Cisco Cisco Packet Data Gateway (PDG) Fehlerbehebungsanleitung
Network Address Translation Overview
NAT Feature Overview ▀
Cisco ASR 5000 Series Network Address Translation Administration Guide ▄
OL-22992-01
In case the NAT Binding Timer < TCP 2MSL Timer, on NAT Binding Timer expiry, the TCP port is forcefully moved
to Free State (made usable) from Time Wait state and the port-chunk released.
to Free State (made usable) from Time Wait state and the port-chunk released.
NAT Binding Records
Whenever a NAT IP address or NAT port-chunk is allocated/deallocated to/from a subscriber, NAT Binding Records
(NBR) can be generated. Generation of NBRs is configurable in the Firewall-and-NAT policy configuration.
(NBR) can be generated. Generation of NBRs is configurable in the Firewall-and-NAT policy configuration.
NBRs are supported for both on-demand and not-on-demand NAT IP pools. For a one-to-one NAT IP pool, an NBR is
generated whenever a NAT IP address is allocated/deallocated to/from a subscriber. For a many-to-one NAT IP pool, an
NBR is generated when a port-chunk is allocated/deallocated to/from a subscriber for a NAT IP address. It is also
possible to configure generation of NBRs only when a port-chunk is allocated, or deallocated, or in both cases.
generated whenever a NAT IP address is allocated/deallocated to/from a subscriber. For a many-to-one NAT IP pool, an
NBR is generated when a port-chunk is allocated/deallocated to/from a subscriber for a NAT IP address. It is also
possible to configure generation of NBRs only when a port-chunk is allocated, or deallocated, or in both cases.
The following is the list of attributes that can be present in NBRs. You can configure a subset of these attributes or all of
them to be logged in NBRs. If an attribute is not available, while logging records that field is populated with NULL.
them to be logged in NBRs. If an attribute is not available, while logging records that field is populated with NULL.
ip subscriber-ip-address: The private IP address
radius-calling-station-id
radius-fa-nas-identifier
radius-fa-nas-ip-address
radius-user-name
sn-correlation-id: If available
sn-fa-correlation-id: If available
sn-nat-binding-timer: Optional
sn-nat-gmt-offset: Optional, GMT offset of the node generating this record. For example: -5.00, +5.30
sn-nat-ip
sn-nat-last-activity-time-gmt
sn-nat-port-block-end
sn-nat-port-block-start
sn-nat-port-chunk-alloc-dealloc-flag: 1: allocate; 0: deallocate
sn-nat-port-chunk-alloc-time-gmt: Sample time format: 03/11/2009 10:38:35
sn-nat-port-chunk-dealloc-time-gmt
sn-nat-realm-name: Optional
sn-nat-subscribers-per-ip-address: Optional
NAT Binding Updates
Whenever a NAT IP address or NAT port-chunk is allocated/deallocated to/from a subscriber, to update NAT binding
information for that subscriber in the AAA, a NAT Binding Update (NBU) can be sent to the AAA server.
information for that subscriber in the AAA, a NAT Binding Update (NBU) can be sent to the AAA server.