RE: NAT oh NAt (part deux)

From: Clubb, Steven (sclubb@kpmg.com)
Date: Tue Sep 24 2002 - 17:45:33 GMT-3

• Next message: Brian Dennis: "RE: Simulate Multicast traffic in the lab"
• Previous message: Peter: "Re: Soile's Skynet Lab"
• Maybe in reply to: Imo Etuk: "NAT oh NAt (part deux)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

NAT would be the number of ip addresses you assign to nat ie global
(outside) 1 192.168.1.1 192.168.1.10 netmask 255.255.255.0 would give you 10
addresses. However, if you PAT, you will have 64000 translations.

125k sessions relate to connections not translations.

Steve

-----Original Message-----
From: Chuck Church [mailto:cchurch@MAGNACOM.com]
Sent: Monday, September 23, 2002 5:31 PM
To: 'Imo Etuk'; Chuck Church
Cc: ccielab@groupstudy.com
Subject: RE: NAT oh NAt (part deux)

Check out:
http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/index.shtml
<http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/index.shtml>
 
The 515 is rated at 125,000 simultaneous sessions. With 4000 users, each
could have 30 open translations at the same time. Not too likely. But if
you're looking for room to grow, get the 525.
 

Chuck Church
CCIE #8776, MCNE, MCSE
Sr. Network Engineer
Magnacom Technologies
140 N. Rt. 303
Valley Cottage, NY 10989
845-267-4000

-----Original Message-----
From: Imo Etuk [mailto:ietuk@comcast.net]
Sent: Monday, September 23, 2002 10:31 PM
To: Chuck Church; jay@west.net; elpingu@acedsl.com
Cc: ccielab@groupstudy.com
Subject: NAT oh NAt (part deux)

Okay all,
 
here is where we stand. We have decided to implement a PIX firewall as
opposed to using the 6506 to perform NAT. That old adage let a router route
and let a firewall do just that firewall. Does anyone know how many active
NAT translations a PIX firewall is capable of?
 
Any help would be greatly appreciated.
 
Thanks
 
Imo

Warning : The information contained in this message may be privileged and
confidential and protected from disclosure. If the reader of this message is
not the intended recipient, you are hereby notified that any dissemination,
distribution or copying of this communication is strictly prohibited. If you
have received this communication in error, please notify the sender
immediately by replying to this message and then delete it from your
computer.

*****************************************************************************
The information in this email is confidential and may be legally privileged.
It is intended solely for the addressee. Access to this email by anyone else
is unauthorized.

If you are not the intended recipient, any disclosure, copying, distribution
or any action taken or omitted to be taken in reliance on it, is prohibited
and may be unlawful. When addressed to our clients any opinions or advice
contained in this email are subject to the terms and conditions expressed in
the governing KPMG client engagement letter.
*****************************************************************************

• Next message: Brian Dennis: "RE: Simulate Multicast traffic in the lab"
• Previous message: Peter: "Re: Soile's Skynet Lab"
• Maybe in reply to: Imo Etuk: "NAT oh NAt (part deux)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Oct 07 2002 - 07:44:03 GMT-3