AppendixK Router Platform User Interface Reference
NAT Policy Page
K-16
User Guide for Cisco Security Manager 3.2
OL-16066-01
Related Topics
•Specifying NAT Timeouts, page 15-19
•NAT Page—Interface Specification Tab, page K-3
•NAT Page—Static Rules Tab, page K-6
•NAT Page—Dynamic Rules Tab, page K-12
Field Reference
TableK-8 NAT Timeouts Tab
Element Description
Max Entries The maximum number of entries allowed in the dynamic NAT table. Values
range from 1 to 2147483647.
By default, this field is left blank, which means that the number of entries in
the table is unlimited.
Timeout (sec.) The timeout value applied to all dynamic translations except PAT (overload)
translations.
The default is 86400 seconds (24 hours).
UDP Timeout (sec.) The timeout value applied to User Datagram Protocol (UDP) ports. The
default is 300 seconds (5 minutes).
Note This value applies only when the Overload feature is enabled.
DNS Timeout (sec.) The timeout value applied to Domain Naming System (DNS) server
connections. The default is 60 seconds.
Note This value applies only when the Overload feature is enabled.
TCP Timeout (sec.) The timeout value applied to Transmission Control Protocol (TCP) ports.
The default is 86400 seconds (24 hours).
Note This value applies only when the Overload feature is enabled.
FINRST Timeout (sec.) The timeout value applied when a Finish (FIN) packet or Reset (RST) packet
(both of which terminate connections) is found in the TCP stream. The
default is 60 seconds.
Note This value applies only when the Overload feature is enabled.