30 Aralık 2010 Perşembe

PIX-3-201002: Too many connections on xlate

Our sever Intermittently loses its internet connection. All I see in the syslog for the Pix 10000 is message "PIX-3-201002: Too many connections on xlate." Could this be a cause why connections are dropping? If so, how can I correct it?
Average Rating: 0 (0 Votes)
Outline View
dro
  dro
77 posts since Aug 7, 2002
Currently Being Moderated
1. Jun 6, 2003 8:43 AM in response to: wongn
Re: PIX-3-201002: Too many connections on xlate
This error is normally caused by having a limit set in place on the static maps.



Do a "show static" and look for the server's entry. The last two numbers represent the maximum amount of embryonic and actual connections a static map is allowed to have.





This is 0 by default, so it must have been configured with a limit on your PIX.



Regards,

-Joshua
Average Rating: 0 (0 Votes)
wongn
  wongn
10 posts since Jul 29, 2002
Currently Being Moderated
2. Jun 6, 2003 9:01 AM in response to: dro
Re: PIX-3-201002: Too many connections on xlate
But what if the server's entry is not listed in show static?
Average Rating: 0 (0 Votes)
dro
  dro
77 posts since Aug 7, 2002
Currently Being Moderated
3. Jun 6, 2003 10:23 AM in response to: wongn
Re: PIX-3-201002: Too many connections on xlate
Sorry, in that case it's most like the last two numbers listed in the "show nat" command. If these are both set to 0, then there are no limits set.



The second last entry is a reference to the maximum number of TCP connections allowed and the last entry is a reference to the number of embryonic connections which are allowed.



for example:



pixfirewall# show nat

nat (inside) 1 192.168.1.0 255.255.255.0 50 30



This shows that 50 TCP connections are allowed at once and 30 embryonic connections are allowed.



Regards,

-Joshua
Average Rating: 0 (0 Votes)
kthanuva
Employee kthanuva
55 posts since Oct 30, 2002
Currently Being Moderated
4. Jun 6, 2003 6:44 PM in response to: wongn
Re: PIX-3-201002: Too many connections on xlate
Hi,

     please find the details f this error message....



1. %PIX-3-201002: Too many connections on static|xlate gaddr! econns nconns

This is a connection-related message. This message is logged when the maximum number of connections to the specified static address has been exceeded. The econns variable is the maximum number of embryonic connections and nconn s is the maximum number of connections permitted for the static or xlate.



Recommended Action: Use the show static command to check the limit imposed on connections to a static address. The limit is configurable.







we can configure the connection limit thro static command



Regards

kiruba

 

Gönderen zaman:

Hiç yorum yok:

Yorum Gönder

Kaydol: Kayıt Yorumları (Atom)