Configuring NAT alarm logging

Packets that need to be translated are dropped if the system lacks NAT resources. In No-PAT, the NAT resources refer to the public IP addresses. In EIM PAT, the NAT resources refer to public IP addresses and ports. In NAT444, the NAT resources refer to public IP addresses, port blocks, or ports in port blocks. NAT alarm logging monitors the usage of NAT resources and outputs logs if the NAT resources are not enough.

The NAT444 gateway generates alarm logs when the ports in the extended port blocks of a dynamic NAT444 mapping are all occupied.

Before configuring alarm logging for NAT444, you must configure the custom NAT444 log generation and outputting features. For more information about information center, see Network Management and Monitoring Configuration Guide.

To configure NAT alarm logging:

Step	Command	Remarks
1. Enter system view.	system-view	N/A
2. Enable NAT logging.	nat log enable [ acl { ipv4-acl-number \| name ipv4-acl-name } ]	By default, NAT logging is disabled. The acl keyword does not take effect on NAT alarm logging.
3. Enable NAT alarm logging.	nat log alarm	By default, NAT alarm logging is disabled.

Step

Command

Remarks

1. Enter system view.

system-view

N/A

2. Enable NAT logging.

nat log enable [ acl { ipv4-acl-number | name ipv4-acl-name } ]

By default, NAT logging is disabled.

The acl keyword does not take effect on NAT alarm logging.

3. Enable NAT alarm logging.

nat log alarm

By default, NAT alarm logging is disabled.

prev	up	next
Configuring NAT444 user logging	home	Configuring port block usage threshold for dynamic NAT444