Thresholds generate alerts or alarms based on either the total number
of Network Address Translation (NAT) calls setup by the system during the
specified polling interval, or on the number of currently active calls only.
Alerts or alarms are triggered for call setups based on the following
Enter condition: Actual number of call setups > or =
Clear condition: Actual number of call setups < Low
If a trigger condition occurs within the polling interval, the alert
or alarm will not be generated until the end of the polling interval.
Default value is 0, which means there will be no monitoring.
The polling interval is in seconds and it is an integer between 30 and
60000. Entries will be rounded up to the nearest 30 seconds.
describes how to enable and configure NAT thresholds.
To enable thresholds
use the following configuration:
configure threshold monitoring firewall context <context_name> threshold monitoring available-ip-pool-group end
The threshold monitoring
available-ip-pool-group command is required only if you
are configuring IP pool thresholds. It is not required if you are
only configuring NAT port-chunks usage threshold or many-to-one NAT.
threshold poll interval use the following configuration:
using the threshold
ip-pool-* commands in the Context Configuration
Mode apply to all IP pools in the context
using the alert-threshold keyword
are specific to the pool that they are configured in, and will take
priority, i.e. will override the context-wide configuration mentioned above.
Saving Your Configuration
When you configure
thresholds they are not permanent unless you save the changes. When you
have completed configuring thresholds, save your configuration to
flash memory, an external memory device, and/or a network
location using the Exec mode command save configuration.
For additional information on how to verify and save configuration
files, refer to the System
Administration Guide and the Command Line Interface