User guide

Displaying NAT Settings

Summit24e3 Switch Installation and User Guide 117

Displaying NAT Settings

To display NAT rules, use the following command:

show nat rules {vlan <outside_vlan>}

This command displays the NAT rules for a specific VLAN. Rules are displayed in the order they are

processed, starting with the first one.

To display NAT traffic statistics, use the following command:

show nat stats

This command displays statistics for the NAT traffic, and includes:

• The number of rules

• The number of current connections

• The number of translated packets on the inside and outside VLANs

• Information on missed translations

To display NAT connection information, use the following command:

show nat connections

This command displays the current NAT connection table, including source IP/Layer 4 port mappings

from inside to outside.

Disabling NAT

To disable NAT, use the following command:

disable nat

config nat syn-timeout <seconds> Configures the timeout for an entry with an

unacknowledged TCP SYN state. The

default setting is 60 seconds.

config nat tcp-timeout <seconds> Configures the timeout for a fully setup TCP

SYN session. The default setting is 120

seconds.

config nat udp-timeout <seconds> Configures the timeout for an UDP session.

The default setting is 120 seconds.

config nat timeout <seconds> Configures the timeout for any IP packet that

is not TCP,UDP or ICMP. The default setting

is 600 seconds.

show nat timeout Displays NAT timeout settings.

Table 28: NAT Timeout Commands (continued)

Command Description