The nat port-block used-up alarm enable command enables the function of sending a log and an alarm when the port usage of an individual IP user reaches the threshold. The port is allocated to the user through port pre-allocation or incremental allocation in a NAT444 scenario.
The undo nat port-block used-up alarm enable command disables the function of sending a log and an alarm when the port usage of an individual IP user reaches the threshold.
In a scenario where the function of sending a log and an alarm when the port usage of an individual IP user reaches the threshold, if the usage of the port block allocated to an individual IP user reaches the specified value, the system sends a log. The port-block-size command can be used to set the port block size allocated to each IP user.
For example, if the size of the port block allocated to an IP user is 256 bytes, and its port usage reaches 256 x 80% x (extended-times+1), the system sends the CGN/4/PORT_USEDUP log and CGN_1.3.6.1.4.1.2011.6.122.18.3.2.11_hwSecTrapPortRangePortUsedUp alarm. extended-times is the times of incremental allocation and can be specified using the port-block-size command. 80% is the value of threshold number, which is the threshold. When the port usage of the port block is lower than 256 x 80% x (extended-times+1), the FW sends the CGN/5/PORT_NORMAL log and CGN_1.3.6.1.4.1.2011.6.122.18.3.2.12 hwSecTrapPortRangePortNormal alarm.
By default, the function of sending a log and an alarm when the port usage of an individual IP user reaches the threshold is enabled.