tech-net archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Limit on simultaneous NAT sessions?



EF> Is there (other than availabe memory) any limit on the number of 
EF> simultaneous sessions that ipnat(4) can handle? Anything configurable?
SB> There's a limit on the size of the state table, but this may be related 
SB> to "keep state" within ipf(4) rather than ipnat. I found they needed 
SB> bumping on a reasonably busy server:
SB> options         IPSTATE_SIZE=30011
SB> options         IPSTATE_MAX=21011
I also had to increase these ipf-related values (by -T) on our gateway.

I don't think ipnat is affected by those. It appears to have a 30000-session-
limit (no, that's not the number of ports I configured, which is 50000). 


Home | Main Index | Thread Index | Old Index