SRX

last person joined: 3 days ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  SRX3600 Cluster Source NAT - Maximum port translations for 1 IP in NAT Pool

    Posted 09-24-2014 10:00

    Hello SRX NAT gurus.

    I am wondering how can I tell what is the maximum number of Single Port translations for a source nat pool configured with 1 IP.  For some reason, I believe I am only getting 31232 max - which is about half of 62463 (the number of ports available between 1024 and 63487 - which is the port range that is indicated that is available.

     

    Ex:

    > ...at source pool Test_Source_NAT node 1   
    node1:
    --------------------------------------------------------------------------
     
    Pool name          : Test_Source_NAT
    Pool id            : 7
    Routing instance   : Test-VR
    Host address base  : 0.0.0.0
    Port               : [1024, 63487]
    port overloading   : 1
    Total addresses    : 1
    Translation hits   : 4196678
    Address range                        Single Ports   Twin Ports 
          1.1.1.1 - 1.1.1.1                    31232             0   

     

    I think this has something to do with the cluster configuration, but am not sure.

    any guidance or direction would be helpful.  Thanks 🙂



  • 2.  RE: SRX3600 Cluster Source NAT - Maximum port translations for 1 IP in NAT Pool
    Best Answer

    Posted 09-24-2014 11:03

    I believe I have found my answer here:  http://forums.juniper.net/t5/SRX-Services-Gateway/Role-of-routing-instance-in-source-NAT-pool/td-p/127299/page/2

     

    But I cannot view the KB article referenced:  http://kb.juniper.net/InfoCenter/index?page=content&id=KB14958

    Says its "in review and not yet ready for viewing" 😞



  • 3.  RE: SRX3600 Cluster Source NAT - Maximum port translations for 1 IP in NAT Pool

    Posted 01-16-2015 10:38

    The KB article that i posted in my last response is now veiwable.  When clustered there are only 1/2 of the NAT ports available