Created on 02-14-2011 05:55 AM Edited on 01-30-2024 02:51 AM By Jean-Philippe_P
Description
This article explains how to determine whether a NAT port is exhausted on a FortiGate.
Scope
FortiOS 4.0 MR2 and above.
Solution
Message meets Alert conditiondate=2011-02-01 time=19:52:01 devname=master device_id=”” log_id=0100020007 type=event subtype=system pri=critical vd=root service=kernel status=failure msg="NAT port is exhausted." |
FWF60B # diagnose sys session stat
misc info: session_count=16 setup_rate=0 exp_count=0 clash=889 memory_tension_drop=0 ephemeral=1/16384 removeable=3 delete=0, flush=0, dev_down=16/69 firewall error stat: error1=00000000 error2=00000000 error3=00000000 error4=00000000 tt=00000000 cont=0005e722 ids_recv=000fdc94 url_recv=00000000 av_recv=001fee47 fqdn_count=00000000 tcp reset stat: syncqf=119 acceptqf=0 no-listener=3995 data=0 ses=2 ips=0 global: ses_limit=0 ses6_limit=0 rt_limit=0 rt6_limit=0 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.