Dears , I need some details about SRX src nat pool @ allocation , We are using a proxy that go oout with only one src @ and we use oversubscription nat on SRX using a pool that contain 2 subnets : as per my understanding of the normal SRX behavior the second subnet will never be used nether any other @ in the first subnet (except the first) since the proxy cannot open more than 65535 session right ?
If our proxy use a second src @ do we have a chance that junos nat with the second subnet ? Suppose that junos start to nat with ip1 port 1000 then the next session will have ip2 port 1001 , meanwhile the session ip1 port 1000 is closed , does junos reallocate the port 1000 or continue to 1002 untill the subnet is exhausted ? Can we change the junos default dehavior to use both subnets ? Br. BEN HAMMADI Kayssar NOKIA SIEMENS NETWORKS Lead Engineer -BroadBand Connectivity JNCIE (#471), CCIP _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp