From: Phillip McCollum (phillip.mccollum@ins.com)
Date: Tue Jul 17 2007 - 18:13:26 ART
Looks like you need this:
http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chap
ter09186a008044edab.html#wp1048744
Enabling Syslog for Logging NAT Translations
The logging of NAT translations can be enabled and disabled by way of the
syslog command.
Router(config)#ip nat log translations syslog
Phillip
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Carlos G Mendioroz
Sent: Tuesday, July 17, 2007 1:54 PM
To: ccielab@groupstudy.com
Subject: OT: NAT session tracking ?
Hi,
I was surprised today by a sensible question: how can I track
NAT sessions, in order to know who was using a given public
IP address at a given time ?
The scenario is a ISP that uses private addresses for some clients,
and needs to be able to track who was involved in past activity
(like spamming, attacks, etc.)
I would have asumed something was there to do this, but I was unable to
locate anything. I was looking for some SNMP trap that NAT could
generate on new sessions (and discarded ones), or tacacs accounting,
or radius, or...
Any idea ?
-- Carlos G Mendioroz <tron@huapi.ba.ar> LW7 EQI Argentina
This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:41 ART