3com MSR 20-20 참조 매뉴얼
2022
C
HAPTER
133: NAT C
ONFIGURATION
C
OMMANDS
display nat connection-limit
Syntax
display nat connection-limit [ source src-address { mask | mask-length } ]
[ destination dst-address { mask | mask-length } ] [ destination-port { eq | gt | lt | neq
| range } port-number ] [ vpn-instance vpn-instance-name ]
[ destination dst-address { mask | mask-length } ] [ destination-port { eq | gt | lt | neq
| range } port-number ] [ vpn-instance vpn-instance-name ]
View
Any view
Parameter
source src-address: Displays the connection-limit statistics of a specified source
address.
address.
destination dst-address: Displays the connection-limit statistics of a specified
destination address.
destination address.
mask: Network mask.
Interface:Ethernet1/0, Protocol:6(tcp),
[global] 202.110.10.10: 8080 [local]
10.110.10.10: 80(www)
10.110.10.10: 80(www)
An internal server, a WWW server, is
configured on interface Ethernet 1/0. Its
internal address and port number are
10.110.10.10 and 80 respectively. Its
external address and port number are
202.110.10.10 and 8080 respectively. The
protocol used is TCP.
configured on interface Ethernet 1/0. Its
internal address and port number are
10.110.10.10 and 80 respectively. Its
external address and port number are
202.110.10.10 and 8080 respectively. The
protocol used is TCP.
NAT static information:
Information about static NAT:
There are currently 2 static table(s)
There are currently 2 static NAT entries.
GlobalAddr External
IP
address
InsideAddr
Internal IP address
Vpn-instance
Layer 3 VPN to which the internal IP
address belongs
address belongs
tcp ---- aging-time value is 86400 (seconds)
The aging time for TCP is 86,400 seconds.
udp ---- aging-time value is 300 (seconds)
The aging time for UDP is 300 seconds.
icmp ---- aging-time value is 60 (seconds)
The aging time for ICMP is 60 seconds.
pptp ---- aging-time value is 86400 (seconds)
The aging time for PPTP is 86,400 seconds.
dns ---- aging-time value is 60 (seconds)
The aging time for DNS is 60 seconds.
tcp-fin ---- aging-time value is 60 (seconds)
The aging time for TCP fin or rst is 60
seconds.
seconds.
tcp-syn ---- aging-time value is 3600 (seconds)
The aging time for TCP syn is 3,600
seconds.
seconds.
ftp-ctrl ---- aging-time value is 7200 (seconds)
The aging time for FTP ctrl is 7,200
seconds.
seconds.
ftp-data ---- aging-time value is 300 (seconds)
The aging time for FTP data is 300 seconds.
NAT log information:
NAT log information
log enable: enable acl 2000
Logging data flows matching acl 2000
flow-begin: enable
Logging newly established sessions
flow-active: 10(minutes)
Interval in logging active flows (10
minutes)
minutes)
Table 525 Description on some fields of the display nat all command
Field Description