Support Center > Search Results > SecureKnowledge Details
NAT table reaches its maximum capacity on R7X ClusterXL, which causes traffic issues
Symptoms
  • "NAT hide failure - there are currently no available ports for hide operation" logs in SmartView Tracker.

  • Kernel NAT Table (fwx_alloc , id 8187) reaches its maximum capacity, which causes traffic issues.
Cause
  1. The NAT table (fwx_alloc) is not properly synchronized between cluster members.
  2. The cluster is defined as a HTTP/HTTPS Proxy 
  3. The nat_limit propety in $FWDIR/conf/objects_5_0.C file on the Security Management server is set to a limit other than (0) that is less than the number of NAT connections.

Solution
Note: To view this solution you need to Sign In .