Monitoring Source NAT Information
Purpose
Display configured information about source Network Address Translation (NAT) rules, pools, persistent NAT, and paired addresses.
Action
Select Monitor>NAT>Source NAT in the J-Web user interface, or enter the following CLI commands:
- show security nat source summary
- show security nat source pool pool-name
- show security nat source persistent-nat-table
- show security nat source paired-address
Table 194 describes the available options for monitoring source NAT.
Table 194: Source NAT Monitoring Page
Field | Description | Action |
|---|---|---|
| Rules | ||
Rule-set Name | Displays the rule-sets configured in the system. | Select all rule sets or a specific rule set to display from the list. |
Total rules | Displays the total number of configured rules. | – |
ID | Displays the rule identification number. | – |
Name | Displays the name of the source NAT rule. | – |
Ruleset Name | Displays the name of the source NAT rule set. | – |
From | Displays the zone, routing instance, or interface from which the packets flow. | – |
To | Displays the zone, routing instance, or interface to which the packets flow. | – |
Source address range | Displays the source IP address range. | – |
Destination address range | Displays the destination IP address range. | – |
Ip protocol | Displays the IP protocol. | – |
Action | Action taken in regard to a packet that matches a rule. | |
Persistent NAT type | Displays the persistent NAT type. | – |
Inactivity timeout | Displays inactivity timeout interval for the persistent NAT binding. | – |
Max session number | Displays the maximum number of sessions. | – |
Translation hits | Displays the number of translation hits. | – |
| Pools | ||
Pool Name | Displays the names of the pools configured in the system. | Select all pools or a specific pool to display from the list. |
Total Pools | Displays the total number of source pools configured in the system. | – |
ID | Displays the identification number of the source pool. | – |
Name | Displays the name of the source pool. | – |
Address range | Displays the IP address or IP address range of the source pool. | – |
Single/Twin ports | Displays the number of allocated single and twin ports. | – |
Port | Displays the port numbers used for the source pool. | – |
Address assignment | Displays the type of address assignment. | – |
Port overloading factor | Displays the port overloading capacity. | – |
Routing instance | Displays the name of the routing instance. | – |
Total addresses | Displays the number of IP addresses that are in use. | – |
Host address base | Displays the base address of the original source IP address range. | – |
Translation hits | Displays the number of translation hits. | – |
| Persistent NAT | ||
| Persistent NAT table statistics | ||
FPC PIC ID | Displays the identification number of the Flexible PIC Concentrator (FPC). | – |
binding total | Displays the total number of persistent NAT bindings for the FPC. | – |
binding in use | Displays the number of persistent NAT bindings that are in use for the FPC. | – |
enode total | Displays the total number of persistent NAT enodes for the FPC. | – |
enode in use | Displays the number of persistent NAT enodes that are in use for the FPC. | – |
| Persistent NAT table | ||
Source NAT pool | Displays the names of the pools configured in the system. | Select all pools or a specific pool to display from the list. |
Internal IP | Displays the internal IP addresses configured in the system. | Select all IP addresses or a specific IP address to display from the list. |
Internal port | Displays the internal ports configured in the system. | Select the port to display from the list. |
Internal protocol | Displays the internal protocols configured in the system. | Select all protocols or a specific protocol to display from the list. |
Internal IP | Displays the internal transport IP address of the outgoing session from internal to external. | – |
Internal port | Displays the internal transport port number of the outgoing session from internal to external. | – |
Internal protocol | Displays the internal protocol of the outgoing session from internal to external. | – |
Reflective IP | Displays the translated IP address of the source IP address. | – |
Reflective port | Displays the translated number of the port. | – |
Reflective protocol | Displays the translated protocol. | – |
Source NAT pool | Displays the name of the source NAT pool where persistent NAT is used. | – |
Type | Displays the persistent NAT type. | – |
Left time/Conf time | Displays the inactivity timeout period that remains and the configured timeout value. | – |
Current session num/Max session num | Displays the number of current sessions associated with the persistent NAT binding and the maximum number of sessions. | – |
Source NAT rule | Displays the name of the source NAT rule to which this persistent NAT binding applies. | – |
| External node table | ||
Internal IP | Displays the internal transport IP address of the outgoing session from internal to external. | – |
Internal port | Displays the internal port number of the outgoing session from internal to external. | – |
External IP | Displays the external IP address of the outgoing session from internal to external. | – |
External port | Displays the external port of the outgoing session from internal to external. | – |
Zone | Displays the external zone of the outgoing session from internal to external. | – |
| Paired Address | ||
Pool name | Displays the names of the pools that contain paired IP addresses. | Select all pools or a specific pool to display from the list. |
Specified Address | Displays the IP address types. | Select the IP address type to display; then enter the IP address. |
Pool name | Displays the selected pools that contain paired IP addresses. | – |
Internal address | Displays the internal IP address. | – |
External address | Displays the external IP address. | – |
Related Documentation
- Monitoring Destination NAT Information
- Monitoring Static NAT Information
- Monitoring Incoming Table Information
- Monitoring Interface NAT Port Information
- Network Address Translation Feature Guide for Security Devices