Table of Contents
Advertisement
Chapter 26
Network Address Translation
PPTP Timeout
Dynamic NAT Timeout
Max Number of NAT Entries
UDP flow timeouts
TCP flow timeouts
Reset Button
Edit Route Map
OL-4015-12
Enter the number of seconds after which NAT Point-to-Point Tunneling Protocol
(PPTP) flows time out. The default is 86400 seconds (24 hours).
Enter the maximum number of seconds that dynamic NAT translations should
live.
Enter the maximum number of NAT entries in the translation table.
Enter the number of seconds that translations for User Datagram Protocol (UDP)
flows should live. The default is 300 seconds (5 minutes).
Enter the number of seconds that translations for Transmission Control Protocol
(TCP) flows should live. The default is 86400 seconds (24 hours).
Clicking this button resets translation and timeout parameters to their default
values.
When VPNs and NAT are both configured on a router, packets that would
normally meet the criteria for an IPSec rule will not do so if NAT translates their
IP addresses. In this case, NAT translation will cause packets to be sent without
being encrypted. Cisco SDM may create route maps to prevent NAT from
translating IP addresses that you want to be preserved.
Although Cisco SDM only creates route maps to limit the action of NAT, route
maps can be used for other purposes as well. If route maps have been created
using the CLI, they will be visible in this window as well.
Cisco Router and Security Device Manager 2.5 User's Guide
Network Address Translation Rules
26-13
Advertisement
Table of Contents
Troubleshooting
