EasyManuals Logo
Home>Cisco>Network Router>ASR 5000 Series

Cisco ASR 5000 Series User Manual

Cisco ASR 5000 Series
992 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #835 background imageLoading...
Page #835 background image
NAT Feature Overview â–€
Cisco ASR 5000 Series Product Overview â–„
OL-22938-02
In case of bypass NAT flow, in most cases the flow gets checkpointed as part of micro checkpoint.
Any information that is checkpointed as part of full checkpoint is always recovered. Data checkpointed through micro
checkpoint cannot be guaranteed to be recovered. The timing of switchover plays a role for recovery of data done
through micro checkpoint. If failover happens after micro checkpoint is completed, then the micro checkpointed data
will get recovered. If failover happens during micro checkpoint, then the data recovered will be the one obtained from
full checkpoint.
Once NAT IP/and Port-Chunks/Bypass NAT flow are recovered, the following holds good:
One-to-one NAT: Since NAT IP address being used for one-to-one NAT is recovered, on-going flows will be
recovered as part of Firewall Flow Recovery algorithm as one-to-one NAT does not change the port.
Many-to-one NAT: On-going flows will not be recovered as the port numbers being used for flows across
chassis peers/SessMgr peers are not preserved.
Bypass NAT Flow: On-going flows will be recovered as part of Firewall Flow Recovery algorithm.
All of the above items is applicable for ICSR as well.
Category
Event
Impacted
Details
One-to-One
NAT
Session
No
Session recovered.
New Traffic
No
NAT will be applied.
Ongoing Traffic
Yes
Cannot differentiate between ongoing traffic and unsolicited traffic. A rule-
match is done and if allowed, NAT will be applied accordingly on the
packet.
Unsolicited Traffic
(downlink packets)
Yes
Cannot differentiate between ongoing traffic and unsolicited traffic.
Translation will be done and packet action taken based on the rule-match.
Many-to-One
NAT
Session
No
Session recovered.
New Traffic
No
NAT will be applied.
Ongoing
Traffic
TCP
Yes
Packet will be dropped.
UDP
Yes and
No
If it is downlink packet, it will be dropped. If it is uplink packet, NAT will be
applied with a new port.
ICMP
Yes and
No
If it is downlink packet, it will be dropped. If it is uplink packet, NAT will be
applied with a new port.
Unsolicited Traffic
(downlink packets)
No
Packet will be dropped.
Bypass NAT
Session
No
Session recovered.
New Traffic
No
Traffic will be NAT bypassed.
Ongoing Traffic
No
Traffic will be NAT bypassed.
Unsolicited Traffic
(downlink packets)
No
Traffic will be NAT bypassed.
For more information, in the System Enhanced Feature Configuration Guide, see the Session Recovery and Interchassis
Session Recovery chapters.

Table of Contents

Other manuals for Cisco ASR 5000 Series

Preview: Administration Guide
Administration Guide508 pages
Preview: Thresholding Configuration Guide
Thresholding Configuration Guide163 pages
Preview: Installation Guide
Installation Guide317 pages
Preview: Installation And Administration Guide
Installation And Administration Guide95 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco ASR 5000 Series and is the answer not in the manual?

Cisco ASR 5000 Series Specifications

General IconGeneral
BrandCisco
ModelASR 5000 Series
CategoryNetwork Router
LanguageEnglish

Related product manuals