NAT Translations and Time Left [7:12133]
I'm performing NAT translations on one of our network connections and all is fine except that the server the people are connecting to is having an application issue. This causes them to time out waiting for a logon. They then try to initiate another connection and the same process occurs. If I do a "show ip nat translations verbose" I can see the individual connections and the NAT having taken place (doing an overload on the address space) and then these connections remain open for 24 hours. As the users keep attempting to open new connections the old connections remain up. tcp XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:23 XXX.XXX.XXX.XXX:23 create 22:12:59, use 22:12:37, left 01:47:22, Is there a NAT command that let's me specify how long a connection can remain open? Say for instance, 2 hours instead of 24? -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IP -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=12133&t=12133 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NAT Translations and Time Left [7:12133]
Thanks for the suggestions I will try them and let you know how it turns out. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IP ""James Haynes"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm performing NAT translations on one of our network connections and all is > fine except that the server the people are connecting to is having an > application issue. This causes them to time out waiting for a logon. They > then try to initiate another connection and the same process occurs. If I do > a "show ip nat translations verbose" I can see the individual connections > and the NAT having taken place (doing an overload on the address space) and > then these connections remain open for 24 hours. As the users keep > attempting to open new connections the old connections remain up. > > > tcp XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:23 > XXX.XXX.XXX.XXX:23 > > create 22:12:59, use 22:12:37, left 01:47:22, > > Is there a NAT command that let's me specify how long a connection can > remain open? Say for instance, 2 hours instead of 24? > > -- > James Haynes > Network Architect > Cendant IT > A+,MCSE,CCNA,CCDA,CCNP,CCDP, > CQS-SNA/IP > > > -- > James Haynes > Network Architect > Cendant IT > A+,MCSE,CCNA,CCDA,CCNP,CCDP, > CQS-SNA/IP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=12140&t=12133 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NAT Translations and Time Left [7:12133]
I don't know the answer but you might look up the timeout command on the PIX (if that's what you have) and see if that helps. Allen - Original Message - From: "James Haynes" To: Sent: Thursday, July 12, 2001 9:48 AM Subject: NAT Translations and Time Left [7:12133] > I'm performing NAT translations on one of our network connections and all is > fine except that the server the people are connecting to is having an > application issue. This causes them to time out waiting for a logon. They > then try to initiate another connection and the same process occurs. If I do > a "show ip nat translations verbose" I can see the individual connections > and the NAT having taken place (doing an overload on the address space) and > then these connections remain open for 24 hours. As the users keep > attempting to open new connections the old connections remain up. > > > tcp XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:23 > XXX.XXX.XXX.XXX:23 > > create 22:12:59, use 22:12:37, left 01:47:22, > > Is there a NAT command that let's me specify how long a connection can > remain open? Say for instance, 2 hours instead of 24? > > -- > James Haynes > Network Architect > Cendant IT > A+,MCSE,CCNA,CCDA,CCNP,CCDP, > CQS-SNA/IP > > > -- > James Haynes > Network Architect > Cendant IT > A+,MCSE,CCNA,CCDA,CCNP,CCDP, > CQS-SNA/IP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=12144&t=12133 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NAT Translations and Time Left [7:12133]
You can change the IP translation timeout by issuing timeout xlate hh:mm:ss > I don't know the answer but you might look up the timeout command on the PIX > (if that's what you have) and see if that helps. > > Allen > > - Original Message - > From: "James Haynes" > To: > Sent: Thursday, July 12, 2001 9:48 AM > Subject: NAT Translations and Time Left [7:12133] > > > > I'm performing NAT translations on one of our network connections and all > is > > fine except that the server the people are connecting to is having an > > application issue. This causes them to time out waiting for a logon. They > > then try to initiate another connection and the same process occurs. If I > do > > a "show ip nat translations verbose" I can see the individual connections > > and the NAT having taken place (doing an overload on the address space) > and > > then these connections remain open for 24 hours. As the users keep > > attempting to open new connections the old connections remain up. > > > > > > tcp XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:1194 XXX.XXX.XXX.XXX:23 > > XXX.XXX.XXX.XXX:23 > > > > create 22:12:59, use 22:12:37, left 01:47:22, > > > > Is there a NAT command that let's me specify how long a connection can > > remain open? Say for instance, 2 hours instead of 24? > > > > -- > > James Haynes > > Network Architect > > Cendant IT > > A+,MCSE,CCNA,CCDA,CCNP,CCDP, > > CQS-SNA/IP > > > > > > -- > > James Haynes > > Network Architect > > Cendant IT > > A+,MCSE,CCNA,CCDA,CCNP,CCDP, > > CQS-SNA/IP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=12162&t=12133 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
