All NAT session drops

Forum|Forum|7 years ago
April 13, 2019
1 reply
3427 views

In fortigate 600d, All NAT session drops instantly, so to fix it i have to remove nat policies and add them again, it happens once every 3 or 4 month, i have voip,http,https traffic, In log there is only one "Session CLASH"

fortios 5.6.4

any suggestion

ede_pfau

SuperUser

Seems like the internal NAT table becomes full. Wondering how many sessions you have active at one time.

Some suggestions:

a)

upgrade to v5.6.8; read (all) the Release Notes, esp. "Bugs fixed"

b)

instead of deleting policies disable them. The point is to kill all active NAT sessions to clear the internal NAT table. From GUI, disabling a policy will kill all sessions through it. From CLI, you could kill all (or a filtered subset of all) sessions with one command.

c)

if possible, use more WAN addresses for NATting.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded