Downloads |
Table Of Contents
FPG: Endpoint Agnostic Port Allocation
Information About Endpoint Agnostic Port Allocation
How to Configure Endpoint Agnostic Port Allocation
Configuring Endpoint Agnostic Port Allocation
Verifying Endpoint Agnostic Port Support
Configuration Examples for Endpoint Agnostic Port Allocation
Configuring Endpoint Allocation: Example
Feature Information for Endpoint Agnostic Port Allocation
FPG: Endpoint Agnostic Port Allocation
First Published: February 27, 2009Last Updated: February 27, 2009When the Endpoint Agnostic Port Allocation feature is configured, an entry is added to the Symmetric Port Database. If the entry is already available, the port listed in the Symmetric Port Database is used and the packet is sent. This feature is only required if you need to configure NAT with pool overload or interface overload. Endpoint Agnostic Port Allocation is also known as Symmetric Port Allocation.
Finding Feature Information
Your software release may not support all the features documented in this module. For the latest feature information and caveats, see the release notes for your platform and software release. To find information about the features documented in this module, and to see a list of the releases in which each feature is supported, see the "Feature Information for Endpoint Agnostic Port Allocation" section.
Use Cisco Feature Navigator to find information about platform support and Cisco IOS, Catalyst OS, and Cisco IOS XE software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Contents
•
Information About Endpoint Agnostic Port Allocation
•
•
•
Information About Endpoint Agnostic Port Allocation
When a packet is being transmitted, the Symmetric Port Database is checked to see if the requested port is already allocated. If it has been allocated, it is checked if the source computer entry in the database matches the computer requesting the port. If this is true, the port listed in the Symmetric Port Database is used and the packet is sent.
If the computers do not match or if the requested port is not in the Symmetric Port Database, the feature continues checks to the NAT Port database for an entry matching the requested port. If no entry is found, this means that the port is available. A new entry is added to the NAT Port database, and to the existing NAT database, allocating the port to the requesting computer, and the packet is sent.
If no matching entry in the NAT Port database is found, it means that the port is busy, or otherwise unavailable. The next available port is found, which is allocated to the requesting computer. An entry is added to the NAT Port database with the requesting computer and the available port. An entry is added to the Symmetric Port database, with the requesting computer, the allocated port and the requested port and the packet is sent.
This feature is only required if you need to configure NAT with pool overload or interface overload. This feature is not applicable for other NAT configurations.
How to Configure Endpoint Agnostic Port Allocation
This section contains the following procedures:
•
•
Configuring Endpoint Agnostic Port Allocation
Perform this task to configure NAT to support the Endpoint Agnostic Port Allocation feature.
Restrictions
This feature must be enabled by the user. It should be enabled before NAT is enabled. If it is enabled later, it will not translate the previously established connection. When this feature is disabled, it will not be seen in the output of the show running-config command.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
7.
8.
9.
DETAILED STEPS
Verifying Endpoint Agnostic Port Support
To verify the Endpoint Agnostic Port Support feature, use the following command.
SUMMARY STEPS
1.
DETAILED STEPS
Step 1
Router# show ip nat translationsNAT Symmetric Port Database: 1 entries public ipaddr:port [tableid] | port# [refcount][syscount] | localaddr:localport [flags] 172.18.192.69:1024 [0] | 1025 [1] [0] | 172.18.192.69:1024 [0]:
Configuration Examples for Endpoint Agnostic Port Allocation
This section provides the following configuration example
•
Configuring Endpoint Allocation: Example
interface Ethernet0/0ip nat insideexitaccess list 1 permit 172.18.192.0.0.0.255ip nat inside source list 1 interface Ethernet0/0ip nat service enable-sym-portendAdditional References
The following sections provide references related to the Endpoint Agnostic feature.
Related Documents
NAT configuration tasks
NAT maintenance
NAT commands: complete command syntax, command mode, command history, usage guidelines, and examples
Standards
No new or modified standards are supported by this
feature, and support for existing standards has not been
modified by this feature.
_
MIBs
RFCs
No new or modified RFCs are supported by this
feature, and support for existing RFCs has not been
modified by this feature.
_
Technical Assistance
Command Reference
The following commands are introduced or modified in the feature or features documented in this module. For information about these commands, see the Cisco IOS IP Addressing Command Reference at http://www.cisco.com/en/US/docs/ios/ipaddr/command/reference/
ipaddr_book.html. For information about all Cisco IOS commands, use the Command Lookup Tool at http://tools.cisco.com/Support/CLILookup or the Cisco IOS Master Command List, All Releases, at http://www.cisco.com/en/US/docs/ios/mcl/allreleasemcl/all_book.html.•
Feature Information for Endpoint Agnostic Port Allocation
Table 1 lists the features in this module and provides links to specific configuration information. Only features that were introduced or modified in Cisco IOS Release 12.4(24)T or a later release appear in the table.
Not all commands may be available in your Cisco IOS software release. For release information about a specific command, see the command reference documentation.
Use Cisco Feature Navigator to find information about platform support and software image support. Cisco Feature Navigator enables you to determine which Cisco IOS, Catalyst OS, and Cisco IOS XE software images support a specific software release, feature set, or platform. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Note
Table 1 Feature Information for NAT Endpoint Agnostic Port Allocation
FPG: Endpoint Agnostic Port Allocation
12.4(24)T
This feature was introduced.
CCDE, CCENT, Cisco Eos, Cisco HealthPresence, the Cisco logo, Cisco Lumin, Cisco Nexus, Cisco StadiumVision, Cisco TelePresence, Cisco WebEx, DCE, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn and Cisco Store are service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQuick Study, IronPort, the IronPort logo, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, Network Registrar, PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0812R)
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
© 2009 Cisco Systems, Inc. All rights reserved.
