the translation table. All timeouts for this command support a range of
1–2147483 seconds (about 25 days). The no version enables the timer using its default
value.
NOTE: GRE translations are used as optimizations to discard GRE traffic.
You can use the gre-timeout keyword to control GRE aging timeout, even
though we do not support NAPT for GRE. The GRE aging timer has no effect
on any simple translations GRE might use.
timeout—Sets aging time for dynamic translations (except for overloaded translations);
default value is 86400 seconds (24 hours)
udp-timeout—Sets aging time for UDP protocol translations; default value is 300
seconds (5 minutes)
dns-timeout—Sets aging time for DNS protocol translations (port 53 on TCP or UDP);
default value is 60 seconds
tcp-timeout—Sets aging time for TCP protocol translations; default value is 86400
seconds (24 hours)
first-timeout—Sets aging time for TCP connections terminated with RST or FIN flags;
default value is 60 seconds
icmp-timeout—Sets aging time for ICMP protocol translations; default value is 300
seconds (5 minutes)
gre-timeout—Sets aging time for GRE protocol translations; default value is 300
seconds (5 minutes)
seconds—Number of seconds before the router removes an unused NAT table entry
Global Configuration
Chapter 10: I Commands
871
Advertisement
Table of Contents
